× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 28fef9225b022a04e8e66ec7d04eef53e8e1bfed7d3f30ebc644743e1f88f101
File name: 28fef9225b022a04e8e66ec7d04eef53e8e1bfed7d3f30ebc644743e1f88f101
Detection ratio: 0 / 57
Analysis date: 2015-08-26 16:18:33 UTC ( 3 years, 6 months ago ) View latest
Antivirus Result Update
Ad-Aware 20150826
AegisLab 20150826
Yandex 20150826
AhnLab-V3 20150826
Alibaba 20150826
ALYac 20150826
Antiy-AVL 20150826
Arcabit 20150826
Avast 20150826
AVG 20150826
Avira (no cloud) 20150826
AVware 20150826
Baidu-International 20150826
BitDefender 20150826
Bkav 20150826
ByteHero 20150826
CAT-QuickHeal 20150826
ClamAV 20150826
CMC 20150826
Comodo 20150826
Cyren 20150826
DrWeb 20150826
Emsisoft 20150826
ESET-NOD32 20150826
F-Prot 20150826
F-Secure 20150826
Fortinet 20150826
GData 20150826
Ikarus 20150826
Jiangmin 20150823
K7AntiVirus 20150826
K7GW 20150826
Kaspersky 20150826
Kingsoft 20150826
Malwarebytes 20150826
McAfee 20150826
McAfee-GW-Edition 20150826
Microsoft 20150825
eScan 20150826
NANO-Antivirus 20150826
nProtect 20150826
Panda 20150826
Qihoo-360 20150826
Rising 20150826
Sophos AV 20150826
SUPERAntiSpyware 20150826
Symantec 20150826
Tencent 20150826
TheHacker 20150826
TotalDefense 20150826
TrendMicro 20150826
TrendMicro-HouseCall 20150826
VBA32 20150826
VIPRE 20150826
ViRobot 20150826
Zillya 20150826
Zoner 20150826
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2007-04-27 19:48:58
Entry Point 0x00057F40
Number of sections 4
PE sections
PE imports
CopySid
RegCreateKeyW
RegRestoreKeyW
RegCreateKeyA
GetSidSubAuthorityCount
QueryServiceStatus
RegOpenKeyExW
LookupAccountNameW
RegOpenKeyExA
SetSecurityDescriptorSacl
GetTokenInformation
GetKernelObjectSecurity
ImpersonateSelf
GetSecurityDescriptorDacl
LsaFreeMemory
DeregisterEventSource
GetSecurityDescriptorSacl
SetSecurityInfo
LsaRetrievePrivateData
IsValidAcl
LsaQueryInformationPolicy
SetKernelObjectSecurity
SetSecurityDescriptorOwner
LookupPrivilegeValueA
SetNamedSecurityInfoA
OpenServiceA
AddAccessDeniedAce
RegQueryValueExA
RegSetValueA
OpenServiceW
LsaNtStatusToWinError
GetSecurityInfo
UnlockServiceDatabase
SetSecurityDescriptorDacl
CloseServiceHandle
GetSidSubAuthority
RegisterEventSourceW
AddAccessAllowedAce
RegisterEventSourceA
SetEntriesInAclA
RegLoadKeyA
RegLoadKeyW
IsTextUnicode
RegDeleteValueW
LogonUserW
RegSetValueExW
RegEnumValueW
InitializeSecurityDescriptor
RegSetValueExA
EqualSid
SetThreadToken
AddAce
RegNotifyChangeKeyValue
RegCloseKey
AccessCheck
DeleteService
GetSecurityDescriptorLength
RegGetKeySecurity
OpenProcessToken
LsaClose
DuplicateToken
SetFileSecurityW
CloseEventLog
IsValidSid
GetSidIdentifierAuthority
RegisterServiceCtrlHandlerW
RegEnumKeyExW
LockServiceDatabase
LsaAddAccountRights
RegisterServiceCtrlHandlerA
MapGenericMask
SetEntriesInAclW
RevertToSelf
RegSaveKeyA
FreeSid
MakeSelfRelativeSD
AllocateAndInitializeSid
StartServiceA
RegEnumValueA
SetNamedSecurityInfoW
RegDeleteKeyA
RegCreateKeyExA
QueryServiceConfigA
OpenSCManagerW
GetSecurityDescriptorControl
GetAce
AdjustTokenPrivileges
ControlService
RegDeleteKeyW
LsaOpenPolicy
GetNamedSecurityInfoW
GetAclInformation
RegQueryValueA
MakeAbsoluteSD
GetUserNameW
GetSecurityDescriptorOwner
