× Cookies sind ausgeschaltet! Diese Seite erfordert aktivierte Cookies, um vollständig zu funktionieren.
SHA256: fd1ea6928a87564df81765c96969593c86498e4f228ab8079d8d367cd1f02169
Dateiname: ConvertirPDF.exe
Erkennungsrate: 0 / 56
Analyse-Datum: 2015-08-27 01:54:29 UTC ( vor 2 Jahre, 3 Monate ) Zeige Neueste
Antivirus Ergebnis Aktualisierung
Ad-Aware 20150826
AegisLab 20150826
Yandex 20150826
AhnLab-V3 20150826
Alibaba 20150827
ALYac 20150827
Antiy-AVL 20150827
Arcabit 20150827
Avast 20150827
AVG 20150827
Avira (no cloud) 20150826
AVware 20150827
Baidu-International 20150826
BitDefender 20150827
Bkav 20150826
ByteHero 20150827
CAT-QuickHeal 20150826
ClamAV 20150827
CMC 20150826
Comodo 20150827
Cyren 20150827
DrWeb 20150827
Emsisoft 20150827
ESET-NOD32 20150827
F-Prot 20150826
F-Secure 20150827
Fortinet 20150827
GData 20150827
Ikarus 20150827
Jiangmin 20150826
K7AntiVirus 20150826
K7GW 20150826
Kaspersky 20150827
Kingsoft 20150827
Malwarebytes 20150826
McAfee 20150827
McAfee-GW-Edition 20150827
Microsoft 20150826
eScan 20150827
NANO-Antivirus 20150827
nProtect 20150826
Panda 20150826
Qihoo-360 20150827
Rising 20150826
Sophos AV 20150827
SUPERAntiSpyware 20150826
Symantec 20150826
Tencent 20150827
TheHacker 20150826
TrendMicro 20150827
TrendMicro-HouseCall 20150827
VBA32 20150826
VIPRE 20150827
ViRobot 20150827
Zillya 20150826
Zoner 20150827
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Publisher ConvertirPDF.fr
Product ConvertirPDF
Original name ConvertirPDF.exe
Internal name ConvertirPDF
File version 3.00.0006
Description Convertir des fichiers PDF en Word, TXT, HTML, images et fichiers Flash.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2015-08-19 01:56:07
Entry Point 0x0000429C
Number of sections 3
PE sections
PE imports
_adj_fdivr_m64
Ord(546)
Ord(518)
__vbaGenerateBoundsError
__vbaStrFixstr
__vbaInputFile
Ord(616)
EVENT_SINK_Invoke
_adj_fprem
__vbaR4Var
Ord(709)
__vbaObjVar
Ord(580)
__vbaVarAnd
__vbaForEachCollObj
__vbaRecDestruct
__vbaCyVar
_adj_fdiv_r
_allmul
__vbaUI1I2
__vbaRecAnsiToUni
Ord(320)
__vbaChkstk
__vbaObjSetAddref
__vbaFixstrConstruct
__vbaI4Var
_adj_fdiv_m64
__vbaHresultCheckObj
__vbaI2Var
__vbaR8Str
_CIlog
__vbaVarMul
Ord(595)
__vbaVarLateMemCallLd
_adj_fptan
__vbaFileClose
Ord(581)
__vbaLineInputStr
__vbaFPInt
__vbaRecUniToAnsi
Ord(608)
__vbaFreeStr
__vbaLateIdCallLd
Ord(631)
__vbaStrI2
__vbaStrR8
Ord(588)
__vbaFPFix
__vbaFreeStrList
__vbaI2I4
_adj_fdiv_m16i
EVENT_SINK_QueryInterface
Ord(516)
__vbaR8Cy
Ord(531)
__vbaVarInt
__vbaI4Str
Ord(607)
__vbaLenBstr
Ord(525)
Ord(617)
__vbaNextEachCollObj
Ord(681)
__vbaStrToUnicode
__vbaInStr
_adj_fdiv_m32i
Ord(717)
Ord(600)
__vbaExceptHandler
__vbaSetSystemError
DllFunctionCall
Zombie_GetTypeInfoCount
__vbaUbound
__vbaDerefAry1
__vbaFreeVar
__vbaBoolVarNull
__vbaStrI4
__vbaFileOpen
Ord(571)
__vbaI2Str
Ord(321)
_CIsin
Ord(711)
__vbaNew
__vbaLsetFixstr
__vbaVarTstEq
__vbaStrMove
__vbaVarDiv
__vbaOnError
_adj_fdivr_m32i
Ord(579)
__vbaInStrVar
__vbaStrCat
__vbaVarDup
_adj_fdiv_m32
__vbaPrintFile
EVENT_SINK_Release
__vbaStrCmp
__vbaRecAssign
__vbaVarCmpGe
__vbaVarLateMemSt
__vbaStrVarCopy
__vbaFreeObjList
Ord(650)
EVENT_SINK_GetIDsOfNames
Ord(319)
Ord(666)
__vbaVarForNext
__vbaFreeVarList
__vbaStrVarMove
Ord(618)
__vbaExitProc
__vbaRaiseEvent
__vbaVarOr
__vbaVarTstNe
__vbaCastObj
__vbaLateMemCallLd
__vbaVarTstGe
__vbaAryConstruct2
Ord(520)
__vbaFreeObj
_adj_fdivr_m32
__vbaStrVarVal
__vbaVarSub
Ord(660)
__vbaVarTstGt
Ord(532)
_CIcos
Zombie_GetTypeInfo
Ord(528)
__vbaStrErrVarCopy
__vbaVarCmpNe
__vbaVarMove
Ord(646)
__vbaErrorOverflow
__vbaNew2
__vbaR8IntI4
__vbaLateIdSt
__vbaVarCmpEq
__vbaAryDestruct
__vbaAryCopy
_adj_fprem1
Ord(619)
Ord(537)
__vbaWriteFile
Ord(712)
__vbaLenVar
__vbaEnd
Ord(685)
__vbaLateMemSt
_adj_fpatan
EVENT_SINK_AddRef
__vbaVarForInit
__vbaVarVargNofree
__vbaStrCopy
Ord(632)
Ord(645)
__vbaFPException
__vbaAryVar
_adj_fdivr_m16i
__vbaVarAdd
Ord(100)
__vbaRecDestructAnsi
__vbaCastObjVar
Ord(519)
Ord(561)
Ord(526)
_CIsqrt
__vbaVarCopy
_CIatan
__vbaI2Abs
__vbaLateMemCall
_CItan
Ord(529)
__vbaObjSet
Ord(644)
__vbaVarCat
_CIexp
__vbaStrToAnsi
__vbaFpR8
__vbaFpI4
Ord(598)
__vbaFpI2
Number of PE resources by type
RT_ICON 10
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 11
CHINESE SIMPLIFIED 1
PE resources
ExifTool file metadata
SubsystemVersion
4.0

