× Cookies sind ausgeschaltet! Diese Seite erfordert aktivierte Cookies, um vollständig zu funktionieren.
SHA256: f23543ef4ef0ad0ab4494ca78fccc2018852637714080a4a8c65c9eed3dc8f08
Dateiname: Sharecode Fixer.v1.0.Setup.exe
Erkennungsrate: 1 / 71
Analyse-Datum: 2019-01-22 00:28:01 UTC ( vor 2 Monate ) Zeige Neueste
Antivirus Ergebnis Aktualisierung
Microsoft PUA:Win32/Presenoker 20190122
Acronis 20190119
Ad-Aware 20190121
AegisLab 20190121
AhnLab-V3 20190121
Alibaba 20180921
ALYac 20190121
Antiy-AVL 20190121
Arcabit 20190121
Avast 20190121
Avast-Mobile 20190121
AVG 20190121
Avira (no cloud) 20190121
Babable 20180918
Baidu 20190121
BitDefender 20190121
Bkav 20190122
CAT-QuickHeal 20190121
ClamAV 20190121
CMC 20190121
Comodo 20190121
CrowdStrike Falcon (ML) 20181023
Cybereason 20190109
Cylance 20190122
Cyren 20190121
DrWeb 20190121
eGambit 20190122
Emsisoft 20190121
Endgame 20181108
ESET-NOD32 20190122
F-Prot 20190121
F-Secure 20190121
Fortinet 20190121
GData 20190121
Ikarus 20190121
Sophos ML 20181128
Jiangmin 20190121
K7AntiVirus 20190121
K7GW 20190121
Kaspersky 20190121
Kingsoft 20190122
Malwarebytes 20190122
MAX 20190122
McAfee 20190121
McAfee-GW-Edition 20190121
eScan 20190121
NANO-Antivirus 20190121
Palo Alto Networks (Known Signatures) 20190122
Panda 20190121
Qihoo-360 20190122
Rising 20190122
SentinelOne (Static ML) 20190118
Sophos AV 20190121
SUPERAntiSpyware 20190116
Symantec 20190121
TACHYON 20190121
Tencent 20190122
TheHacker 20190118
TotalDefense 20190121
Trapmine 20190103
TrendMicro 20190121
TrendMicro-HouseCall 20190121
Trustlook 20190122
VBA32 20190121
VIPRE 20190122
ViRobot 20190121
Webroot 20190122
Yandex 20190120
Zillya 20190118
ZoneAlarm by Check Point 20190122
Zoner 20190122
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright

Product Sharecode Fixer
File version 1.0
Description Sharecode Fixer Setup
Comments This installation was built with Inno Setup.
Packers identified
F-PROT INNO, appended
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2012-10-02 05:04:04
Entry Point 0x00016478
Number of sections 8
PE sections
Overlays
MD5 a5e0415131e5318c23763c69924911f4
File type data
Offset 244224
Size 1571536
Entropy 8.00
PE imports
RegCloseKey
OpenProcessToken
RegOpenKeyExW
AdjustTokenPrivileges
LookupPrivilegeValueW
RegQueryValueExW
InitCommonControls
GetLastError
GetStdHandle
EnterCriticalSection
GetUserDefaultLangID
GetSystemInfo
GetModuleFileNameW
WaitForSingleObject
GetVersionExW
FreeLibrary
QueryPerformanceCounter
GetTickCount
GetThreadLocale
VirtualProtect
GetFileAttributesW
RtlUnwind
lstrlenW
GetLocalTime
CreateProcessW
DeleteCriticalSection
GetStartupInfoA
SizeofResource
GetWindowsDirectoryW
LocalAlloc
LockResource
GetDiskFreeSpaceW
GetCommandLineW
SetErrorMode
UnhandledExceptionFilter
LoadLibraryExW
MultiByteToWideChar
EnumCalendarInfoW
GetCPInfo
DeleteFileW
GetProcAddress
GetDateFormatW
InterlockedCompareExchange
GetLocaleInfoW
lstrcpynW
CompareStringW
RaiseException
WideCharToMultiByte
RemoveDirectoryW
SetFilePointer
GetFullPathNameW
ReadFile
GetEnvironmentVariableW
InterlockedExchange
CreateDirectoryW
WriteFile
GetCurrentProcess
CloseHandle
FindFirstFileW
GetACP
GetModuleHandleW
SignalObjectAndWait
SetEvent
FormatMessageW
LoadLibraryW
CreateEventW
GetExitCodeProcess
GetVersion
InitializeCriticalSection
LoadResource
FindResourceW
CreateFileW
VirtualQuery
VirtualFree
FindClose
TlsGetValue
Sleep
SetEndOfFile
TlsSetValue
ExitProcess
GetCurrentThreadId
LeaveCriticalSection
VirtualAlloc
GetFileSize
SetLastError
ResetEvent
VariantChangeType
SafeArrayGetLBound
SafeArrayPtrOfIndex
SysAllocStringLen
VariantClear
SafeArrayCreate
SysReAllocStringLen
SafeArrayGetUBound
VariantCopy
SysFreeString
VariantInit
GetSystemMetrics
SetWindowLongW
MessageBoxW
PeekMessageW
LoadStringW
MessageBoxA
CreateWindowExW
MsgWaitForMultipleObjects
TranslateMessage
CharUpperBuffW
CallWindowProcW
CharNextW
GetKeyboardType
ExitWindowsEx
DispatchMessageW
DestroyWindow
Number of PE resources by type
RT_ICON 6
RT_STRING 6
RT_RCDATA 4
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 10
NEUTRAL 9
PE resources
ExifTool file metadata
SubsystemVersion
5.0

