× Cookies sind ausgeschaltet! Diese Seite erfordert aktivierte Cookies, um vollständig zu funktionieren.
SHA256: d68f2964532c1269e6eec69f2b3a54ee48ed96f28ebfb5ae481d2abc6de87855
Dateiname: newmatroslocaldealergersetup.exe
Erkennungsrate: 0 / 64
Analyse-Datum: 2017-10-05 06:09:22 UTC ( vor 2 Monate, 1 Woche ) Zeige Neueste
Antivirus Ergebnis Aktualisierung
Ad-Aware 20171005
AegisLab 20171005
AhnLab-V3 20171004
Alibaba 20170911
ALYac 20171005
Antiy-AVL 20171005
Arcabit 20171005
Avast 20171005
Avast-Mobile 20171004
AVG 20171005
Avira (no cloud) 20171005
AVware 20171005
Baidu 20170930
BitDefender 20171005
Bkav 20171004
CAT-QuickHeal 20171004
ClamAV 20171005
Comodo 20171005
CrowdStrike Falcon (ML) 20170804
Cylance 20171005
Cyren 20171005
DrWeb 20171005
Emsisoft 20171005
Endgame 20170821
ESET-NOD32 20171005
F-Prot 20171005
F-Secure 20171005
Fortinet 20171005
GData 20171005
Ikarus 20171004
Sophos ML 20170914
Jiangmin 20171005
K7AntiVirus 20171005
K7GW 20171005
Kaspersky 20171005
Kingsoft 20171005
Malwarebytes 20171005
MAX 20171005
McAfee 20171005
McAfee-GW-Edition 20171005
Microsoft 20171005
eScan 20171005
NANO-Antivirus 20171005
nProtect 20171005
Palo Alto Networks (Known Signatures) 20171005
Panda 20171004
Qihoo-360 20171005
Rising 20171005
SentinelOne (Static ML) 20171001
Sophos AV 20171005
SUPERAntiSpyware 20171005
Symantec 20171005
Symantec Mobile Insight 20171005
Tencent 20171005
TheHacker 20171002
TrendMicro 20171005
TrendMicro-HouseCall 20171005
Trustlook 20171005
VBA32 20171004
VIPRE 20171005
ViRobot 20171005
Webroot 20171005
WhiteArmor 20170927
Yandex 20171004
Zillya 20171004
ZoneAlarm by Check Point 20171005
Zoner 20171005
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2009-06-10 19:02:35
Entry Point 0x000691BB
Number of sections 4
PE sections
Overlays
MD5 97b418996acd43fec15ab94cb2a23a9b
File type data
Offset 1006080
Size 6982443
Entropy 8.00
PE imports
RegDeleteKeyA
SetSecurityDescriptorOwner
LookupPrivilegeValueA
RegCloseKey
RegEnumValueA
RegQueryValueExA
AdjustTokenPrivileges
RegCreateKeyExA
RegCreateKeyA
SetSecurityDescriptorDacl
RegOpenKeyA
OpenProcessToken
RegOpenKeyExA
EqualSid
GetTokenInformation
OpenThreadToken
RegEnumKeyA
RegEnumKeyExA
FreeSid
AllocateAndInitializeSid
InitializeSecurityDescriptor
RegSetValueExA
RegDeleteValueA
SetSecurityDescriptorGroup
GetDIBColorTable
SetMapMode
GetSystemPaletteEntries
CreateHalftonePalette
PlayMetaFile
SaveDC
CreateFontIndirectA
SetStretchBltMode
GetDeviceCaps
CreateDCA
TranslateCharsetInfo
DeleteDC
RestoreDC
SetBkMode
SetMetaFileBitsEx
SetPixel
SetWindowOrgEx
BitBlt
RealizePalette
SetTextColor
CreatePatternBrush
GetObjectA
CreateBitmap
CreateFontA
CreatePalette
GetStockObject
CreateDIBitmap
SetViewportOrgEx
SelectPalette
UnrealizeObject
SelectClipRgn
CreateCompatibleDC
StretchBlt
CreateRectRgn
SelectObject
GetTextExtentPoint32A
PatBlt
SetWindowExtEx
CreateSolidBrush
SetViewportExtEx
SetBkColor
DeleteObject
CreateCompatibleBitmap
GetPrivateProfileSectionNamesA
GetStdHandle
GetFileAttributesA
WaitForSingleObject
GetDriveTypeA
HeapDestroy
GetLocalTime
FreeEnvironmentStringsA
DeleteCriticalSection
HeapReAlloc
GetCurrentDirectoryA
GetLocaleInfoA
LocalAlloc
lstrcatA
SetErrorMode
FreeEnvironmentStringsW
GetThreadContext
GetLocaleInfoW
FindResourceExA
SetStdHandle
GetTempPathA
GetCPInfo
GetStringTypeA
InterlockedExchange
WriteFile
GetSystemTimeAsFileTime
GetDiskFreeSpaceA
GetStringTypeW
SetFileAttributesA
GetExitCodeProcess
LocalFree
MoveFileA
ResumeThread
GetEnvironmentVariableA
LoadResource
FindClose
InterlockedDecrement
FormatMessageA
SetLastError
VerLanguageNameA
InitializeCriticalSection
WriteProcessMemory
CopyFileA
ExitProcess
GetVersionExA
RemoveDirectoryA
RaiseException
EnumSystemLocalesA
LoadLibraryExA
GetPrivateProfileStringA
SetConsoleCtrlHandler
UnhandledExceptionFilter
