× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 48a9bd991cebd486e0f445f1906eb5d26f5951eb2fcf5ab0153b1266099f7093
File name: 1181865
Detection ratio: 1 / 41
Analysis date: 2012-01-20 18:00:46 UTC ( 2 years, 3 months ago )
Antivirus Result Update
DrWeb Adware.Downware.97 20120120
AVG 20120120
AhnLab-V3 20120119
AntiVir 20120120
Antiy-AVL 20120120
Avast 20120120
BitDefender 20120120
ByteHero 20120116
CAT-QuickHeal 20120120
ClamAV 20120120
Commtouch 20120120
Comodo 20120120
Emsisoft 20120120
F-Prot 20120119
F-Secure 20120120
Fortinet 20120120
GData 20120120
Ikarus 20120120
Jiangmin 20120120
K7AntiVirus 20120120
Kaspersky 20120120
McAfee 20120120
McAfee-GW-Edition 20120120
Microsoft 20120120
NOD32 20120120
Norman 20120120
PCTools 20120120
Prevx 20120120
Rising 20120118
SUPERAntiSpyware 20120120
Symantec 20120120
TheHacker 20120120
TrendMicro 20120120
TrendMicro-HouseCall 20120120
VBA32 20120119
VIPRE 20120120
ViRobot 20120120
VirusBuster 20120120
eSafe 20120120
eTrust-Vet 20120120
nProtect 20120120
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Authenticode signature block
Copyright
Copyright (c) 2010 Premium

Publisher Premium
Product Setup
Original name TSULoader.exe
Internal name TSULoader
File version 2012.1.19.1840
Description Installer
Comments WinNT (x86) Unicode
Signing date 7:05 PM 1/20/2012
PE header basic information
Number of sections 7
PE sections
PE imports
HeapAlloc, HeapFree, OutputDebugStringA, lstrcpynW, UnmapViewOfFile, MultiByteToWideChar, MapViewOfFile, CloseHandle, CreateFileMappingW, GetFileSize, CreateFileW, lstrlenW, GetCommandLineW, ExitProcess, Sleep, DeleteFileW, SetFileAttributesW, GetFileAttributesW, FreeLibrary, GetProcAddress, LoadLibraryW, GetTempPathW, GetModuleHandleW, GetLastError, GetModuleFileNameW, GetCurrentProcessId, GetProcessHeap, ReadFile, WriteFile, SetFileTime, SetFilePointer
MessageBoxA, wvsprintfA, wsprintfW, PostMessageW
GetFileVersionInfoW, GetFileVersionInfoSizeW, VerQueryValueW
ExifTool file metadata
taller
BFileVersion

SubsystemVersion
4.0

Comments
WinNT (x86) Unicode

InitializedDataSize
244224

ImageVersion
6.0

ProductName
Setup

FileVersionNumber
2012.1.19.1840

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

PackageCode
{F60EE2A3-7BB4-471C-A5F7-33962DEDC055}

LinkerVersion
8.0

OriginalFilename
TSULoader.exe

MIMEType
application/octet-stream

ProductCode
{B01A9061-55EF-4AEF-9983-6BD5B2D76491}

TimeStamp
2012:01:06 07:12:06+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
TSULoader

ProductVersion
1.0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Premium

CodeSize
7680

FileSubtype
0

ProductVersionNumber
1.0.0.0

EntryPoint
0x149f

ObjectFileType
Executable application

File identification
MD5 463f2fc7f3f6722670452ceefe2af18d
SHA1 f14670112ec109cdbae0f9f26fd65b6d7391d6d6
SHA256 48a9bd991cebd486e0f445f1906eb5d26f5951eb2fcf5ab0153b1266099f7093
ssdeep
6144:DxRkJPpcz8uxmSLrriwzhds83BNCmTIsFY2qyHnO4:DxCFUjx1riMds83B0DB2HO4

File size 247.6 KB ( 253496 bytes )
File type Win32 EXE
Magic literal
MS-DOS executable PE for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
VirusTotal metadata
First submission 2012-01-20 17:39:17 UTC ( 2 years, 3 months ago )
Last submission 2012-01-20 18:00:46 UTC ( 2 years, 3 months ago )
File names output.1181865.txt
1181865
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!