× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 1f41e5c9d2ba099eaea76f72c7a5c879ca84d3b2d6439b21b47201d685d2761b
File name: 7-PDF_Maker_Portable_1.5.2.paf_Éditeur.exe
Detection ratio: 1 / 53
Analysis date: 2017-02-03 13:42:04 UTC ( 2 years ago ) View latest
Antivirus Result Update
Bkav [Nullsoft PiMP Stub -> SFX] 20170203
Ad-Aware 20170203
AegisLab 20170203
AhnLab-V3 20170203
Alibaba 20170122
ALYac 20170203
Antiy-AVL 20170203
Arcabit 20170203
Avast 20170203
AVG 20170203
Avira (no cloud) 20170203
AVware 20170203
Baidu 20170125
BitDefender 20170203
CAT-QuickHeal 20170203
ClamAV 20170203
CMC 20170203
Comodo 20170203
CrowdStrike Falcon (ML) 20170130
Cyren 20170202
ESET-NOD32 20170203
F-Prot 20170203
F-Secure 20170203
Fortinet 20170203
GData 20170203
Ikarus 20170203
Sophos ML 20170111
Jiangmin 20170203
K7AntiVirus 20170203
K7GW 20170203
Kingsoft 20170203
Malwarebytes 20170203
McAfee 20170203
McAfee-GW-Edition 20170203
Microsoft 20170203
eScan 20170203
NANO-Antivirus 20170203
nProtect 20170203
Panda 20170202
Qihoo-360 20170203
Rising 20170203
Sophos AV 20170203
SUPERAntiSpyware 20170203
Symantec 20170202
Tencent 20170203
TheHacker 20170202
TrendMicro 20170203
TrendMicro-HouseCall 20170203
Trustlook 20170203
VBA32 20170203
VIPRE 20170203
ViRobot 20170203
WhiteArmor 20170202
Yandex 20170203
Zillya 20170203
Zoner 20170203
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Authenticode signature block and FileVersionInfo properties
Copyright
2007-2014 PortableApps.com, PortableApps.com Installer 3.0.15.0

