× Cookies sind ausgeschaltet! Diese Seite erfordert aktivierte Cookies, um vollständig zu funktionieren.
SHA256: 5c9896decad7871d1690e0623f5125c99632e81b1591f526029233f52d374a6d
Dateiname: ERN_trainer_ver1.0.exe
Erkennungsrate: 1 / 55
Analyse-Datum: 2016-09-03 23:25:20 UTC ( vor 2 Jahre, 6 Monate ) Zeige Neueste
Antivirus Ergebnis Aktualisierung
TheHacker Trojan/Downloader.Agent.qfo 20160903
Ad-Aware 20160903
AegisLab 20160903
AhnLab-V3 20160903
Alibaba 20160901
ALYac 20160903
Antiy-AVL 20160903
Arcabit 20160903
Avast 20160903
AVG 20160903
Avira (no cloud) 20160903
AVware 20160903
Baidu 20160903
BitDefender 20160903
Bkav 20160901
CAT-QuickHeal 20160903
ClamAV 20160903
CMC 20160901
Comodo 20160903
Cyren 20160903
DrWeb 20160903
Emsisoft 20160903
ESET-NOD32 20160903
F-Prot 20160903
F-Secure 20160903
Fortinet 20160903
GData 20160903
Ikarus 20160903
Jiangmin 20160903
K7AntiVirus 20160903
K7GW 20160903
Kaspersky 20160903
Kingsoft 20160903
Malwarebytes 20160903
McAfee 20160903
McAfee-GW-Edition 20160903
Microsoft 20160903
eScan 20160903
NANO-Antivirus 20160903
nProtect 20160903
Panda 20160903
Qihoo-360 20160903
Rising 20160903
Sophos AV 20160903
SUPERAntiSpyware 20160903
Symantec 20160903
Tencent 20160903
TrendMicro 20160903
TrendMicro-HouseCall 20160903
VBA32 20160902
VIPRE 20160831
ViRobot 20160903
Yandex 20160903
Zillya 20160902
Zoner 20160903
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Adobe® Flash® Player. Copyright © 1996-2008 Adobe Systems Incorporated. All Rights Reserved. Protected by U.S. Patent 6,879,327; Patents Pending in the United States and other countries. Adobe and Flash are either trademarks or registered trademarks in the United States and/or other countries.

