× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 2c6bc99b92ebceb6984d8e97e73b2b8af8a92295ca47f0032e59f595e8277ec8
File name: portableapps-com-platform-11-2-en-win.exe
Detection ratio: 0 / 50
Analysis date: 2014-04-19 13:00:28 UTC ( 9 hours, 6 minutes ago )
Probably harmless! There are strong indicators suggesting that this file is safe to use.
Antivirus Result Update
AVG 20140419
Ad-Aware 20140419
AegisLab 20140419
Agnitum 20140419
AhnLab-V3 20140419
AntiVir 20140419
Antiy-AVL 20140419
Avast 20140419
Baidu-International 20140419
BitDefender 20140419
Bkav 20140418
ByteHero 20140419
CAT-QuickHeal 20140418
CMC 20140417
ClamAV 20140419
Commtouch 20140419
Comodo 20140419
DrWeb 20140419
ESET-NOD32 20140419
Emsisoft 20140419
F-Prot 20140419
F-Secure 20140419
Fortinet 20140419
GData 20140419
Ikarus 20140419
Jiangmin 20140419
K7AntiVirus 20140418
K7GW 20140418
Kaspersky 20140419
Kingsoft 20140419
Malwarebytes 20140419
McAfee 20140419
McAfee-GW-Edition 20140419
MicroWorld-eScan 20140419
Microsoft 20140419
NANO-Antivirus 20140419
Norman 20140419
Panda 20140419
Qihoo-360 20140411
Rising 20140419
SUPERAntiSpyware 20140419
Sophos 20140419
Symantec 20140419
TheHacker 20140419
TotalDefense 20140419
TrendMicro 20140419
TrendMicro-HouseCall 20140419
VBA32 20140418
VIPRE 20140419
ViRobot 20140419
nProtect 20140418
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Authenticode signature block
Copyright
PortableApps.com

