× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 2dbc3ad0626cbb577ec319b7a62b07b6899ffa74ad98309a6390623f2cd9cdd2
File name: Pinterest.exe
Detection ratio: 6 / 48
Analysis date: 2013-10-01 18:00:48 UTC ( 3 years, 9 months ago ) View latest
Antivirus Result Update
AntiVir TR/Crypt.XPACK.Gen8 20131001
Bkav HW32.Laneul.awou 20130927
ByteHero Trojan.Malware.Obscu.Gen.002 20130925
Kaspersky UDS:DangerousObject.Multi.Generic 20131001
Malwarebytes Trojan.Medfos.RRE 20131001
VBA32 SScope.Trojan.Midhos.2513 20131001
Yandex 20131001
AhnLab-V3 20131001
Antiy-AVL 20131001
Avast 20131001
AVG 20131001
Baidu-International 20131001
BitDefender 20131001
CAT-QuickHeal 20131001
ClamAV 20131001
Commtouch 20131001
Comodo 20131001
DrWeb 20131001
Emsisoft 20131001
ESET-NOD32 20131001
F-Prot 20131001
F-Secure 20131001
Fortinet 20131001
GData 20131001
Ikarus 20131001
Jiangmin 20130903
K7AntiVirus 20131001
K7GW 20131001
Kingsoft 20130829
McAfee 20131001
McAfee-GW-Edition 20131001
Microsoft 20131001
eScan 20131001
NANO-Antivirus 20131001
Norman 20131001
nProtect 20131001
Panda 20131001
PCTools 20131001
Rising 20130930
Sophos 20131001
SUPERAntiSpyware 20131001
Symantec 20131001
TheHacker 20131001
TotalDefense 20130930
TrendMicro 20131001
TrendMicro-HouseCall 20131001
VIPRE 20131001
ViRobot 20131001
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (C) 2011

Product SRun Application
Original name SRun.EXE
Internal name SRun
File version 1, 0, 0, 1
Description MFC Application
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2010-07-13 14:58:33
Entry Point 0x0000244A
Number of sections 4
PE sections
PE imports
RegDeleteKeyA
LookupPrivilegeValueA
RegOpenKeyA
RegCloseKey
OpenProcessToken
RegQueryValueExA
AdjustTokenPrivileges
RegDeleteValueA
RegOpenKeyExA
SetThreadLocale
GetStdHandle
WaitForSingleObject
GetLocalTime
DeleteCriticalSection
GetCurrentProcess
GetLocaleInfoA
LocalAlloc
SetErrorMode
WideCharToMultiByte
WriteFile
GetDiskFreeSpaceA
GetStringTypeW
FreeLibrary
LocalFree
InitializeCriticalSection
LoadResource
GlobalHandle
FindClose
InterlockedDecrement
FormatMessageA
SetLastError
ExitProcess
GetModuleFileNameA
EnumCalendarInfoA
LoadLibraryExA
GetPrivateProfileStringA
SetConsoleCtrlHandler
UnhandledExceptionFilter
TlsGetValue
MultiByteToWideChar
GetModuleHandleA
CreateThread
GlobalAddAtomA
MulDiv
GetSystemDirectoryA
GlobalAlloc
SetEndOfFile
GetVersion
InterlockedIncrement
HeapFree
EnterCriticalSection
SetHandleCount
SetEvent
GetTickCount
TlsAlloc
GetVersionExA
LoadLibraryA
RtlUnwind
GetStartupInfoA
GetFileSize
DeleteFileA
GetWindowsDirectoryA
GlobalLock
GetProcessHeap
GlobalReAlloc
lstrcmpA
FindFirstFileA
lstrcpyA
CompareStringA
GetProcAddress
CreateEventA
GetFileType
TlsSetValue
CreateFileA
HeapAlloc
LeaveCriticalSection
GetLastError
GlobalDeleteAtom
GetSystemInfo
lstrlenA
GlobalFree
GetEnvironmentStringsA
GetThreadLocale
GlobalUnlock
VirtualQuery
WinExec
SizeofResource
LockResource
GetCPInfo
GetCommandLineA
RaiseException
TlsFree
SetFilePointer
ReadFile
CloseHandle
lstrcpynA
GetACP
GetCurrentThreadId
FreeResource
VirtualFree
Sleep
FindResourceA
VirtualAlloc
GetOEMCP
SysStringLen
SysAllocStringLen
VariantCopyInd
VariantClear
SysReAllocStringLen
SysFreeString
VariantChangeTypeEx
IsEqualGUID
Number of PE resources by type
RT_STRING 9
RT_ACCELERATOR 1
RT_BITMAP 1
RT_VERSION 1
Struct(241) 1
Number of PE resources by language
CHINESE TRADITIONAL 13
PE resources
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
6.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.0.0.1

UninitializedDataSize
0

LanguageCode
Chinese (Traditional)

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
27136

EntryPoint
0x244a

OriginalFileName
SRun.EXE

MIMEType
application/octet-stream

LegalCopyright
Copyright (C) 2011

FileVersion
1, 0, 0, 1

TimeStamp
2010:07:13 15:58:33+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
SRun

ProductVersion
1, 0, 0, 1

FileDescription
MFC Application

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CodeSize
139776

ProductName
SRun Application

ProductVersionNumber
1.0.0.1

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 ae840d6ac2f02b4bff85182d2c72a053
SHA1 2762c417dc4ab2b422477cccc4cae0bb7763eb48
SHA256 2dbc3ad0626cbb577ec319b7a62b07b6899ffa74ad98309a6390623f2cd9cdd2
ssdeep
3072:BqSdYtXpcbGnUtxpNtA5ET9W7WDUljS2BYyaxzLS4RzwJvwQJSiV:gNlpMAUZaEUw9y2S+G40S

authentihash 1a923fa8abfb2aa3e8e33f1d6ce26e218645da3d65f1cefb570b66df7521874e
imphash cef753d8f4b1251d046f026c6a123a5a
File size 162.5 KB ( 166400 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (67.3%)
Win32 Dynamic Link Library (generic) (14.2%)
Win32 Executable (generic) (9.7%)
Generic Win/DOS Executable (4.3%)
DOS Executable Generic (4.3%)
Tags
peexe

VirusTotal metadata
First submission 2013-10-01 18:00:48 UTC ( 3 years, 9 months ago )
Last submission 2013-10-01 18:26:48 UTC ( 3 years, 9 months ago )
File names SRun.EXE
Pinterest.exe
info.exe
SRun
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Created processes
Opened mutexes
Runtime DLLs