Product Shockwave Flash
Original name SAFlashPlayer.exe
Internal name Adobe Flash Player 10.0
File version 10,0,2,54
Description Adobe Flash Player 10.0 r2
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2008-09-03 18:27:29
Entry Point 0x002F5730
Number of sections 6
PE sections
Overlays
MD5 efc1388d91def19fbd23c71f68908550
File type data
Offset 4232704
Size 530280
Entropy 7.99
PE imports
RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
RegCloseKey
RegCreateKeyExA
PrintDlgA
GetOpenFileNameW
GetSaveFileNameW
GetOpenFileNameA
CommDlgExtendedError
GetSaveFileNameA
CertCreateCertificateContext
CertFreeCertificateContext
CertCloseStore
CryptGetMessageCertificates
CertFindCertificateInStore
CryptVerifyMessageSignature
CertVerifySubjectCertificateContext
SetGraphicsMode
CreateFontIndirectW
SetBkMode
GetClipBox
CreatePen
GetBkMode
SaveDC
CreateFontIndirectA
GetTextMetricsA
LPtoDP
SetStretchBltMode
GetPixel
GetObjectA
CreateDCA
LineTo
DeleteDC
EndDoc
RestoreDC
PolyBezierTo
GetICMProfileA
GetWorldTransform
GetSystemPaletteEntries
SetWorldTransform
CreateSolidBrush
StartPage
IntersectClipRect
BitBlt
CreateDIBSection
EnumFontFamiliesA
RealizePalette
SetTextColor
GetDeviceCaps
GetCurrentObject
ExtTextOutW
FillPath
SetTextAlign
GetTextExtentPoint32W
MoveToEx
CreatePalette
GetStockObject
EnumFontFamiliesExW
SelectPalette
GetFontData
ExtTextOutA
StrokePath
GetDIBits
GdiFlush
SelectClipRgn
CreateCompatibleDC
GetTextAlign
StretchBlt
StretchDIBits
GetBkColor
EndPage
CreateRectRgn
SelectObject
GetTextExtentPoint32A
SetPolyFillMode
StartDocA
GetTextColor
GetStretchBltMode
DPtoLP
ExtCreatePen
GetClipRgn
SetBkColor
SetTextCharacterExtra
BeginPath
DeleteObject
CreateCompatibleBitmap
SelectClipPath
EndPath
GetStdHandle
GetConsoleOutputCP
ReleaseMutex
CreateFileMappingA
GetFileAttributesA
WaitForSingleObject
GetFileAttributesW
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetCurrentDirectoryA
GetConsoleMode
GetLocaleInfoA
ExitProcess
SetErrorMode
FreeEnvironmentStringsW
FindResourceExA
GetFullPathNameA
IsDBCSLeadByteEx
GetTempPathA
WideCharToMultiByte
GetStringTypeA
InterlockedExchange
WriteFile
GetSystemTimeAsFileTime
SetThreadAffinityMask
HeapReAlloc
GetStringTypeW
SetFileAttributesA
SetEvent
MoveFileA
InitializeCriticalSection
LoadResource
FindClose
TlsGetValue
SetLastError
GetSystemTime
GetUserDefaultLangID
CopyFileA
HeapAlloc
FlushFileBuffers
GetModuleFileNameA
RaiseException
SetThreadPriority
UnhandledExceptionFilter
InterlockedDecrement
MultiByteToWideChar
SetFilePointerEx
FlushInstructionCache
LeaveCriticalSection
CreateMutexA
GetModuleHandleA
CreateSemaphoreA
CreateThread
SetUnhandledExceptionFilter
GetSystemDirectoryA
TerminateProcess
WriteConsoleA
GlobalAlloc
SetEndOfFile
SetWaitableTimer
GetProcAddress
SetCurrentDirectoryA
WriteConsoleW
InitializeCriticalSectionAndSpinCount
HeapFree
EnterCriticalSection
SetHandleCount
TerminateThread
FreeLibrary
QueryPerformanceCounter
GetTickCount
TlsAlloc
VirtualProtect
GetVersionExA
LoadLibraryA
RtlUnwind
ExitThread
GlobalSize
GetStartupInfoA
GetFileSize
CreateDirectoryA
DeleteFileA
DeleteFileW
GlobalLock
VirtualProtectEx
GetProcessHeap
GetFileSizeEx
ExpandEnvironmentStringsW
FindFirstFileA
lstrcpyA
ResetEvent
GetTempFileNameA
CreateWaitableTimerA
FindNextFileA
WaitForMultipleObjects
ExpandEnvironmentStringsA
GetTimeZoneInformation
CreateFileW
CreateEventA
IsDebuggerPresent
GetFileType
TlsSetValue
CreateFileA
GetCurrentThreadId
InterlockedIncrement
GetLastError
SystemTimeToFileTime
LCMapStringW
HeapCreate
GetSystemInfo
lstrlenA
GlobalFree
GetConsoleCP
LCMapStringA
GetProcessTimes
GetEnvironmentStringsW
GlobalUnlock
IsDBCSLeadByte
VirtualQuery
RemoveDirectoryA
GetEnvironmentStrings
GetCurrentProcessId
LockResource
GetCommandLineW
GetCPInfo
HeapSize
GetCommandLineA
InterlockedCompareExchange
