× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 3cf4081ac7722cd72d4d238ef60cc0acc6b01cd5265589668b315da603f531a2
File name: 0410e6586856422fa69b5e44f85d2deef0902806
Detection ratio: 20 / 53
Analysis date: 2016-02-04 12:54:39 UTC ( 3 years, 1 month ago )
Antivirus Result Update
Ad-Aware Trojan.GenericKD.3026337 20160204
Arcabit Trojan.Generic.D2E2DA1 20160204
Avast Win32:Trojan-gen 20160204
AVG Inject3.ZTV 20160204
Avira (no cloud) TR/AD.Injector.M.178 20160204
BitDefender Trojan.GenericKD.3026337 20160204
Emsisoft Trojan.GenericKD.3026337 (B) 20160204
ESET-NOD32 Win32/TrojanDownloader.Agent.CCA 20160204
F-Secure Trojan.GenericKD.3026337 20160204
Fortinet PossibleThreat.P0 20160204
GData Trojan.GenericKD.3026337 20160204
Ikarus Virus.Win32.Injector 20160204
K7AntiVirus Riskware ( 0040eff71 ) 20160204
K7GW Riskware ( 0040eff71 ) 20160204
Kaspersky Trojan.Win32.Yakes.oxkv 20160204
Microsoft VirTool:Win32/Injector.HK 20160204
eScan Trojan.GenericKD.3026337 20160204
Qihoo-360 HEUR/QVM20.1.Malware.Gen 20160204
Rising PE:Malware.XPACK-HIE/Heur!1.9C48 [F] 20160204
Sophos AV Mal/Generic-S 20160204
AegisLab 20160204
Yandex 20160203
AhnLab-V3 20160203
Alibaba 20160204
Antiy-AVL 20160204
Baidu-International 20160204
Bkav 20160204
ByteHero 20160204
CAT-QuickHeal 20160204
ClamAV 20160203
Comodo 20160203
Cyren 20160204
DrWeb 20160204
F-Prot 20160129
Jiangmin 20160204
Malwarebytes 20160204
McAfee 20160204
McAfee-GW-Edition 20160204
NANO-Antivirus 20160204
nProtect 20160204
Panda 20160203
SUPERAntiSpyware 20160204
Symantec 20160203
Tencent 20160204
TheHacker 20160203
TotalDefense 20160204
TrendMicro 20160204
TrendMicro-HouseCall 20160204
VBA32 20160204
VIPRE 20160204
ViRobot 20160204
Zillya 20160203
Zoner 20160204
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 1999-2003 vvvSoft, Ltd.