Product 7-PDF Maker Portable-v1.5.2
Original name 7-PDF_Maker_Portable-v1.5.2_1.5.2.paf.exe
Internal name 7-PDF Maker Portable-v1.5.2
File version 1.5.2.164
Description 7-PDF Maker Portable-v1.5.2
Comments For additional details, visit PortableApps.com
Signature verification Signed file, verified signature
Signing date 2:43 PM 12/8/2015
Signers
[+] Thorsten Hodes
Status This certificate or one of the certificates in the certificate chain is not time valid.
Issuer Certum Code Signing CA
Valid from 4:50 PM 10/30/2015
Valid to 4:50 PM 10/29/2018
Valid usage Code Signing
Algorithm sha1RSA
Thumbprint 1EDD6190CF53FDFDB78AA15604A04E0BDFEA0814
Serial number 7F 26 66 E1 36 B9 31 99 C4 39 D1 65 A3 C7 0B A4
[+] Certum Code Signing CA
Status Valid
Issuer Certum Trusted Network CA
Valid from 12:04 PM 9/20/2011
Valid to 12:59 AM 9/21/2026
Valid usage Code Signing
Algorithm sha1RSA
Thumbprint F5B24F65CF24C08F5FE9BB4E70B7B94432FB700B
Serial number 00 FA 33 B7 9D D4 96 CF D1 0C 84 65 39 A4 9D 63 B5
[+] Certum Trusted Network CA
Status Valid
Issuer Certum Trusted Network CA
Valid from 1:07 PM 10/22/2008
Valid to 1:07 PM 12/31/2029
Valid usage Server Auth, Client Auth, Email Protection, Code Signing, Timestamp Signing, EFS, IPSEC Tunnel, IPSEC User
Algorithm sha1RSA
Thumbprint 07E032E020B72C3F192F0628A2593A19A70F069E
Serial number 04 44 C0
Counter signers
[+] COMODO Time Stamping Signer
Status This certificate or one of the certificates in the certificate chain is not time valid.
Issuer UTN-USERFirst-Object
Valid from 1:00 AM 5/5/2015
Valid to 12:59 AM 1/1/2016
Valid usage Timestamp Signing
Algorithm sha1RSA
Thumbrint DF946A5E503015777FD22F46B5624ECD27BEE376
Serial number 00 9F EA C8 11 B0 F1 62 47 A5 FC 20 D8 05 23 AC E6
[+] USERTrust (Code Signing)
Status Valid
Issuer UTN-USERFirst-Object
Valid from 7:31 PM 7/9/1999
Valid to 7:40 PM 7/9/2019
Valid usage EFS, Timestamp Signing, Code Signing
Algorithm sha1RSA
Thumbrint E12DFB4B41D7D9C32B30514BAC1D81D8385E2D46
Serial number 44 BE 0C 8B 50 00 24 B4 11 D3 36 2D E0 B3 5F 1B
Packers identified
F-PROT NSIS, appended, UTF-8, UPX
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2012-02-24 19:19:59
Entry Point 0x000039E3
Number of sections 6
PE sections
Overlays
MD5 92046e84ca3d95e8f3051584784651dc
File type data
Offset 154112
Size 53792440
Entropy 8.00
PE imports
RegCreateKeyExW
RegDeleteValueW
RegCloseKey
RegSetValueExW
RegEnumValueW
RegOpenKeyExW
RegEnumKeyW
RegDeleteKeyW
RegQueryValueExW
ImageList_Create
Ord(17)
ImageList_Destroy
ImageList_AddMasked
GetDeviceCaps
CreateFontIndirectW
SetBkMode
CreateBrushIndirect
SelectObject
SetBkColor
DeleteObject
SetTextColor
GetLastError
WriteFile
CopyFileW
GetShortPathNameW
LoadLibraryA
lstrlenA
GetModuleFileNameW
GlobalFree
WaitForSingleObject
GetVersionExW
GetExitCodeProcess
FindFirstFileW
ExitProcess
GlobalUnlock
GetFileAttributesW
lstrlenW
GetCurrentProcess
CompareFileTime
FindNextFileW
GetFileSize
OpenProcess
SetFileTime
GetCommandLineW
GetWindowsDirectoryW
SetErrorMode
MultiByteToWideChar
CreateDirectoryW
SetFilePointer
GlobalLock
GetPrivateProfileStringW
WritePrivateProfileStringW
GetTempFileNameW
lstrcpynW
RemoveDirectoryW
ExpandEnvironmentStringsW
lstrcpyW
GetFullPathNameW
lstrcmpiA
CreateThread
LoadLibraryW
GetModuleHandleA
GetSystemDirectoryW
GetDiskFreeSpaceW
ReadFile
GetTempPathW
CloseHandle
DeleteFileW
lstrcmpA
lstrcmpW
GetModuleHandleW
lstrcatW
lstrcpynA
FreeLibrary
SearchPathW
WideCharToMultiByte
lstrcmpiW
SetCurrentDirectoryW
lstrcpyA
CreateFileW
GlobalAlloc
CreateProcessW
FindClose
Sleep
MoveFileW
SetFileAttributesW
GetTickCount
GetVersion
GetProcAddress
LoadLibraryExW
MulDiv
SHBrowseForFolderW
SHFileOperationW
ShellExecuteW
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetFileInfoW
EmptyClipboard
GetMessagePos
EndPaint
EndDialog
LoadBitmapW
SetClassLongW
DefWindowProcW
CharPrevW
PostQuitMessage
ShowWindow
SetWindowPos
wvsprintfW
GetSystemMetrics
SetWindowLongW
IsWindow
PeekMessageW
GetWindowRect
EnableWindow
GetDC
CharUpperW
DialogBoxParamW
GetClassInfoW
AppendMenuW
CharNextW
IsWindowEnabled
GetDlgItemTextW
MessageBoxIndirectW
GetSysColor
CheckDlgButton
DispatchMessageW
GetAsyncKeyState
BeginPaint
CreatePopupMenu
SendMessageW
SetCursor
SetClipboardData
GetWindowLongW
FindWindowExW
IsWindowVisible
SetForegroundWindow
SetWindowTextW
GetDlgItem
SystemParametersInfoW
LoadImageW
EnableMenuItem
ScreenToClient
InvalidateRect
CreateDialogParamW
wsprintfA
SetTimer
CallWindowProcW
TrackPopupMenu
RegisterClassW
FillRect
IsDlgButtonChecked
CharNextA
SetDlgItemTextW
LoadCursorW
GetSystemMenu
SendMessageTimeoutW
CreateWindowExW
wsprintfW
CloseClipboard
GetClientRect
DrawTextW
DestroyWindow
ExitWindowsEx
OpenClipboard
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
OleUninitialize
CoTaskMemFree
OleInitialize
CoCreateInstance
Number of PE resources by type
RT_DIALOG 32
RT_ICON 7
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 41
NEUTRAL 1
PE resources
ExifTool file metadata
LegalTrademarks
PortableApps.com is a registered trademark of Rare Ideas, LLC.

