× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 47a7ee2c5a2de8491ec552e7d71cc784a319f01759b1ba5564e9fe2eca46844c
File name: 1360545949-Leaphy.exe
Detection ratio: 0 / 65
Analysis date: 2017-08-30 12:58:40 UTC ( 1 year, 6 months ago )
Antivirus Result Update
Ad-Aware 20170830
AegisLab 20170830
AhnLab-V3 20170830
Alibaba 20170830
ALYac 20170830
Antiy-AVL 20170830
Arcabit 20170830
Avast 20170830
AVG 20170830
Avira (no cloud) 20170830
AVware 20170830
Baidu 20170830
BitDefender 20170830
Bkav 20170830
CAT-QuickHeal 20170830
ClamAV 20170830
CMC 20170828
Comodo 20170830
CrowdStrike Falcon (ML) 20170804
Cylance 20170830
Cyren 20170830
DrWeb 20170830
Emsisoft 20170830
Endgame 20170821
ESET-NOD32 20170830
F-Prot 20170830
F-Secure 20170830
Fortinet 20170830
GData 20170830
Ikarus 20170830
Sophos ML 20170822
Jiangmin 20170830
K7AntiVirus 20170830
K7GW 20170828
Kaspersky 20170830
Kingsoft 20170830
Malwarebytes 20170830
MAX 20170830
McAfee 20170830
McAfee-GW-Edition 20170830
Microsoft 20170830
eScan 20170830
NANO-Antivirus 20170830
nProtect 20170830
Palo Alto Networks (Known Signatures) 20170830
Panda 20170830
Qihoo-360 20170830
Rising 20170830
SentinelOne (Static ML) 20170806
Sophos AV 20170830
SUPERAntiSpyware 20170830
Symantec 20170830
Symantec Mobile Insight 20170830
Tencent 20170830
TheHacker 20170828
TotalDefense 20170830
TrendMicro 20170830
TrendMicro-HouseCall 20170830
Trustlook 20170830
VBA32 20170830
VIPRE 20170830
ViRobot 20170830
Webroot 20170830
WhiteArmor 20170829
Yandex 20170829
Zillya 20170829
ZoneAlarm by Check Point 20170830
Zoner 20170830
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows command line subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2007-06-11 13:20:45
Entry Point 0x0005A5DE
Number of sections 3
PE sections
PE imports
GetLastError
IsValidCodePage
HeapFree
GetStdHandle
LCMapStringW
SetHandleCount
GetFileAttributesA
WaitForSingleObject
GetExitCodeProcess
LCMapStringA
HeapDestroy
ExitProcess
IsBadWritePtr
FlushFileBuffers
GetEnvironmentStringsW
GetVersionExA
GetModuleFileNameA
RtlUnwind
LoadLibraryA
FreeEnvironmentStringsA
GetCurrentProcess
EnumSystemLocalesA
GetEnvironmentStrings
GetLocaleInfoA
SetFilePointer
GetCPInfo
UnhandledExceptionFilter
MultiByteToWideChar
HeapSize
FreeEnvironmentStringsW
GetCommandLineA
GetProcAddress
IsBadReadPtr
SetStdHandle
CompareStringW
RaiseException
CreateFileA
WideCharToMultiByte
GetStringTypeA
GetModuleHandleA
ReadFile
SetUnhandledExceptionFilter
WriteFile
GetStartupInfoA
CompareStringA
IsValidLocale
GetACP
HeapReAlloc
GetStringTypeW
GetUserDefaultLCID
SetEnvironmentVariableA
GetOEMCP
TerminateProcess
CreateProcessA
GetTimeZoneInformation
GetEnvironmentVariableA
HeapCreate
VirtualFree
GetFileType
SetEndOfFile
IsBadCodePtr
HeapAlloc
GetVersion
GetLocaleInfoW
VirtualAlloc
CloseHandle
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows command line

MachineType
Intel 386 or later, and compatibles

FileTypeExtension
exe

TimeStamp
2007:06:11 14:20:45+01:00

FileType
Win32 EXE

PEType
PE32

CodeSize
442368

LinkerVersion
6.0

EntryPoint
0x5a5de

InitializedDataSize
122880

SubsystemVersion
4.0

ImageVersion
0.0

OSVersion
4.0

UninitializedDataSize
0

File identification
MD5 dd93a91c5a1b4d95a92b3a7b266b9e3a
SHA1 505fd15d5b7728d9b9b890dabce7076762c00218
SHA256 47a7ee2c5a2de8491ec552e7d71cc784a319f01759b1ba5564e9fe2eca46844c
ssdeep
12288:SnzrGaVc3eo7XVGfrCzhA8wXgVQ5+nnlvkE++/qR:sGaWOo7XVGfUhNqFdz+C

authentihash df329fba61196483250e8e1c3d1af1508eb1bc0af081240daf7329f96560271a
imphash 412cc527c4d425f149e38c30bf0a8289
File size 508.0 KB ( 520192 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (console) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (42.2%)
Win64 Executable (generic) (37.3%)
Win32 Dynamic Link Library (generic) (8.8%)
Win32 Executable (generic) (6.0%)
Generic Win/DOS Executable (2.7%)
Tags
peexe

VirusTotal metadata
First submission 2014-05-24 13:13:54 UTC ( 4 years, 10 months ago )
Last submission 2015-05-25 17:32:38 UTC ( 3 years, 10 months ago )
File names Leaphy.exe
leaphy-1.0 Beta.exe
1360545949-Leaphy.exe
47A7EE2C5A2DE8491EC552E7D71CC784A319F01759B1BA5564E9FE2ECA46844C
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!