Publisher Rare Ideas
Product PortableApps.com Platform
Original name PortableApps.com_Platform_Setup_11.2.exe
Internal name PortableApps.com Platform
File version 11.2.0.0
Description PortableApps.com Platform
Comments For additional details, visit PortableApps.com
Signature verification Signed file, verified signature
Signing date 10:22 PM 10/14/2012
Signers
[+] Rare Ideas
Status Certificate out of its validity period
Valid from 1:00 AM 2/16/2012
Valid to 12:59 AM 2/16/2013
Valid usage Code Signing
Algorithm SHA1
Thumbrint 1A0A4873E1D74A9560FCB917E60536843B7CC2CB
Serial number 00 93 2F C9 AF 0E FA 79 D8 A3 F7 71 68 1F E2 03 34
[+] COMODO Code Signing CA 2
Status Valid
Valid from 1:00 AM 8/24/2011
Valid to 11:48 AM 5/30/2020
Valid usage Code Signing
Algorithm SHA1
Thumbrint B64771392538D1EB7A9281998791C14AFD0C5035
Serial number 10 70 9D 4F F5 54 08 D7 30 60 01 D8 EA 91 75 BB
[+] UTN-USERFirst-Object
Status Valid
Valid from 9:09 AM 6/7/2005
Valid to 11:48 AM 5/30/2020
Valid usage All
Algorithm SHA1
Thumbrint 8AD5C9987E6F190BD6F5416E2DE44CCD641D8CDA
Serial number 42 1A F2 94 09 84 19 1F 52 0A 4B C6 24 26 A7 4B
[+] USERTrust
Status Valid
Valid from 11:48 AM 5/30/2000
Valid to 11:48 AM 5/30/2020
Valid usage Server Auth, Client Auth, Email Protection, Code Signing, Timestamp Signing, EFS, IPSEC Tunnel, IPSEC User
Algorithm SHA1
Thumbrint 02FAF3E291435468607857694DF5E45B68851868
Serial number 01
Counter signers
[+] Symantec Time Stamping Services Signer - G3
Status Certificate out of its validity period
Valid from 1:00 AM 5/1/2012
Valid to 12:59 AM 1/1/2013
Valid usage Timestamp Signing
Algorithm SHA1
Thumbrint 8FD99D63FB3AFBD534A4F6E31DACD27F59504021
Serial number 79 A2 A5 85 F9 D1 15 42 13 D9 B8 3E F6 B6 8D ED
[+] VeriSign Time Stamping Services CA
Status Certificate out of its validity period
Valid from 1:00 AM 12/4/2003
Valid to 12:59 AM 12/4/2013
Valid usage Timestamp Signing
Algorithm SHA1
Thumbrint F46AC0C6EFBB8C6A14F55F09E2D37DF4C0DE012D
Serial number 47 BF 19 95 DF 8D 52 46 43 F7 DB 6D 48 0D 31 A4
[+] Thawte Timestamping CA
Status Valid
Valid from 1:00 AM 1/1/1997
Valid to 12:59 AM 1/1/2021
Valid usage Timestamp Signing
Algorithm MD5
Thumbrint BE36A4562FB2EE05DBB3D32323ADF445084ED656
Serial number 00
Packers identified
F-PROT NSIS, NSIS, Unicode, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, Unicode, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, Unicode, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, Unicode, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, Unicode, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, UTF-8, NSIS, NSIS, NSIS, appended, NSIS, NSIS, NSIS, NSIS, NSIS, appended, NSIS, NSIS, NSIS, NSIS, UPX, NSIS, NSIS, appended, NSIS, NSIS, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, appended, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, appended, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, Unicode, NSIS, NSIS, NSIS, appended, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS, NSIS
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2012-02-24 19:19:59
Entry Point 0x000039E3
Number of sections 6
PE sections
PE imports
RegCreateKeyExW
RegDeleteValueW
RegCloseKey
RegSetValueExW
RegEnumValueW
RegOpenKeyExW
RegEnumKeyW
RegDeleteKeyW
RegQueryValueExW
ImageList_Create
Ord(17)
ImageList_Destroy
ImageList_AddMasked
GetDeviceCaps
CreateFontIndirectW
SetBkMode
CreateBrushIndirect
SelectObject
SetBkColor
DeleteObject
SetTextColor
GetLastError
WriteFile
CopyFileW
GetShortPathNameW
LoadLibraryA
lstrlenA
GetModuleFileNameW
GlobalFree
WaitForSingleObject
GetVersionExW
GetExitCodeProcess
FindFirstFileW
ExitProcess
GlobalUnlock
GetFileAttributesW
lstrlenW
GetCurrentProcess
CompareFileTime
FindNextFileW
GetFileSize
OpenProcess
SetFileTime
GetCommandLineW
GetWindowsDirectoryW
SetErrorMode
MultiByteToWideChar
CreateDirectoryW
SetFilePointer
GlobalLock
GetPrivateProfileStringW
WritePrivateProfileStringW
GetTempFileNameW
lstrcpynW
RemoveDirectoryW
ExpandEnvironmentStringsW
lstrcpyW
GetFullPathNameW
lstrcmpiA
CreateThread
LoadLibraryW
GetModuleHandleA
GetSystemDirectoryW
GetDiskFreeSpaceW
ReadFile
GetTempPathW
CloseHandle
DeleteFileW
lstrcmpA
lstrcmpW
GetModuleHandleW
lstrcatW
lstrcpynA
FreeLibrary
SearchPathW
WideCharToMultiByte
lstrcmpiW
SetCurrentDirectoryW
lstrcpyA
CreateFileW
GlobalAlloc
CreateProcessW
FindClose
Sleep
MoveFileW
SetFileAttributesW
GetTickCount
GetVersion
GetProcAddress
LoadLibraryExW
MulDiv
SHBrowseForFolderW
SHFileOperationW
ShellExecuteW
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetFileInfoW
EmptyClipboard
GetMessagePos
EndPaint
EndDialog
LoadBitmapW
SetClassLongW
DefWindowProcW
CharPrevW
PostQuitMessage
ShowWindow
SetWindowPos
wvsprintfW
GetSystemMetrics
SetWindowLongW
IsWindow
PeekMessageW
GetWindowRect
EnableWindow
GetDC
CharUpperW
DialogBoxParamW
GetClassInfoW
AppendMenuW
CharNextW
IsWindowEnabled
GetDlgItemTextW
MessageBoxIndirectW
GetSysColor
CheckDlgButton
DispatchMessageW
GetAsyncKeyState
BeginPaint
CreatePopupMenu
SendMessageW
SetCursor
SetClipboardData
GetWindowLongW
FindWindowExW
IsWindowVisible
SetForegroundWindow
SetWindowTextW
GetDlgItem
SystemParametersInfoW
LoadImageW
EnableMenuItem
ScreenToClient
InvalidateRect
CreateDialogParamW
wsprintfA
SetTimer
CallWindowProcW
TrackPopupMenu
RegisterClassW
FillRect
IsDlgButtonChecked
CharNextA
SetDlgItemTextW
LoadCursorW
GetSystemMenu
SendMessageTimeoutW
CreateWindowExW
wsprintfW
CloseClipboard
GetClientRect
DrawTextW
DestroyWindow
ExitWindowsEx
OpenClipboard
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
OleUninitialize
CoTaskMemFree
OleInitialize
CoCreateInstance
Number of PE resources by type
RT_DIALOG 40
RT_ICON 7
RT_GROUP_ICON 1
RT_VERSION 1
RT_MANIFEST 1
Number of PE resources by language
ENGLISH US 49
NEUTRAL 1
ExifTool file metadata
CodeSize
28672