SubsystemVersion
5.0

Comments
For additional details, visit PortableApps.com

InitializedDataSize
445952

ImageVersion
6.0

ProductName
7-PDF Maker Portable-v1.5.2

FileVersionNumber
1.5.2.164

UninitializedDataSize
16896

LanguageCode
Neutral

FileFlagsMask
0x0000

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unicode

LinkerVersion
10.0

PortableAppscomFormatVersion
3.0.15

FileTypeExtension
exe

OriginalFileName
7-PDF_Maker_Portable-v1.5.2_1.5.2.paf.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

PortableAppscomInstallerVersion
3.0.15.0

FileVersion
1.5.2.164

TimeStamp
2012:02:24 20:19:59+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
7-PDF Maker Portable-v1.5.2

ProductVersion
1.5.2.164

PortableAppscomAppID
7-PDF Maker Portable-v1.5.2

FileDescription
7-PDF Maker Portable-v1.5.2

OSVersion
5.0

FileOS
Win32

LegalCopyright
2007-2014 PortableApps.com, PortableApps.com Installer 3.0.15.0

MachineType
Intel 386 or later, and compatibles

CompanyName
PortableApps.com

CodeSize
28672

FileSubtype
0

ProductVersionNumber
1.5.2.164

EntryPoint
0x39e3

ObjectFileType
Executable application

File identification
MD5 7a35dfcb6a3eb43f1cb7ec64427a2924
SHA1 4a7fbb17cb5ef49cfe9dcc59a0fa87f39b5d083f
SHA256 1f41e5c9d2ba099eaea76f72c7a5c879ca84d3b2d6439b21b47201d685d2761b
ssdeep
1572864:GEzXgdsGUofZNO2sQL4nKny2i38VRT9vnhQGJO8I:lzNIvY64IdsI9pMB

authentihash 7a7932f68053e1158da982ba8b1b42affa787114667d589c589fb6ab20b56292
imphash 32f3282581436269b3a75b6675fe3e08
File size 51.4 MB ( 53946552 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win64 Executable (generic) (72.3%)
Win32 Executable (generic) (11.8%)
OS/2 Executable (generic) (5.3%)
Generic Win/DOS Executable (5.2%)
DOS Executable Generic (5.2%)
Tags
nsis peexe signed upx overlay

VirusTotal metadata
First submission 2015-12-08 16:56:26 UTC ( 3 years, 2 months ago )
Last submission 2017-10-02 11:00:38 UTC ( 1 year, 4 months ago )
File names 1F41E5C9D2BA099EAEA76F72C7A5C879CA84D3B2D6439B21B47201D685D2761B
7-PDF_Maker_Portable_1.5.2.paf.exe
7-PDF_Maker_Portable-v1.5.2_1.5.2.paf.exe
7-PDF_Maker_Portable_1.5.2.paf_Éditeur.exe
7-PDF Maker Portable-v1.5.2
7-PDF_Maker_Portable_1.5.2.paf.exe
7-PDF_Maker_Portable_1.5.2.paf.exe
7-PDF_Maker_Portable_1.5.2.paf.exe
7-PDF Maker Portable-7p152.exe
7-PDF_Maker_Portable_1.5.2.paf.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!