× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 285477e155c8aa01ea4f1040280439318576730519b225349e2f7346bc1c2598
File name: skype5511.exe
Detection ratio: 0 / 52
Analysis date: 2014-10-26 20:35:13 UTC ( 3 years, 12 months ago )
Antivirus Result Update
Ad-Aware 20141026
AegisLab 20141026
Yandex 20141025
AhnLab-V3 20141026
Antiy-AVL 20141026
Avast 20141026
AVG 20141026
Avira (no cloud) 20141026
AVware 20141026
Baidu-International 20141026
BitDefender 20141026
Bkav 20141024
ByteHero 20141026
CAT-QuickHeal 20141025
ClamAV 20141026
CMC 20141026
Comodo 20141026
Cyren 20141026
DrWeb 20141026
Emsisoft 20141026
ESET-NOD32 20141026
F-Prot 20141026
F-Secure 20141026
Fortinet 20141026
GData 20141026
Ikarus 20141026
Jiangmin 20141026
K7AntiVirus 20141025
K7GW 20141025
Kaspersky 20141026
Kingsoft 20141026
Malwarebytes 20141026
McAfee 20141026
McAfee-GW-Edition 20141026
Microsoft 20141026
eScan 20141025
NANO-Antivirus 20141026
Norman 20141026
nProtect 20141026
Qihoo-360 20141026
Rising 20141026
Sophos AV 20141026
SUPERAntiSpyware 20141025
Symantec 20141026
Tencent 20141026
TheHacker 20141022
TotalDefense 20141026
VBA32 20141023
VIPRE 20141026
ViRobot 20141026
Zillya 20141025
Zoner 20141024
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
(c) Skype Technologies S.A.

Publisher Skype Technologies S.A.
Product Skype.exe
Internal name Skype.exe
File version 5.0.0.0 + Utilita-SM
Description Skype
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2014-10-26 20:32:37
Entry Point 0x00004067
Number of sections 6
PE sections
PE imports
CreateFileMappingW
GetLastError
GetModuleHandleA
HeapFree
LoadLibraryW
GetFileSizeEx
SetEnvironmentVariableW
GetSystemInfo
GetFileInformationByHandle
GetModuleFileNameW
UnmapViewOfFile
CreateFileW
VirtualFree
HeapAlloc
CloseHandle
MapViewOfFile
GetTickCount
GetProcAddress
VirtualAlloc
GetProcessHeap
Number of PE resources by type
RT_ICON 18
RT_GROUP_ICON 2
RT_VERSION 1
RT_MANIFEST 1
Number of PE resources by language
ENGLISH US 20
ENGLISH EIRE 1
NEUTRAL 1
PE resources
ExifTool file metadata
PackagerVersion
11.4.176

SubsystemVersion
5.0

InitializedDataSize
466944

ImageVersion
0.0

ProductName
Skype

FileVersionNumber
5.0.0.0

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

VmVersion
11.2.123

CharacterSet
Windows, Latin1

LinkerVersion
9.0

Packager
Info...

FileType
Win32 EXE

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
5.0.0.0 + Utilita-SM

TimeStamp
2014:10:26 21:32:37+01:00

BuildTime
NEW

PEType
PE32

InternalName
Skype.exe

FileAccessDate
2014:10:26 21:35:15+01:00

ProductVersion
5 + Utilita-SM

FileDescription
Skype

OSVersion
5.0

FileCreateDate
2014:10:26 21:35:15+01:00

FileOS
Win32

LegalCopyright
(c) Skype Technologies S.A.

MachineType
Intel 386 or later, and compatibles

CompanyName
Skype Technologies S.A.

CodeSize
16384

FileSubtype
0

ProductVersionNumber
5.0.0.0

EntryPoint
0x4067

ObjectFileType
Executable application

File identification
MD5 3bdcde047bd9da50c56a0587f8d264a0
SHA1 4a953c8f6bc31f7663746ae61bc6d403e44e862e
SHA256 285477e155c8aa01ea4f1040280439318576730519b225349e2f7346bc1c2598
ssdeep
393216:pALCv838SZN3t0AWwFr+2KhmqfBLBs2ssgPkbadpt:yN8Kt0AKhm8pBs1PkU

authentihash d6497a166e6d700a146ff0b96a33e9e564d6ad080922038ff9b383fcb6ec1670
imphash bc10594f0e5b090521adac523994d99c
File size 17.2 MB ( 18027609 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable (generic) (52.9%)
Generic Win/DOS Executable (23.5%)
DOS Executable Generic (23.4%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
Tags
peexe

VirusTotal metadata
First submission 2014-10-26 20:35:13 UTC ( 3 years, 12 months ago )
Last submission 2014-10-26 20:35:13 UTC ( 3 years, 12 months ago )
File names skype5511.exe
Skype.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
HTTP requests
DNS requests
TCP connections