GetCurrentThread
GetSystemDefaultLangID
QueryPerformanceFrequency
ReleaseSemaphore
MapViewOfFile
TlsFree
SetFilePointer
ReadFile
CloseHandle
GetACP
GetModuleHandleW
SetStdHandle
CreateProcessA
IsValidCodePage
UnmapViewOfFile
FindResourceExW
VirtualFree
Sleep
GetFileAttributesExA
VirtualAlloc
GetOEMCP
SysFreeString
DragQueryFileW
DragAcceptFiles
SHGetSpecialFolderLocation
SHBrowseForFolderA
SHAppBarMessage
DragQueryFileA
SHGetPathFromIDListA
RedrawWindow
RegisterClipboardFormatA
GetForegroundWindow
DestroyMenu
PostQuitMessage
SetWindowPos
DdeDisconnect
DdeCreateStringHandleA
IsWindow
DispatchMessageA
ClientToScreen
WindowFromPoint
GetMenuItemID
GetCursorPos
ReleaseDC
DdeInitializeA
GetMenu
UnregisterClassA
IsClipboardFormatAvailable
SendMessageA
GetClientRect
GetDlgItemTextW
DdeFreeStringHandle
EnumDisplaySettingsA
LoadAcceleratorsA
GetWindowTextLengthA
GetWindowTextLengthW
GetMenuItemCount
GetWindowTextA
DestroyWindow
GetMessageA
GetParent
UpdateWindow
ShowWindow
GetClipboardFormatNameA
InsertMenuItemW
GetDlgItemTextA
TranslateMessage
GetWindow
InsertMenuItemA
LoadStringA
SetClipboardData
LoadStringW
DdeConnect
EnableMenuItem
RegisterClassA
GetWindowLongA
SetTimer
DdeClientTransaction
GetKeyboardLayout
FillRect
WaitForInputIdle
EndPaint
GetMenuStringW
SetFocus
MapVirtualKeyA
SetCapture
BeginPaint
OffsetRect
KillTimer
GetMonitorInfoA
DefWindowProcA
GetClipboardData
GetSystemMetrics
GetWindowRect
PostMessageA
ReleaseCapture
SetWindowLongA
SetWindowTextA
CheckMenuItem
GetSubMenu
CreateWindowExA
GetDlgItem
ScreenToClient
InsertMenuA
LoadCursorA
LoadIconA
TrackPopupMenu
DialogBoxIndirectParamW
GetMenuItemInfoA
GetDesktopWindow
GetDC
InsertMenuW
DialogBoxIndirectParamA
OpenClipboard
EmptyClipboard
EndDialog
LoadMenuA
SendInput
GetCapture
RemoveMenu
GetWindowThreadProcessId
DdeUninitialize
SetMenu
SetDlgItemTextA
MoveWindow
DialogBoxParamW
GetMenuStringA
MessageBoxA
DialogBoxParamA
SetDlgItemTextW
GetKeyState
SystemParametersInfoA
GetDoubleClickTime
MonitorFromWindow
SetRect
DeleteMenu
InvalidateRect
TranslateAcceleratorA
GetFocus
EnableWindow
CloseClipboard
SetCursor
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
HttpQueryInfoA
timeKillEvent
waveOutReset
waveInOpen
waveOutGetDevCapsA
timeSetEvent
waveInStop
waveOutGetPosition
timeBeginPeriod
timeEndPeriod
waveOutOpen
waveInPrepareHeader
waveInGetDevCapsA
waveOutGetNumDevs
waveOutClose
waveInAddBuffer
timeGetTime
waveInClose
timeGetDevCaps
waveInGetNumDevs
waveOutUnprepareHeader
waveOutPrepareHeader
waveInUnprepareHeader
waveInStart
waveOutWrite
waveInReset
WSASocketA
htonl
ioctlsocket
WSAStartup
WSACleanup
connect
getsockname
WSAAddressToStringA
htons
WSASetLastError
select
gethostname
closesocket
WSACloseEvent
ntohl
inet_addr
send
getservbyport
ntohs
WSAIoctl
gethostbyaddr
WSAEventSelect
gethostbyname
inet_ntoa
WSACreateEvent
recv
WSAAsyncSelect
setsockopt
socket
bind
recvfrom
WSAEnumNetworkEvents
WSAGetLastError
sendto
getservbyname
OpenColorProfileA
TranslateBitmapBits
DeleteColorTransform
CloseColorProfile
CreateColorTransformW
OleUninitialize
CoUninitialize
CoInitialize
CoTaskMemAlloc
OleFlushClipboard
ReleaseStgMedium
CoCreateInstance
CreateBindCtx
OleSetClipboard
OleGetClipboard
OleIsCurrentClipboard
CoTaskMemFree
OleInitialize
CopyStgMedium
Number of PE resources by type
RT_STRING 80
RT_MENU 64
RT_ICON 60
RT_DIALOG 49
RT_GROUP_ICON 6
RT_CURSOR 5
RT_GROUP_CURSOR 3
RT_MANIFEST 1
RT_ACCELERATOR 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 90
TURKISH DEFAULT 12
SWEDISH NEUTRAL 12
GERMAN 12
CHINESE TRADITIONAL 12
DUTCH 12
FRENCH 12
CHINESE SIMPLIFIED 12
PORTUGUESE BRAZILIAN 12
JAPANESE DEFAULT 12
SPANISH MODERN 12
POLISH DEFAULT 12
CZECH DEFAULT 12
RUSSIAN 12
KOREAN 12
ITALIAN 12
PE resources
Debug information
ExifTool file metadata
LegalTrademarks
Adobe Flash Player