SubsystemVersion
5.0

Comments
For additional details, visit PortableApps.com

LinkerVersion
10.0

ImageVersion
6.0

FileSubtype
0

FileVersionNumber
11.2.0.0

LanguageCode
Neutral

FileFlagsMask
0x0000

FileDescription
PortableApps.com Platform

CharacterSet
Unicode

InitializedDataSize
445952

FileOS
Win32

MIMEType
application/octet-stream

LegalCopyright
PortableApps.com

FileVersion
11.2.0.0

TimeStamp
2012:02:24 20:19:59+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
PortableApps.com Platform

FileAccessDate
2014:04:19 16:45:22+01:00

ProductVersion
11.2.0.0

UninitializedDataSize
16896

OSVersion
5.0

FileCreateDate
2014:04:19 16:45:22+01:00

OriginalFilename
PortableApps.com_Platform_Setup_11.2.exe

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
PortableApps.com

LegalTrademarks
PortableApps.com is a registered trademark of Rare Ideas, LLC.

ProductName
PortableApps.com Platform

ProductVersionNumber
11.2.0.0

EntryPoint
0x39e3

ObjectFileType
Executable application

CarbonBlack CarbonBlack acts as a surveillance camera for computers
While monitoring an end-user machine in-the-wild, CarbonBlack noticed this sample wrote the following files to disk.
Compressed bundles
File identification
MD5 1178fe18327311aa55e9734bca42fdc5
SHA1 3d2b99b0f834de0365beb348a7f63fc44122d583
SHA256 2c6bc99b92ebceb6984d8e97e73b2b8af8a92295ca47f0032e59f595e8277ec8
ssdeep
98304:5z8GP/0FYxwUwEIlBfwEdUjvUX/jMSt4gZzI7ztf:5z8GPTxwSqBtUjsXr2

imphash 32f3282581436269b3a75b6675fe3e08
File size 3.2 MB ( 3307552 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (67.3%)
Win32 Dynamic Link Library (generic) (14.2%)
Win32 Executable (generic) (9.7%)
Generic Win/DOS Executable (4.3%)
DOS Executable Generic (4.3%)
Tags
peexe signed nsis upx via-tor mz software-collection

VirusTotal metadata
First submission 2012-10-15 00:34:32 UTC ( 1 year, 6 months ago )
Last submission 2014-04-19 13:00:28 UTC ( 9 hours, 6 minutes ago )
File names 21926227
file-4680918_exe
PortableApps.com_Platform_Setup_11.2.exe
Setup.exe
PORTAB~1.EXE
PortableApps.com_Platform_Setup_11.2.exe
PortableApps.com_11.2.exe
PortableApps.com_Platform_Setup_11.2 2.exe
PortableApps.com_Platform_Setup_11.2(1).exe
PortableApps.com_Platform_Setup_11.2 sourceforge.net 200313.exe
PortableApps.com Platform
PortableApps.com_Platform_Setup_11.2 (1).exe
PortableApps.com_Platform_Setup_11.2.exe
PortableApps.com_Platform_Setup_11.2.exe
portableapps.com_platform_setup_11.2.exe
octet-stream
portableapps-com-platform-11-2-en-win.exe
PortableApps.com_Platform_Setup_11.2[1].exe
PortableApps.com_Platform_Setup_11.2.exe
PortableApps.com Platform v11.2.exe
myfile
PortableApps.com_Platform_Setup_11.2.exe
PortableApps.com.Platform.11.2.exe
Advanced heuristic and reputation engines
ClamAV PUA
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: http://www.clamav.net/index.php?s=pua&lang=en .

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Deleted files
Set keys
Runtime DLLs
Additional details
The file sends control codes directly to certain device drivers making use of the DeviceIoControl Windows API function.
UDP communications