× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 1029d92a67acc9a2e5107dea540817253affafed71d04e13ccc65ffbf1e5257a
File name: autopetbuy.exe
Detection ratio: 3 / 54
Analysis date: 2015-12-18 17:49:58 UTC ( 3 years, 1 month ago ) View latest
Antivirus Result Update
Bkav HW32.Packed.FCDA 20151218
CMC Virus.Win32.Sality!O 20151217
Jiangmin Trojan/Generic.axzqu 20151218
Ad-Aware 20151218
AegisLab 20151218
Yandex 20151218
AhnLab-V3 20151218
Alibaba 20151208
ALYac 20151218
Antiy-AVL 20151218
Arcabit 20151218
Avast 20151218
AVG 20151218
AVware 20151218
Baidu-International 20151218
BitDefender 20151218
ByteHero 20151218
CAT-QuickHeal 20151217
ClamAV 20151217
Comodo 20151218
Cyren 20151218
DrWeb 20151218
Emsisoft 20151218
ESET-NOD32 20151218
F-Prot 20151218
F-Secure 20151218
Fortinet 20151218
GData 20151218
Ikarus 20151218
K7AntiVirus 20151218
K7GW 20151218
Kaspersky 20151218
Malwarebytes 20151218
McAfee 20151218
McAfee-GW-Edition 20151218
Microsoft 20151218
eScan 20151218
NANO-Antivirus 20151218
nProtect 20151218
Panda 20151218
Qihoo-360 20151218
Rising 20151218
Sophos AV 20151218
SUPERAntiSpyware 20151218
Symantec 20151217
Tencent 20151218
TheHacker 20151218
TrendMicro 20151218
TrendMicro-HouseCall 20151218
VBA32 20151217
VIPRE 20151218
ViRobot 20151218
Zillya 20151218
Zoner 20151218
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2013-2014 Rodolfo U. Batista

Product Auto-Pet-Buy
Original name autopetbuy.exe
Internal name Auto-Pet-Buy
File version 1.2.2.2
Description Auto-Pet-Buy
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2014-05-04 02:37:30
Entry Point 0x000FF2CB
Number of sections 3
PE sections
PE imports
RegCloseKey
GetOpenFileNameW
BitBlt
GetProcAddress
GetModuleHandleA
SafeArrayGetDim
GetModuleBaseNameW
DragFinish
VerQueryValueW
mixerOpen
WSACleanup
CoGetObject
Number of PE resources by type
RT_ICON 12
RT_GROUP_ICON 8
RT_DIALOG 1
RT_MANIFEST 1
RT_MENU 1
RT_RCDATA 1
RT_ACCELERATOR 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 26
PE resources
ExifTool file metadata
SubsystemVersion
5.0

LinkerVersion
10.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.2.2.2

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x0017

CharacterSet
Unicode

InitializedDataSize
372224

EntryPoint
0xff2cb

OriginalFileName
autopetbuy.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 2013-2014 Rodolfo U. Batista

FileVersion
1.2.2.2

TimeStamp
2014:05:04 03:37:30+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Auto-Pet-Buy

ProductVersion
1.2.2.2

FileDescription
Auto-Pet-Buy

OSVersion
5.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CodeSize
634368

ProductName
Auto-Pet-Buy

ProductVersionNumber
1.2.2.2

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 ab5fe1da93842265692da7773598b1a9
SHA1 bf6e10e6bf77fb37208803c2b5bdfc95b2d7b848
SHA256 1029d92a67acc9a2e5107dea540817253affafed71d04e13ccc65ffbf1e5257a
ssdeep
6144:eF+3Y5/JuCQ06DJeIe89dSp1wCJKmO+MLIr45V5q0msCDd8dUXi2wlRtWqtAEnrA:NIPE5e589dSphzLr4r5q0madQgWqUtd

authentihash c1b5e8276cc97335c9240e4003c2cad21438bf9dd99dc68b02796534f66e9111
imphash e0bb798843321269d19f83440476c11a
File size 383.0 KB ( 392192 bytes )
File type Win32 EXE
Magic literal
MS-DOS executable, MZ for MS-DOS

TrID Win32 Executable (generic) (52.9%)
Generic Win/DOS Executable (23.5%)
DOS Executable Generic (23.5%)
Tags
peexe

VirusTotal metadata
First submission 2015-10-26 21:40:13 UTC ( 3 years, 2 months ago )
Last submission 2017-03-17 10:20:20 UTC ( 1 year, 10 months ago )
File names autopetbuy.exe
Auto-Pet-Buy
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Runtime DLLs