× Cookies sind ausgeschaltet! Diese Seite erfordert aktivierte Cookies, um vollständig zu funktionieren.
SHA256: 8b2722fb90e4aebf79357e4ca4446cbc50c513cc598ed0e6094719ee63f5eb84
Dateiname: SF_Main.xp
Erkennungsrate: 4 / 56
Analyse-Datum: 2016-10-14 02:23:23 UTC ( vor 2 Jahre, 6 Monate ) Zeige Neueste
Antivirus Ergebnis Aktualisierung
Avira (no cloud) TR/Crypt.TPM.Gen 20161013
Bkav HW32.Packed.2251 20161013
Qihoo-360 HEUR/QVM19.1.0000.Malware.Gen 20161014
Rising Malware.Generic!gKS3wRz9hSD@1 (thunder) 20161014
Ad-Aware 20161014
AegisLab 20161014
AhnLab-V3 20161013
Alibaba 20161013
ALYac 20161014
Antiy-AVL 20161014
Arcabit 20161014
Avast 20161014
AVG 20161014
AVware 20161014
Baidu 20161013
BitDefender 20161014
CAT-QuickHeal 20161013
ClamAV 20161014
CMC 20161013
Comodo 20161014
CrowdStrike Falcon (ML) 20160725
Cyren 20161014
DrWeb 20161014
Emsisoft 20161014
ESET-NOD32 20161013
F-Prot 20161014
F-Secure 20161014
Fortinet 20161014
GData 20161014
Ikarus 20161013
Sophos ML 20160928
Jiangmin 20161013
K7AntiVirus 20161013
K7GW 20161014
Kaspersky 20161014
Kingsoft 20161014
Malwarebytes 20161014
McAfee 20161014
McAfee-GW-Edition 20161014
Microsoft 20161014
eScan 20161014
NANO-Antivirus 20161014
nProtect 20161014
Panda 20161013
Sophos AV 20161013
SUPERAntiSpyware 20161014
Symantec 20161014
Tencent 20161014
TheHacker 20161011
TrendMicro 20161014
TrendMicro-HouseCall 20161014
VBA32 20161013
VIPRE 20161014
ViRobot 20161013
Yandex 20161013
Zillya 20161013
Zoner 20161014
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (C) 2015

Product Sky-Fighter
Original name SF_Main.exe
Internal name SF_Main.exe
File version 4.6.0.2
Description Sky-Fighter Main Executeable
ReversingLabs Taggant packer details
Validity
Valid taggant block

Full file hash
Valid

PKI chain
Valid

Packer Themida (2.4.5)
Timestamp Oct 14 01:03:39 2016 GMT
User
Validity Valid
Serial Number 1E0BC75D883DDAD6E8DE9A23B0B6941E
SPV
Validity Valid
Serial Number 19D169BB9A9042C0607D960325D1D336
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-10-13 20:33:00
Entry Point 0x00960000
Number of sections 9
PE sections
PE imports
ImageList_EndDrag
ImmSetCompositionWindow
FreeLibrary
HeapFree
GetModuleHandleA
VirtualFree
HeapAlloc
GetCommandLineA
GetVersionExA
LoadLibraryA
VirtualAlloc
GetCurrentThreadId
GetProcessHeap
MessageBoxA
Number of PE resources by type
RT_ICON 6
RT_RCDATA 2
RT_MANIFEST 2
RT_GROUP_ICON 1
RT_VERSION 1
Number of PE resources by language
KOREAN 7
GERMAN 3
NEUTRAL 1
ENGLISH US 1
PE resources
Debug information
ExifTool file metadata
UninitializedDataSize
0

InitializedDataSize
1043968

ImageVersion
0.0

ProductName
Sky-Fighter

FileVersionNumber
4.6.0.2

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
Sky-Fighter Main Executeable

CharacterSet
Unicode

LinkerVersion
14.0

FileTypeExtension
exe

OriginalFileName
SF_Main.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
4.6.0.2

TimeStamp
2016:10:13 21:33:00+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
SF_Main.exe

ProductVersion
4.6.0.0

SubsystemVersion
5.1

OSVersion
5.1

FileOS
Windows NT 32-bit

LegalCopyright
Copyright (C) 2015

MachineType
Intel 386 or later, and compatibles

CompanyName
Sky-Network

CodeSize
3684352

FileSubtype
0

ProductVersionNumber
4.6.0.0

EntryPoint
0x960000

ObjectFileType
Executable application

File identification
MD5 55211833c4ee513eea8a113e088e44e3
SHA1 8a3d47fbc8d81c39baff70d8df28f1e15a1e6083
SHA256 8b2722fb90e4aebf79357e4ca4446cbc50c513cc598ed0e6094719ee63f5eb84
ssdeep
98304:vZUfYDCR/AOYpGYuFO+pNPCqrNNMPMLh+53:Og+VAOYpGnpXoPww3

authentihash ed409b860dcc2bdc76af6ca59c5f6377b86599c278474a3fa4d7f028c94d9379
imphash b1e9998745df82818b92e921a2a75e35
File size 4.0 MB ( 4193280 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable (generic) (52.9%)
Generic Win/DOS Executable (23.5%)
DOS Executable Generic (23.5%)
Tags
peexe

VirusTotal metadata
First submission 2016-10-14 02:23:23 UTC ( vor 2 Jahre, 6 Monate )
Last submission 2016-10-14 02:23:23 UTC ( vor 2 Jahre, 6 Monate )
Dateinamen SF_Main.exe
SF_Main.xp
Keine Kommentare. Bisher hat kein Mitglied der VirusTotal-Community einen Kommentar zu diesem Punkt verfasst, seien Sie der Erste!

Hinterlassen Sie Ihren Kommentar...

?
Kommentar abschicken

Sie sind nicht angemeldet. Nur registrierte Nutzer können Kommentare hinterlassen, melden Sie sich an und sagen Sie etwas dazu!

Keine Bewertungen. Niemand hat diesen Punkt bisher bewertet, seien Sie der Erste!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Runtime DLLs
UDP communications