Product vvvSoft MP3Finder
Original name MP3Finder.exe
Internal name MP3Finder
File version 2.32
Description MP3Finder - Finds all mp3-files in your LAN
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2015-10-04 06:24:36
Entry Point 0x00002A29
Number of sections 4
PE sections
PE imports
GetSaveFileNameW
GetOpenFileNameW
ChooseColorW
LineTo
CreateHatchBrush
DeleteDC
CreateFontIndirectW
SetBkMode
MoveToEx
CreatePen
EnumFontFamiliesExW
GetStockObject
CreateSolidBrush
Rectangle
GetObjectW
SelectObject
SetBkColor
CreateCompatibleDC
GetPixel
CreateCompatibleBitmap
SetTextColor
DeleteObject
GetStdHandle
GetDriveTypeW
FileTimeToSystemTime
HeapDestroy
EncodePointer
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
FreeEnvironmentStringsW
SetStdHandle
WideCharToMultiByte
InterlockedExchange
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
GetOEMCP
InitializeCriticalSection
LoadResource
FindClose
TlsGetValue
GetFullPathNameW
SetLastError
PeekNamedPipe
GetModuleFileNameW
IsDebuggerPresent
HeapAlloc
GetModuleFileNameA
UnhandledExceptionFilter
InterlockedDecrement
MultiByteToWideChar
GetPrivateProfileStringW
CreateThread
SetUnhandledExceptionFilter
ConvertDefaultLocale
IsProcessorFeaturePresent
DecodePointer
SetEnvironmentVariableA
TerminateProcess
GlobalAlloc
SetEndOfFile
GetCurrentThreadId
InterlockedIncrement
WriteConsoleW
InitializeCriticalSectionAndSpinCount
HeapFree
EnterCriticalSection
SetHandleCount
TerminateThread
LoadLibraryW
GetVersionExW
FreeLibrary
QueryPerformanceCounter
GetTickCount
TlsAlloc
VirtualProtect
FlushFileBuffers
RtlUnwind
GetStartupInfoW
GetProcAddress
GetPrivateProfileIntW
GetProcessHeap
CompareStringW
lstrcpyW
GetFileInformationByHandle
FindFirstFileExW
GlobalLock
GetBinaryTypeA
GetTimeZoneInformation
CreateFileW
GetFileType
TlsSetValue
ExitProcess
LeaveCriticalSection
GetLastError
LCMapStringW
GlobalFree
GetConsoleCP
GetEnvironmentStringsW
GlobalUnlock
lstrlenW
FileTimeToLocalFileTime
SizeofResource
GetCurrentDirectoryW
GetCurrentProcessId
LockResource
GetCPInfo
HeapSize
GetCommandLineA
WritePrivateProfileStringW
RaiseException
TlsFree
SetFilePointer
ReadFile
CloseHandle
GetACP
GetModuleHandleW
IsValidCodePage
HeapCreate
FindResourceW
Sleep
ShellExecuteW
SHGetPathFromIDListW
SHGetSpecialFolderLocation
PathFileExistsW
PathRemoveFileSpecW
PathAppendW
PathFindFileNameW
SetFocus
CreateDialogParamW
GetParent
CreateDialogIndirectParamW
UpdateWindow
BeginPaint
InvalidateRect
DefWindowProcW
MoveWindow
KillTimer
DestroyMenu
ScreenToClient
ShowWindow
SetWindowPos
EndPaint
GetSystemMetrics
SetWindowLongW
IsWindow
PeekMessageW
GetWindowRect
InflateRect
EnableWindow
CallWindowProcA
WindowFromPoint
MessageBoxA
LoadIconW
SetWindowLongA
SendDlgItemMessageW
DestroyCursor
PostMessageW
GetSysColor
RegisterClipboardFormatW
GetDC
GetKeyState
GetCursorPos
ReleaseDC
CreatePopupMenu
SendMessageW
SetCursor
SetClipboardData
GetWindowLongW
IsWindowVisible
LoadStringW
GetClientRect
SetTimer
GetDlgItem
SystemParametersInfoW
MessageBoxW
FrameRect
LoadImageW
DrawFocusRect
CreateMenu
CallWindowProcW
TrackPopupMenu
ClientToScreen
FillRect
GetWindowTextW
IsWindowUnicode
IsMenu
CreateWindowExW
InsertMenuW
wsprintfW
CloseClipboard
DrawTextW
DestroyWindow
CreateCursor
OpenClipboard
Number of PE resources by type
RT_STRING 32
RT_ICON 19
RT_GROUP_ICON 14
RT_CURSOR 10
RT_GROUP_CURSOR 5
RT_MENU 5
Struct(241) 4
RT_ACCELERATOR 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 91
PE resources
ExifTool file metadata
UninitializedDataSize
0

InitializedDataSize
57344

ImageVersion
0.0

ProductName
vvvSoft MP3Finder

FileVersionNumber
2.3.2.0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
MP3Finder - Finds all mp3-files in your LAN

CharacterSet
Unicode

LinkerVersion
10.0

FileTypeExtension
exe

OriginalFileName
MP3Finder.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
2.32

TimeStamp
2015:10:04 07:24:36+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
MP3Finder

ProductVersion
2.32

SubsystemVersion
5.1

OSVersion
5.1

FileOS
Win32

LegalCopyright
Copyright 1999-2003 vvvSoft, Ltd.

MachineType
Intel 386 or later, and compatibles

CompanyName
vvvSoft

CodeSize
54272

FileSubtype
0

ProductVersionNumber
2.3.2.0

EntryPoint
0x2a29

ObjectFileType
Executable application

File identification
MD5 4df04e7b3402e98a9cff03b3e14278c8
SHA1 0410e6586856422fa69b5e44f85d2deef0902806
SHA256 3cf4081ac7722cd72d4d238ef60cc0acc6b01cd5265589668b315da603f531a2
ssdeep
1536:GbatqF7zlts/6empr5BryRUW7O+gpoq+mlNF34GAjE6g8v4uwoQbv5:Yn86vN5BrU5gpo7maEmv4uAh

authentihash f033cbdccde713dbb84af283ab72e474253cc7a95d22ed6131255c743d0c8672
imphash f4afb41acb6364b53ed57bbc2db1f82a
File size 110.0 KB ( 112640 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Windows screen saver (46.4%)
Win32 Dynamic Link Library (generic) (23.3%)
Win32 Executable (generic) (15.9%)
Generic Win/DOS Executable (7.1%)
DOS Executable Generic (7.0%)
Tags
peexe

VirusTotal metadata
First submission 2016-02-04 12:54:39 UTC ( 3 years, 1 month ago )
Last submission 2016-02-04 12:54:39 UTC ( 3 years, 1 month ago )
File names MP3Finder
MP3Finder.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Created processes
Opened mutexes
Runtime DLLs
UDP communications