InitializedDataSize
135168

ImageVersion
3.0

ProductName
ConvertirPDF

FileVersionNumber
3.0.0.6

UninitializedDataSize
0

LanguageCode
Chinese (Simplified)

FileFlagsMask
0x0000

CharacterSet
Unicode

LinkerVersion
6.0

FileTypeExtension
exe

OriginalFileName
ConvertirPDF.exe

MIMEType
application/octet-stream

FileVersion
3.00.0006

TimeStamp
2015:08:19 02:56:07+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
ConvertirPDF

ProductVersion
3.00.0006

FileDescription
Convertir des fichiers PDF en Word, TXT, HTML, images et fichiers Flash.

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
ConvertirPDF.fr

CodeSize
3473408

FileSubtype
0

ProductVersionNumber
3.0.0.6

EntryPoint
0x429c

ObjectFileType
Executable application

File identification
MD5 4aa1a6b1bcd8b87225fcdda453ccb3ad
SHA1 b4abe73553def58ce92e49d904c56fb96de1872c
SHA256 fd1ea6928a87564df81765c96969593c86498e4f228ab8079d8d367cd1f02169
ssdeep
24576:KjPn9vJtdBAYDEdssbJtduUMrTFAbMQv1fVtdF:mPn9vndaLdnndlPxvhjdF

authentihash 504843066c454c9ce1484b317f6a41a899ac61650dbf466a9cbd8834ef35ade8
imphash a3b0eb3087228123b5d71f7e69b9ee27
File size 3.4 MB ( 3600384 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable Microsoft Visual Basic 6 (84.4%)
Win32 Dynamic Link Library (generic) (6.7%)
Win32 Executable (generic) (4.6%)
Generic Win/DOS Executable (2.0%)
DOS Executable Generic (2.0%)
Tags
peexe

VirusTotal metadata
First submission 2015-08-27 01:54:29 UTC ( vor 2 Jahre, 3 Monate )
Last submission 2015-08-27 01:54:29 UTC ( vor 2 Jahre, 3 Monate )
Dateinamen ConvertirPDF.exe
ConvertirPDF.exe
ConvertirPDF
Keine Kommentare. Bisher hat kein Mitglied der VirusTotal-Community einen Kommentar zu diesem Punkt verfasst, seien Sie der Erste!

Hinterlassen Sie Ihren Kommentar...

?
Kommentar abschicken

Sie sind nicht angemeldet. Nur registrierte Nutzer können Kommentare hinterlassen, melden Sie sich an und sagen Sie etwas dazu!

Keine Bewertungen. Niemand hat diesen Punkt bisher bewertet, seien Sie der Erste!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Hooking activity
Runtime DLLs
Additional details
The file installs an application-defined hook procedure into a hook chain. You would install a hook procedure to monitor the system for certain types of events. These events are associated either with a specific thread or with all threads in the same desktop as the calling thread. This is done making use of the SetWindowsHook Windows API function.