RegOpenKeyW
GetNamedSecurityInfoA
RegEnumKeyA
RegDeleteValueA
LsaEnumerateAccountRights
RegConnectRegistryA
RegQueryValueW
SetServiceStatus
RegQueryInfoKeyW
GetFileSecurityW
EncryptFileW
GetLengthSid
RegUnLoadKeyA
StartServiceCtrlDispatcherA
EnumDependentServicesW
ChangeServiceConfigA
ReportEventW
StartServiceCtrlDispatcherW
ImpersonateLoggedOnUser
RegUnLoadKeyW
ChangeServiceConfigW
ReportEventA
SetSecurityDescriptorGroup
ClusterRegSetValue
GetClusterNodeKey
ClusterRegSetKeySecurity
CreateClusterResource
CreateClusterNotifyPort
GetClusterNetworkId
ClusterNetInterfaceControl
ClusterRegDeleteKey
DeleteClusterResource
ClusterResourceEnum
GetClusterResourceKey
ClusterNodeControl
OpenClusterResource
CloseCluster
GetClusterGroupKey
CloseClusterNotifyPort
AddClusterResourceNode
ClusterNetworkCloseEnum
ClusterRegCreateKey
GetClusterNodeState
ClusterResourceTypeControl
ImmSetCompositionStringW
ImmGetConversionStatus
ImmNotifyIME
ImmGetIMEFileNameA
ImmSetCompositionStringA
ImmGetIMEFileNameW
ImmGetStatusWindowPos
ImmIsIME
ImmGetDescriptionA
ImmEscapeW
ImmCreateContext
ImmSetConversionStatus
ImmGetCompositionStringA
ImmIsUIMessageW
ImmInstallIMEA
ImmEscapeA
ImmGetDescriptionW
ImmGetOpenStatus
ImmGetProperty
ImmGetCompositionStringW
ImmSetCompositionFontA
ImmUnregisterWordW
ImmGetCompositionFontA
ImmGetCompositionWindow
ImmGetContext
ImmUnregisterWordA
ImmSetCandidateWindow
ImmGetGuideLineW
ImmRegisterWordW
ImmGetCompositionFontW
ImmEnumRegisterWordW
ImmSetCompositionFontW
ImmIsUIMessageA
ImmConfigureIMEA
ImmSetCompositionWindow
ImmDestroyContext
ImmGetCandidateWindow
ImmSimulateHotKey
ImmConfigureIMEW
ImmEnumRegisterWordA
ImmGetConversionListW
ImmSetStatusWindowPos
ImmReleaseContext
ImmSetOpenStatus
ImmAssociateContext
GetStartupInfoA
GetModuleHandleA
GetTickCount
LoadLibraryExW
TransparentBlt
AlphaBlend
_except_handler3
__p__fmode
_acmdln
_exit
_adjust_fdiv
__p__commode
exit
_XcptFilter
__getmainargs
_initterm
_controlfp
__setusermatherr
__set_app_type
SetupCloseFileQueue
SetupAddToSourceListA
SetupGetInfFileListA
SetupDiDestroyDeviceInfoList
SetupOpenInfFileW
SetupDiGetClassInstallParamsW
SetupDiSelectDevice
SetupDiGetClassInstallParamsA
SetupQuerySourceListA
SetupDiSetClassInstallParamsA
SetupSetPlatformPathOverrideW
SetupSetDirectoryIdExW
SetupQueueDeleteSectionA
SetupRemoveFromDiskSpaceListW
SetupTerminateFileLog
SetupRemoveFromDiskSpaceListA
SetupDiAskForOEMDisk
SetupDiClassNameFromGuidA
SetupGetSourceFileSizeW
SetupAddToDiskSpaceListW
SetupDiDeleteDeviceInterfaceData
SetupGetTargetPathA
SetupDiCreateDeviceInterfaceRegKeyA
SetupPromptReboot
SetupQueueRenameSectionA
SetupDiClassNameFromGuidExW
SetupDiDestroyDriverInfoList
SetupDiGetHwProfileList
SetupDiDrawMiniIcon
SetupDiGetDriverInfoDetailW
SetupFreeSourceListW
SetupSetDirectoryIdA
SetupDiGetHwProfileFriendlyNameW
SetupQuerySpaceRequiredOnDriveW
SetupDiGetDriverInstallParamsW
SetupSetDirectoryIdExA
SetupSetDirectoryIdW
SetupDiBuildDriverInfoList
SetupFreeSourceListA
SetupAdjustDiskSpaceListW
SetupDiGetDriverInstallParamsA
SetupGetFileCompressionInfoW
SetupDiSetDeviceInstallParamsA
SetupDiOpenDeviceInterfaceRegKey
SetupDiOpenClassRegKeyExW
SetupCommitFileQueueA
SetupDiEnumDeviceInfo