SubsystemVersion
5.0

LinkerVersion
9.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
10.0.2.54

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
Adobe Flash Player 10.0 r2

CharacterSet
Unicode

InitializedDataSize
1960448

EntryPoint
0x2f5730

OriginalFileName
SAFlashPlayer.exe

MIMEType
application/octet-stream

LegalCopyright
Adobe Flash Player. Copyright 1996-2008 Adobe Systems Incorporated. All Rights Reserved. Protected by U.S. Patent 6,879,327; Patents Pending in the United States and other countries. Adobe and Flash are either trademarks or registered trademarks in the United States and/or other countries.

FileVersion
10,0,2,54

TimeStamp
2008:09:03 19:27:29+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Adobe Flash Player 10.0

ProductVersion
10,0,2,54

UninitializedDataSize
0

OSVersion
5.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

Debugger
0

CompanyName
Adobe Systems, Inc.

CodeSize
3147264

ProductName
Shockwave Flash

ProductVersionNumber
10.0.2.54

FileTypeExtension
exe

ObjectFileType
Dynamic link library

File identification
MD5 6d4b551ce4d8b5cc720e68c782698d7c
SHA1 680c890f883611c0dbe36c1aa47446f5757b5e43
SHA256 5c9896decad7871d1690e0623f5125c99632e81b1591f526029233f52d374a6d
ssdeep
49152:CU7h1xo13zJs2lpPRPa52bhqvQGPmYcGHd5hsb4e2rmlZ7BCHv2tATiTZbf/3faH:1N1xKVsYK52wmYc2n4Ces0T+CxqelA

authentihash 96644d98949d4e1b4ed8f864cc9af7c888d7fb8b671d76c2bf1950d60d17a864
imphash 795fb0c169ef1e1db1053e69ece2c809
File size 4.5 MB ( 4762984 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID InstallShield setup (54.3%)
Win64 Executable (generic) (34.8%)
Win32 Executable (generic) (5.6%)
Generic Win/DOS Executable (2.5%)
DOS Executable Generic (2.5%)
Tags
peexe overlay

VirusTotal metadata
First submission 2016-09-03 23:25:20 UTC ( vor 2 Jahre, 6 Monate )
Last submission 2016-09-03 23:25:20 UTC ( vor 2 Jahre, 6 Monate )
Dateinamen Adobe Flash Player 10.0
ERN_trainer_ver1.0.exe
SAFlashPlayer.exe
Keine Kommentare. Bisher hat kein Mitglied der VirusTotal-Community einen Kommentar zu diesem Punkt verfasst, seien Sie der Erste!

Hinterlassen Sie Ihren Kommentar...

?
Kommentar abschicken

Sie sind nicht angemeldet. Nur registrierte Nutzer können Kommentare hinterlassen, melden Sie sich an und sagen Sie etwas dazu!

Keine Bewertungen. Niemand hat diesen Punkt bisher bewertet, seien Sie der Erste!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Moved files
Deleted files
Created mutexes
Opened service managers
Opened services
Runtime DLLs
UDP communications