× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 08454ff5800e6d9fd6ef868f27d7123981b909d61e896d7934b6988dac6d5e79
File name: igfxupdate.exe
Detection ratio: 2 / 41
Analysis date: 2012-11-13 22:28:22 UTC ( 1 year, 5 months ago ) View latest
Antivirus Result Update
Ikarus Win32.BitCoinMiner 20121113
McAfee-GW-Edition Heuristic.LooksLike.Win32.Suspicious.J!89 20121113
AVG 20121113
Agnitum 20121113
AntiVir 20121113
Antiy-AVL 20121113
Avast 20121113
BitDefender 20121113
CAT-QuickHeal 20121113
ClamAV 20121113
Commtouch 20121113
Comodo 20121113
DrWeb 20121113
ESET-NOD32 20121113
Emsisoft 20121113
F-Prot 20121113
F-Secure 20121113
Fortinet 20121113
GData 20121113
Jiangmin 20121113
K7AntiVirus 20121110
Kaspersky 20121113
Kingsoft 20121112
McAfee 20121113
MicroWorld-eScan 20121113
Microsoft 20121113
Norman 20121112
PCTools 20121113
Panda 20121113
Rising 20121113
SUPERAntiSpyware 20121113
Sophos 20121113
TheHacker 20121113
TotalDefense 20121113
TrendMicro 20121113
TrendMicro-HouseCall 20121113
VBA32 20121112
VIPRE 20121113
ViRobot 20121113
eSafe 20121112
nProtect 20121113
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Authenticode signature block
Copyright
© Intel Corporation. All rights reserved.

Publisher Intel Corporation
Product Intel Graphics Properties
Original name igfxupdate.exe
Internal name igfxupdate.exe
File version 8.15.10.2622
Description Updater service
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2012-10-09 11:40:55
Link date 12:40 PM 10/9/2012
Entry Point 0x000012A0
Number of sections 9
PE sections
PE imports
GetLastError
EnterCriticalSection
ReleaseMutex
GetSystemInfo
WaitForSingleObject
SetEvent
ExitProcess
TlsAlloc
VirtualProtect
DeleteCriticalSection
GetCurrentProcess
CreateSemaphoreA
TlsGetValue
GetProcAddress
CreateMutexA
ReleaseSemaphore
CreateThread
TlsFree
GetModuleHandleA
SetUnhandledExceptionFilter
CloseHandle
SetPriorityClass
InitializeCriticalSection
VirtualQuery
CreateEventA
InterlockedDecrement
Sleep
TlsSetValue
GetTickCount
GetCurrentThreadId
InterlockedIncrement
SetLastError
LeaveCriticalSection
socket
recv
send
WSAStartup
gethostbyname
connect
inet_ntoa
htons
closesocket
__p__fmode
malloc
sscanf
__p__environ
realloc
atexit
abort
_setmode
_cexit
fputc
fwrite
_onexit
fputs
sprintf
memcmp
free
atoi
vfprintf
__getmainargs
calloc
_write
memcpy
memmove
signal
strerror
__set_app_type
strcmp
memchr
_iob
Number of PE resources by type
RT_MANIFEST 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 2
ExifTool file metadata
CodeSize
193536

SubsystemVersion
4.0

LinkerVersion
2.22

ImageVersion
1.0

FileSubtype
0

FileVersionNumber
8.15.10.2622

LanguageCode
Neutral

FileFlagsMask
0x0000

FileDescription
Updater service

CharacterSet
Unicode

InitializedDataSize
268288

FileOS
Win32

MIMEType
application/octet-stream

LegalCopyright
Intel Corporation. All rights reserved.

FileVersion
8.15.10.2622

TimeStamp
2012:10:09 12:40:55+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
igfxupdate.exe

FileAccessDate
2014:02:15 23:19:52+01:00

ProductVersion
8.15.10.2622

UninitializedDataSize
512

OSVersion
4.0

FileCreateDate
2014:02:15 23:19:52+01:00

OriginalFilename
igfxupdate.exe

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Intel Corporation

LegalTrademarks
Intel

ProductName
Intel Graphics Properties

ProductVersionNumber
8.15.10.2622

EntryPoint
0x12a0

ObjectFileType
Executable application

AssemblyVersion
8.15.10.2622

File identification
MD5 f5830e8d8a81e83c59b497e660fb5827
SHA1 3183ee1b1409d09253f7f147d20e0295cd54d281
SHA256 08454ff5800e6d9fd6ef868f27d7123981b909d61e896d7934b6988dac6d5e79
ssdeep
6144:fhoQOF0VwzV7DJ4THj0fxlB9IdpHS8pQUPBJ:fKQOF3F8Hj0ZlB9kpy8pd

imphash 7e365836de94642d89d57f9cc318fb44
File size 263.0 KB ( 269312 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Dynamic Link Library (generic) (43.4%)
Win32 Executable (generic) (29.8%)
Generic Win/DOS Executable (13.2%)
DOS Executable Generic (13.2%)
VXD Driver (0.2%)
Tags
peexe

VirusTotal metadata
First submission 2012-10-16 19:56:38 UTC ( 1 year, 6 months ago )
Last submission 2014-02-15 22:19:39 UTC ( 2 months ago )
File names igfxupdate.exe
file-6213446_exe
f5830e8d8a81e83c59b497e660fb5827
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
UDP communications