× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 2c9b7239fb6c1dc36c4774277ab84ae19f657402e26bfc45a96b9735ff4c60cb
File name: menu.exe
Detection ratio: 1 / 42
Analysis date: 2012-04-23 13:43:06 UTC ( 6 years, 10 months ago ) View latest
Antivirus Result Update
Kaspersky Packed.Win32.Krap.it 20120423
AhnLab-V3 20120422
AntiVir 20120423
Antiy-AVL 20120423
Avast 20120423
AVG 20120423
BitDefender 20120423
ByteHero 20120417
CAT-QuickHeal 20120423
ClamAV 20120423
Commtouch 20120423
Comodo 20120423
DrWeb 20120423
Emsisoft 20120423
eSafe 20120419
eTrust-Vet 20120423
F-Prot 20120422
F-Secure 20120423
Fortinet 20120423
GData 20120423
Ikarus 20120423
Jiangmin 20120423
K7AntiVirus 20120420
McAfee 20120423
McAfee-GW-Edition 20120423
Microsoft 20120423
NOD32 20120423
Norman 20120423
nProtect 20120423
Panda 20120423
PCTools 20120423
Rising 20120423
Sophos AV 20120423
SUPERAntiSpyware 20120402
Symantec 20120423
TheHacker 20120422
TrendMicro 20120423
TrendMicro-HouseCall 20120423
VBA32 20120422
VIPRE 20120423
ViRobot 20120423
VirusBuster 20120423
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 1992-06-19 22:22:17
Entry Point 0x0002CDD4
Number of sections 8
PE sections
PE imports
InitializeSecurityDescriptor
ReplaceFileA
LoadLibraryW
GetVersionExW
BuildCommDCBW
SetLocalPrimaryComputerNameA
LocalAlloc
CancelDeviceWakeupRequest
SetTapePosition
GetCurrentDirectoryA
EnumTimeFormatsA
SetSystemTimeAdjustment
GetStartupInfoW
ExpandEnvironmentStringsW
SetSystemPowerState
SetCalendarInfoW
CloseHandle
EnumResourceLanguagesA
GetThreadTimes
SetLocalTime
IsValidLanguageGroup
BeginUpdateResourceA
WriteConsoleOutputCharacterA
WritePrivateProfileStringW
GetNumberFormatW
CoFileTimeToDosDateTime
CoMarshalInterThreadInterfaceInStream
CoGetCallerTID
WriteStringStream
ClipCursor
SendInput
GetKeyboardLayoutNameW
GetClipboardOwner
GetWindowContextHelpId
BroadcastSystemMessageW
GetCaretPos
SetClipboardViewer
EndPaint
SetCapture
ArrangeIconicWindows
LoadKeyboardLayoutA
GetWindowWord
SetCursorPos
UnloadKeyboardLayout
GetAltTabInfoW
SendMessageTimeoutA
GetMenuItemCount
CopyRect
IsWindowUnicode
ToUnicode
ModifyMenuA
Number of PE resources by type
RT_DIALOG 4
RT_ICON 1
RT_GROUP_ICON 1
RT_RCDATA 1
Number of PE resources by language
ENGLISH US 4
RUSSIAN 2
NEUTRAL 1
PE resources
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

FileTypeExtension
exe

TimeStamp
1992:06:19 23:22:17+01:00

FileType
Win32 EXE

PEType
PE32

CodeSize
180736

LinkerVersion
8.0

EntryPoint
0x2cdd4

InitializedDataSize
17408

SubsystemVersion
4.0

ImageVersion
0.0

OSVersion
4.0

UninitializedDataSize
0

File identification
MD5 48352e3a034a95845864c0f6aad07d39
SHA1 00a91e558bc16161f5254f2ef2ad0c6531661c26
SHA256 2c9b7239fb6c1dc36c4774277ab84ae19f657402e26bfc45a96b9735ff4c60cb
ssdeep
3072:sjJIU+BwPo4ASrIxHxH96OdzEPi9Bes603gsKjahjaZakRTT3El3An:sF+BwPlASriH1wOdzchs60QsKjahjaV

authentihash 1784cbfd192c6eeec5753bd8297288c09756c27269fb1eeeecdd4dad03da4106
imphash 740cac8c3efc2831391dfabd2313b31f
File size 194.5 KB ( 199168 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Dynamic Link Library (generic) (38.3%)
Win32 Executable (generic) (26.2%)
Win16/32 Executable Delphi generic (12.0%)
Generic Win/DOS Executable (11.6%)
DOS Executable Generic (11.6%)
Tags
peexe

VirusTotal metadata
First submission 2012-04-23 13:43:06 UTC ( 6 years, 10 months ago )
Last submission 2015-06-12 09:18:59 UTC ( 3 years, 8 months ago )
File names smona_2c9b7239fb6c1dc36c4774277ab84ae19f657402e26bfc45a96b9735ff4c60cb.bin
winm.exe
menu.exe
00A91E558BC16161F5254F2EF2AD0C6531661C26.{PE}
vti-rescan
shadow.exe.ob!
file
menu.exe_
shadow.exe
test51651123867472.bin
48352e3a034a95845864c0f6aad07d39
output.1462306.txt
defr_exe
1335268914.menu.exe
2c9b7239fb6c1dc36c4774277ab84ae19f657402e26bfc45a96b9735ff4c60cb.bin
test18101486886569.bin
shadow.vxe
test36708342856401.bin
favorites.exe
wins.exe
2c9b7239fb6c1dc36c4774277ab84ae19f657402e26bfc45a96b9735ff4c60cb
output.1462305.txt
1462305
favorites.exe_
1462306
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!