SetupQueryInfVersionInformationW
SetupTermDefaultQueueCallback
SetupDiSelectBestCompatDrv
SetupAddInstallSectionToDiskSpaceListA
SetupDiLoadClassIcon
SetupDiBuildClassInfoList
SetupCopyOEMInfW
SetupFindNextLine
SetupGetBinaryField
SetupCloseLog
SetupDiRegisterDeviceInfo
SetupDiCallClassInstaller
SetupDiGetHwProfileFriendlyNameExW
SetupGetSourceInfoW
SetupDiGetWizardPage
SetupGetSourceInfoA
SetupFindNextMatchLineW
SetupQueryFileLogW
SetupAddSectionToDiskSpaceListW
SetupDestroyDiskSpaceList
SetupDiGetActualSectionToInstallA
SetupDiGetClassImageIndex
SetupDiClassGuidsFromNameW
SetupRemoveSectionFromDiskSpaceListA
SetupDiGetActualSectionToInstallW
SetupScanFileQueueW
SetupDiClassGuidsFromNameA
SetupLogErrorA
SetupQueueRenameW
SetupFindFirstLineW
SetupQueryInfFileInformationW
SetupLogErrorW
SetupOpenFileQueue
SetupDiChangeState
SetupDiEnumDeviceInterfaces
SetupInstallServicesFromInfSectionA
SetupOpenAppendInfFileA
SetupDiGetClassDevPropertySheetsA
SetupInstallServicesFromInfSectionW
SetupScanFileQueueA
SetupDiGetClassImageListExW
SetupQueueCopySectionA
SetupCopyErrorW
SetupDiInstallDriverFiles
SetupDiGetHwProfileListExW
SetupInitDefaultQueueCallback
SetupRemoveFromSourceListA
SetupDiEnumDriverInfoW
SetupInstallServicesFromInfSectionExW
SetupDeleteErrorW
SetupDiGetSelectedDevice
SetupDiInstallClassA
SetupDiGetClassDevsExA
SetupQueueDeleteW
SetupQueryDrivesInDiskSpaceListW
SetupDiOpenClassRegKey
SetupDiGetClassDevsExW
SetupGetLineByIndexA
SetupDiDestroyClassImageList
RedrawWindow
GetMessagePos
SetWindowRgn
SendNotifyMessageA
LoadBitmapW
EnableScrollBar
MapVirtualKeyA
PostQuitMessage
DrawStateW
LoadBitmapA
SetWindowPos
OemToCharBuffA
DispatchMessageA
ScrollWindowEx
VkKeyScanA
SetMenuItemInfoA
GrayStringA
WindowFromPoint
CloseWindowStation
SetClassLongA
GetMessageTime
SetMenuItemInfoW
SetActiveWindow
DispatchMessageW
GetAsyncKeyState
CharLowerBuffW
DdeInitializeA
GetDlgCtrlID
AdjustWindowRectEx
SendMessageW
UnregisterClassA
DefFrameProcA
SetThreadDesktop
GetClassInfoW
GetMenuItemInfoW
DefMDIChildProcW
PackDDElParam
DrawTextW
GetNextDlgTabItem
InSendMessage
CallNextHookEx
GetCursor
GetWindowTextLengthA
CreateWindowExW
LoadImageW
ActivateKeyboardLayout
ShowCursor
GetUpdateRgn
DdeCreateDataHandle
GetWindowTextW
SetDlgItemTextW
CharLowerBuffA
LockWindowUpdate
GetWindowTextLengthW
MsgWaitForMultipleObjects
GetMenuItemCount
GetWindowTextA
InvalidateRgn
PtInRect
DrawEdge
GetClassInfoExW
UpdateWindow
SetPropA
GetPropW
EqualRect
SetClassLongW
EnumWindows
DefMDIChildProcA
CreateCaret
GetMessageW
ShowWindow
GetCaretPos
DrawFrameControl
GetNextDlgGroupItem
GetMenuState
GetCursorPos
PeekMessageW
TranslateMDISysAccel
InsertMenuItemW
SetWindowPlacement
LoadImageA
GetDlgItemTextA
GetClipboardFormatNameW
PeekMessageA
ChildWindowFromPoint
TranslateMessage
IsWindowEnabled
GetWindow
GetMenuDefaultItem
GetDlgItemInt
CreateIconFromResourceEx
CharNextExA
GetIconInfo
LoadStringA
GetQueueStatus
RegisterClassW
OpenDesktopW
IsZoomed
LoadStringW
WindowFromDC
DrawMenuBar
InvertRect
TrackPopupMenuEx
DrawFocusRect
CreateMenu
DdeClientTransaction
OemToCharA
ShowOwnedPopups
FlashWindow
CharNextA
WaitForInputIdle
GetSysColorBrush
IsWindowUnicode
ToUnicode
GetUpdateRect
GetGUIThreadInfo