Comments
This installation was built with Inno Setup.

LinkerVersion
2.25

ImageVersion
6.0

FileSubtype
0

FileVersionNumber
1.0.0.0

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
Sharecode Fixer Setup

ImageFileCharacteristics
No relocs, Executable, No line numbers, No symbols, Bytes reversed lo, 32-bit, Bytes reversed hi

CharacterSet
Unicode

InitializedDataSize
157184

EntryPoint
0x16478

MIMEType
application/octet-stream

FileVersion
1.0

TimeStamp
2012:10:02 07:04:04+02:00

FileType
Win32 EXE

PEType
PE32

ProductVersion
1.0

UninitializedDataSize
0

OSVersion
5.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CodeSize
86016

ProductName
Sharecode Fixer

ProductVersionNumber
1.0.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 3f3b509571e27f71880d3dec220bf24d
SHA1 9468033749001725e3927b61e9243132172d1bd3
SHA256 f23543ef4ef0ad0ab4494ca78fccc2018852637714080a4a8c65c9eed3dc8f08
ssdeep
24576:CMjh7v2BswagqURBvTUS0A9QwCARdlxW+RzXyCLzyYFlQeWlTH4GB7wil:RF2BnHxdmwCCdW+RWCH3FEt4Gd9l

authentihash da764122329d1140aac8b2d52805a9d4cc8904220ce848ffd3eeea19acd46e47
imphash 483f0c4259a9148c34961abbda6146c1
File size 1.7 MB ( 1815760 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Inno Setup installer (80.3%)
Win32 Executable Delphi generic (10.3%)
Win32 Executable (generic) (3.3%)
Win16/32 Executable Delphi generic (1.5%)
OS/2 Executable (generic) (1.4%)
Tags
peexe overlay

VirusTotal metadata
First submission 2019-01-22 00:28:01 UTC ( vor 2 Monate )
Last submission 2019-01-22 00:28:01 UTC ( vor 2 Monate )
Dateinamen Sharecode Fixer.v1.0.Setup.exe
Keine Kommentare. Bisher hat kein Mitglied der VirusTotal-Community einen Kommentar zu diesem Punkt verfasst, seien Sie der Erste!

Hinterlassen Sie Ihren Kommentar...

?
Kommentar abschicken

Sie sind nicht angemeldet. Nur registrierte Nutzer können Kommentare hinterlassen, melden Sie sich an und sagen Sie etwas dazu!

Keine Bewertungen. Niemand hat diesen Punkt bisher bewertet, seien Sie der Erste!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Deleted files
Created processes
Runtime DLLs