TlsGetValue
MultiByteToWideChar
FatalAppExitA
WritePrivateProfileSectionA
FlushInstructionCache
LeaveCriticalSection
SetFilePointer
CreateThread
GetPrivateProfileSectionA
GetExitCodeThread
SetUnhandledExceptionFilter
GetCurrentProcess
MulDiv
GetSystemDirectoryA
MoveFileExA
SetEnvironmentVariableA
SetThreadContext
TerminateProcess
GlobalAlloc
SearchPathA
SetEndOfFile
GetVersion
GetProcAddress
SetCurrentDirectoryA
HeapFree
EnterCriticalSection
SetHandleCount
lstrcmpiA
FreeLibrary
QueryPerformanceCounter
GetTickCount
IsBadWritePtr
TlsAlloc
VirtualProtect
FlushFileBuffers
LoadLibraryA
RtlUnwind
GetStartupInfoA
GetDateFormatA
GetFileSize
OpenProcess
GetPrivateProfileIntA
CreateDirectoryA
DeleteFileA
GetWindowsDirectoryA
SetEvent
GetUserDefaultLCID
VirtualProtectEx
GetProcessHeap
CompareStringW
lstrcmpA
FindFirstFileA
lstrcpyA
CompareStringA
GetTempFileNameA
CreateFileMappingA
FindNextFileA
IsValidLocale
DuplicateHandle
ExpandEnvironmentStringsA
GetModuleFileNameA
GetTimeZoneInformation
CreateEventA
GetFileType
TlsSetValue
CreateFileA
HeapAlloc
InterlockedIncrement
GetLastError
SystemTimeToFileTime
LCMapStringW
UnmapViewOfFile
GetSystemInfo
lstrlenA
GlobalFree
LCMapStringA
GetProcessTimes
GetEnvironmentStringsW
GlobalUnlock
IsDBCSLeadByte
VirtualQuery
lstrlenW
GetShortPathNameA
SizeofResource
CompareFileTime
GetCurrentProcessId
LockResource
WideCharToMultiByte
HeapSize
GetCommandLineA
GetCurrentThread
GetSystemDefaultLangID
QueryPerformanceFrequency
MapViewOfFile
TlsFree
GetModuleHandleA
ReadFile
CloseHandle
GetTimeFormatA
lstrcpynA
GetACP
GlobalLock
GetCurrentThreadId
FreeResource
GetEnvironmentStrings
CreateProcessA
IsValidCodePage
HeapCreate
VirtualFree
Sleep
IsBadReadPtr
IsBadCodePtr
FindResourceA
VirtualAlloc
GetOEMCP
ResetEvent
CreateErrorInfo
VariantChangeType
SysStringLen
SysAllocStringLen
RegisterTypeLib
VariantClear
SysAllocString
SysReAllocStringLen
LoadTypeLib
SysFreeString
GetErrorInfo
SetErrorInfo
UuidToStringA
RpcStringFreeA
UuidCreate
UuidFromStringA
ShellExecuteExA
SHGetSpecialFolderLocation
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetMalloc
ShellExecuteA
SetFocus
CharPrevA
RegisterClassA
PeekMessageA
UpdateWindow
IntersectRect
EndDialog
BeginPaint
CreateWindowExA
DrawIcon
CreateDialogIndirectParamA
DefWindowProcA
KillTimer
RemovePropA
ShowWindow
ScreenToClient
FindWindowA
GetPropA
wsprintfA
SetWindowPos
GetDesktopWindow
GetSystemMetrics
IsWindow
GetWindowRect
InflateRect
EnableWindow
CharNextA
SetDlgItemTextA
PostMessageA
MoveWindow
EnumChildWindows
GetDlgItemTextA
CallWindowProcA
SetPropA
MessageBoxA
CopyRect
GetWindowDC
SetWindowLongA
wvsprintfA
TranslateMessage
PostQuitMessage
GetWindow
GetSysColor
SetActiveWindow
GetDC
SendDlgItemMessageA
MapDialogRect
GetDlgCtrlID
SetWindowTextA
MsgWaitForMultipleObjects
DrawFocusRect
SendMessageA
GetWindowTextA
SubtractRect
SetTimer
GetDlgItem
CreateDialogParamA
ClientToScreen
SetRect
InvalidateRect
MapWindowPoints
GetWindowLongA
CharUpperA
LoadCursorA
LoadIconA
DrawTextA
GetMessageA
FillRect
GetClientRect
WaitForInputIdle
GetSysColorBrush
DispatchMessageA
LoadImageA
GetClassNameA
DialogBoxIndirectParamA
ReleaseDC
EndPaint
SetForegroundWindow
DestroyWindow
ExitWindowsEx
IsDialogMessageA
SetCursor
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
ProgIDFromCLSID
CLSIDFromProgID
CoInitialize
CreateItemMoniker
CoCreateGuid
CoCreateInstance
CoInitializeSecurity
StringFromCLSID
CoUninitialize
GetRunningObjectTable
CoTaskMemFree
StringFromGUID2
Number of PE resources by type
RT_STRING 25
RT_DIALOG 23
RT_ICON 11
RT_BITMAP 6
RT_GROUP_ICON 3
GIF 2
RT_MANIFEST 1
RT_VERSION 1
Number of PE resources by language
NEUTRAL 46
ENGLISH US 26
PE resources
Debug information
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
6.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
16.0.0.328