OpenClipboard
IsChild
MapWindowPoints
CharPrevA
DrawAnimatedRects
OpenInputDesktop
IsCharAlphaNumericA
SetCapture
OffsetRect
DefWindowProcW
GetScrollPos
SendNotifyMessageW
DefWindowProcA
CheckMenuRadioItem
GetClipboardData
SendDlgItemMessageA
GetSystemMetrics
SetWindowLongW
SetScrollRange
GetWindowRect
RegisterClassA
PostMessageA
DrawIcon
DrawTextExW
CharLowerW
SetProcessWindowStation
SendDlgItemMessageW
GetProcessWindowStation
InvalidateRect
CharToOemW
CreateDialogParamW
RemovePropA
CreatePopupMenu
CheckMenuItem
GetSubMenu
GetClassLongW
GetLastActivePopup
DrawIconEx
SetWindowTextW
DdeGetLastError
GetMenuCheckMarkDimensions
CreateDialogParamA
BringWindowToTop
ClientToScreen
GetClassLongA
InsertMenuA
CreateDialogIndirectParamA
LoadCursorA
LoadIconA
CountClipboardFormats
SetWindowsHookExA
DialogBoxIndirectParamW
GetMenuStringA
IsDlgButtonChecked
SetDlgItemInt
SetWindowsHookExW
LoadCursorW
EnumDisplaySettingsW
FindWindowExW
InsertMenuW
FillRect
CheckRadioButton
PostThreadMessageA
GetMenuStringW
EmptyClipboard
GetCaretBlinkTime
RegisterClipboardFormatW
CreateDialogIndirectParamW
DrawTextA
IntersectRect
HideCaret
GetFocus
DeferWindowPos
CreateIconIndirect
GetCapture
FindWindowA
MessageBeep
LoadMenuW
DrawTextExA
ShowCaret
wvsprintfW
FreeDDElParam
ShowScrollBar
GetMenu
DestroyWindow
RegisterClassExW
RemoveMenu
MessageBoxIndirectA
GetDialogBaseUnits
AppendMenuW
GetWindowDC
ChangeClipboardChain
wvsprintfA
DialogBoxParamA
LoadKeyboardLayoutA
MessageBoxIndirectW
GetSysColor
SendMessageCallbackW
SetScrollInfo
RegisterClassExA
EndDeferWindowPos
SystemParametersInfoA
DestroyIcon
IsWindowVisible
GetDesktopWindow
SubtractRect
UnpackDDElParam
WinHelpA
FrameRect
SetRect
DdeUninitialize
SendMessageA
SendMessageTimeoutA
GetClassNameW
SetWindowTextA
DefDlgProcA
CloseDesktop
ValidateRect
CallWindowProcA
IsMenu
SendMessageTimeoutW
EnableWindow
CloseClipboard
SetCursor
DefDlgProcW
ReplyMessage
IsRectEmpty
TranslateAcceleratorW
DeviceCapabilitiesW
AddPrinterDriverExW
SetPrinterDataW
ReadPrinter
FreePrinterNotifyInfo
ResetPrinterA
DeletePortA
AddMonitorW
DeviceCapabilitiesA
SetFormW
GetPrinterDataW
AddMonitorA
AddJobW
ResetPrinterW
EnumPortsA
FindNextPrinterChangeNotification
DeletePrinter
DeletePrinterDataExW
GetPrinterW
DeletePrinterConnectionA
GetPrinterA
EnumPrintProcessorsW
DeleteMonitorW
DeletePrinterDataA
EnumPrinterDataW
ClosePrinter
AddPrinterConnectionA
GetPrinterDataExA
SetPortA
GetFormA
DeletePrinterKeyA
GetPrinterDriverA
SetPrinterDataExW
EnumJobsA
EnumPrintProcessorsA
SetJobW
SetPortW
GetFormW
GetPrinterDataA
AddPrinterW
GetJobA
EnumMonitorsA
DeletePrintProvidorW
GetPrinterDriverW
AddPortW
DeleteFormW
GetPrinterDriverDirectoryA
EnumPrinterDataExA
GetPrintProcessorDirectoryW
DeletePrintProcessorW
AddPrinterA
EnumPrinterKeyA
FindClosePrinterChangeNotification
DeleteFormA
AddPrintProvidorA
EnumPrintProcessorDatatypesW
EndDocPrinter
DeletePrinterDriverW
SetPrinterDataA
AdvancedDocumentPropertiesA
PrinterMessageBoxA
Number of PE resources by type
RT_ICON 2
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH JAMAICA 4
PE resources
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
6.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
0.37.99.37

