× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 008e53b4acbf179ebdc224d30c97b6b2da0affb6999956a013d5ca68c526106e
File name: HelpBuilderSetup.5.0.205-rc1.exe
Detection ratio: 2 / 57
Analysis date: 2016-05-23 08:36:30 UTC ( 2 years, 8 months ago )
Antivirus Result Update
Bkav HW32.Packed.447C 20160521
Rising PUF.InstallRex!1.9E4C 20160523
Ad-Aware 20160523
AegisLab 20160523
AhnLab-V3 20160522
Alibaba 20160523
ALYac 20160523
Antiy-AVL 20160522
Arcabit 20160523
Avast 20160523
AVG 20160523
Avira (no cloud) 20160523
AVware 20160523
Baidu 20160523
Baidu-International 20160523
BitDefender 20160523
CAT-QuickHeal 20160523
ClamAV 20160523
CMC 20160523
Comodo 20160523
Cyren 20160523
DrWeb 20160523
Emsisoft 20160523
ESET-NOD32 20160522
F-Prot 20160523
F-Secure 20160523
Fortinet 20160523
GData 20160523
Ikarus 20160523
Jiangmin 20160523
K7AntiVirus 20160523
K7GW 20160523
Kaspersky 20160523
Kingsoft 20160523
Malwarebytes 20160523
McAfee 20160523
McAfee-GW-Edition 20160522
Microsoft 20160523
eScan 20160523
NANO-Antivirus 20160523
nProtect 20160520
Panda 20160522
Qihoo-360 20160523
Sophos AV 20160523
SUPERAntiSpyware 20160523
Symantec 20160523
Tencent 20160523
TheHacker 20160522
TotalDefense 20160523
TrendMicro 20160523
TrendMicro-HouseCall 20160523
VBA32 20160520
VIPRE 20160523
ViRobot 20160523
Yandex 20160522
Zillya 20160521
Zoner 20160523
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
© West Wind Technologies, 1996-2016

Product West Wind HTML Help Builder
Original name HelpBuilderSetup.exe
Internal name TSULoader
File version 2016.1.14.1942
Description Installer for West Wind HTML Help Builder
Comments WinNT (x86) Unicode Lib Rel
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2015-11-22 09:59:39
Entry Point 0x0000144A
Number of sections 7
PE sections
PE imports
GetLastError
HeapFree
CreateFileMappingW
LoadLibraryW
FreeLibrary
ExitProcess
GetFileAttributesW
lstrlenW
HeapAlloc
GetFileSize
SetFileTime
GetCommandLineW
MultiByteToWideChar
DeleteFileW
GetProcAddress
GetProcessHeap
lstrcpynW
GetModuleFileNameW
MapViewOfFile
SetFilePointer
ReadFile
GetCurrentThreadId
GetTempPathW
CloseHandle
GetSystemTimeAsFileTime
GetModuleHandleW
UnmapViewOfFile
WriteFile
CreateFileW
Sleep
SetFileAttributesW
GetTickCount
OutputDebugStringA
GetCurrentProcessId
MessageBoxA
PostMessageW
wvsprintfA
wsprintfW
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
Number of PE resources by type
RT_ICON 4
RT_GROUP_ICON 1
RT_VERSION 1
RT_MANIFEST 1
Number of PE resources by language
NEUTRAL 7
PE resources
Debug information
ExifTool file metadata
WebSite
http://www.west-wind.com/wwhelp

FileTypeExtension
exe

SubsystemVersion
4.0

Comments
WinNT (x86) Unicode Lib Rel

InitializedDataSize
13130240

ImageVersion
6.0

ProductName
West Wind HTML Help Builder

FileVersionNumber
2016.1.14.1942

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

PackageCode
{F297BFCE-EA61-4DF1-944F-0697F3E07821}

LinkerVersion
8.0

Subsystem
Windows GUI

OriginalFileName
HelpBuilderSetup.exe

MIMEType
application/octet-stream

ProductCode
{D0589E6A-29AC-491C-A5DA-9D7827513227}

FileVersion
2016.1.14.1942

TimeStamp
2015:11:22 10:59:39+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
TSULoader

ProductVersion
5.0.208

FileDescription
Installer for West Wind HTML Help Builder

OSVersion
4.0

FileOS
Windows NT 32-bit

LegalCopyright
West Wind Technologies, 1996-2016

MachineType
Intel 386 or later, and compatibles

CompanyName
West Wind Technologies

CodeSize
7680

FileSubtype
0

ProductVersionNumber
5.0.208.0

EntryPoint
0x144a

ObjectFileType
Executable application

File identification
MD5 1f9597254e7cd23715ace5176458ad22
SHA1 aacb195edda114af7e2de638aa745d845560d783
SHA256 008e53b4acbf179ebdc224d30c97b6b2da0affb6999956a013d5ca68c526106e
ssdeep
393216:Bu6DBwC5U1cF/cvEs8M0p8W8pz9AFrQkwvgM:B9BprSssop8npzir0

authentihash 6449ccd7e09a0094dddc68bdcbc35737b761f5d8ea57bc20b37a0bdffe52559d
imphash 05ea7b0d93fd49dca73c49b148424e88
File size 12.5 MB ( 13138944 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (67.4%)
Win32 Dynamic Link Library (generic) (14.2%)
Win32 Executable (generic) (9.7%)
Generic Win/DOS Executable (4.3%)
DOS Executable Generic (4.3%)
Tags
peexe

VirusTotal metadata
First submission 2016-05-23 08:36:30 UTC ( 2 years, 8 months ago )
Last submission 2016-05-23 08:36:30 UTC ( 2 years, 8 months ago )
File names TSULoader
HelpBuilderSetup.5.0.205-rc1.exe
HelpBuilderSetup.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Moved files
Deleted files
Created mutexes
Opened mutexes
Opened service managers
Runtime DLLs
UDP communications