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
Setup Launcher

CharacterSet
Unicode

InitializedDataSize
444416

InternalBuildNumber
90563

OriginalFileName
Setup.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright (C) 2009 Acresso Software Inc. and/or InstallShield Co. Inc. All Rights Reserved.

FileVersion
1.17.0000

TimeStamp
2009:06:10 20:02:35+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Setup

ProductVersion
1.17.0000

SubsystemVersion
5.0

OSVersion
4.0

EntryPoint
0x691bb

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Ihr Firmenname

CodeSize
560640

ProductName
FERICO LocalDealer

ProductVersionNumber
16.0.0.0

FileTypeExtension
exe

ObjectFileType
Dynamic link library

File identification
MD5 d7ec87150fdd2709684562672262b85a
SHA1 6dd4446fdef0dd7943f2327ecae4723a7df102ae
SHA256 d68f2964532c1269e6eec69f2b3a54ee48ed96f28ebfb5ae481d2abc6de87855
ssdeep
98304:IRmIZuaNuAElhSD3gY4r/Hyvs7Fs3SG53tXSlIJ8vuaDtKqsTJ3y1AfPYpJW9I2B:IBuaNk4Lhp3SG5Ee8BDtOJHIJbrw

authentihash 28b9de1278024399f268c099b6d7f8e47715b45f4291379546c6e906cdd92b4f
imphash 6fa6259b357f67e8b5c8685caeeb1151
File size 7.6 MB ( 7988523 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win64 Executable (generic) (56.1%)
Windows screen saver (26.6%)
Win32 Executable (generic) (9.1%)
Generic Win/DOS Executable (4.0%)
DOS Executable Generic (4.0%)
Tags
peexe overlay

VirusTotal metadata
First submission 2017-10-05 06:09:22 UTC ( vor 2 Monate, 1 Woche )
Last submission 2017-10-05 06:09:22 UTC ( vor 2 Monate, 1 Woche )
Dateinamen newmatroslocaldealergersetup.exe
Keine Kommentare. Bisher hat kein Mitglied der VirusTotal-Community einen Kommentar zu diesem Punkt verfasst, seien Sie der Erste!

Hinterlassen Sie Ihren Kommentar...

?
Kommentar abschicken

Sie sind nicht angemeldet. Nur registrierte Nutzer können Kommentare hinterlassen, melden Sie sich an und sagen Sie etwas dazu!

Keine Bewertungen. Niemand hat diesen Punkt bisher bewertet, seien Sie der Erste!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Deleted files
Runtime DLLs
UDP communications