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
3489792

EntryPoint
0x57f40

OriginalFileName
Compatriot.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 2002

FileVersion
0.0.0.0

TimeStamp
2007:04:27 20:48:58+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Dissonant

FileDescription
Galore

OSVersion
4.0

FileOS
Windows NT 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Dell Inc.

CodeSize
360448

ProductName
Droops Cubists

ProductVersionNumber
0.165.184.108

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 ddc7279f05b4154eec789709e7b0f641
SHA1 44e0b6959c2fb1701877d6b30484defa6c72be85
SHA256 28fef9225b022a04e8e66ec7d04eef53e8e1bfed7d3f30ebc644743e1f88f101
ssdeep
12288:Gc178Q2w7iwHgd+s7355RuRAV4FBPw70hl:GcStw7mf7JaRAV4FDl

authentihash 1fc12db22b22f64a3bddec06f4d8f467ba11a6e15a0cc731b7e0233237936812
imphash 247867ce4f8ade7cb4c0ff64c1a56200
File size 392.0 KB ( 401408 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (42.2%)
Win64 Executable (generic) (37.3%)
Win32 Dynamic Link Library (generic) (8.8%)
Win32 Executable (generic) (6.0%)
Generic Win/DOS Executable (2.7%)
Tags
peexe

VirusTotal metadata
First submission 2015-08-26 16:18:33 UTC ( 3 years, 6 months ago )
Last submission 2015-08-26 16:18:33 UTC ( 3 years, 6 months ago )
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Created processes
Opened mutexes
Opened service managers
Runtime DLLs