× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 4fd8bd768803ff5342a9bb8a44084feb8253990a95764c81f3dee4485b5f7c47
File name: ConsoleZ
Detection ratio: 1 / 71
Analysis date: 2019-05-10 17:22:38 UTC ( 2 weeks ago )
Antivirus Result Update
Antiy-AVL Trojan/Win32.Shelma 20190510
Acronis 20190504
Ad-Aware 20190510
AegisLab 20190510
AhnLab-V3 20190510
Alibaba 20190426
ALYac 20190510
Arcabit 20190510
Avast 20190510
Avast-Mobile 20190510
AVG 20190510
Avira (no cloud) 20190510
Babable 20190424
Baidu 20190318
BitDefender 20190510
Bkav 20190510
CAT-QuickHeal 20190510
ClamAV 20190510
CMC 20190321
Comodo 20190510
CrowdStrike Falcon (ML) 20190212
Cybereason 20190417
Cylance 20190510
Cyren 20190510
DrWeb 20190510
eGambit 20190510
Emsisoft 20190510
Endgame 20190403
ESET-NOD32 20190510
F-Prot 20190510
F-Secure 20190510
FireEye 20190510
Fortinet 20190510
GData 20190510
Ikarus 20190510
Sophos ML 20190313
Jiangmin 20190510
K7AntiVirus 20190510
K7GW 20190510
Kaspersky 20190510
Kingsoft 20190510
Malwarebytes 20190510
MAX 20190510
McAfee 20190510
McAfee-GW-Edition 20190510
Microsoft 20190510
eScan 20190510
NANO-Antivirus 20190510
Palo Alto Networks (Known Signatures) 20190510
Panda 20190510
Qihoo-360 20190510
Rising 20190510
SentinelOne (Static ML) 20190508
Sophos AV 20190510
SUPERAntiSpyware 20190507
Symantec 20190510
Symantec Mobile Insight 20190510
TACHYON 20190510
Tencent 20190510
TheHacker 20190510
TotalDefense 20190510
Trapmine 20190325
TrendMicro 20190510
TrendMicro-HouseCall 20190510
Trustlook 20190510
VBA32 20190510
ViRobot 20190510
Webroot 20190510
Yandex 20190501
Zillya 20190508
ZoneAlarm by Check Point 20190510
Zoner 20190510
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (C) 2011-2019 Bucher Christophe

Product ConsoleZ
Original name Console.exe
Internal name ConsoleZ
File version 1.19.0.19104
Description Main ConsoleZ module
Comments Tabbed cool console window (THIS IS NOT A SHELL :-)
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2019-04-14 20:44:46
Entry Point 0x00126B50
Number of sections 4
PE sections
PE imports
RegCreateKeyExW
SetSecurityDescriptorDacl
RegDeleteValueW
RegCloseKey
LookupAccountSidW
OpenProcessToken
RegSetValueExW
FreeSid
RegQueryInfoKeyW
RegQueryValueExA
SetEntriesInAclW
RegEnumKeyExW
RegOpenKeyExW
InitializeSecurityDescriptor
RegOpenKeyExA
CreateProcessWithLogonW
AllocateAndInitializeSid
RegDeleteKeyW
GetTokenInformation
RegQueryValueExW
RegNotifyChangeKeyValue
ImageList_GetImageCount
ImageList_GetImageInfo
InitCommonControlsEx
ImageList_Destroy
_TrackMouseEvent
ImageList_LoadImageW
ImageList_Draw
ImageList_AddMasked
ImageList_Remove
ImageList_DrawIndirect
ImageList_Create
ImageList_DrawEx
ImageList_GetIcon
ImageList_ReplaceIcon
ImageList_GetIconSize
Ord(8)
ChooseFontW
GetSaveFileNameW
GetOpenFileNameW
ChooseColorW
GetTextMetricsW
CreateFontIndirectW
PatBlt
CreatePen
SaveDC
CreateRectRgnIndirect
LPtoDP
CombineRgn
GetClipBox
GetDeviceCaps
ExcludeClipRect
LineTo
DeleteDC
RestoreDC
SetBkMode
GetCharacterPlacementW
CreateSolidBrush
DeleteObject
IntersectClipRect
BitBlt
CreateDIBSection
SetTextColor
CreatePatternBrush
GetCurrentObject
ExtTextOutW
GetObjectW
CreateBitmap
MoveToEx
GetStockObject
CreateDIBitmap
SetViewportOrgEx
SelectClipRgn
CreateCompatibleDC
CreateFontW
GetFontLanguageInfo
SetBrushOrgEx
CreateRectRgn
GetClipRgn
SetWindowOrgEx
DPtoLP
SelectObject
SetBkColor
GetTextExtentPoint32W
CreateCompatibleBitmap
ImmReleaseContext
ImmSetCompositionFontW
ImmSetCompositionWindow
ImmGetContext
GetStdHandle
GetDriveTypeW
ReleaseMutex
InterlockedPopEntrySList
GetOverlappedResult
WaitForSingleObject
FindNextFileA
HeapDestroy
EncodePointer
GetFileAttributesW
SystemTimeToTzSpecificLocalTime
DeleteCriticalSection
GetCurrentProcess
OpenFileMappingW
GetConsoleMode
FreeEnvironmentStringsW
LocalAlloc
EnumSystemLocalesW
GetFileInformationByHandle
InitializeSListHead
FileTimeToSystemTime
GetLocaleInfoW
SetStdHandle
GetCPInfo
GetTempPathW
GetSystemTimeAsFileTime
Module32NextW
HeapReAlloc
GetStringTypeW
ResumeThread
GetFullPathNameA
FreeLibrary
LocalFree
FormatMessageW
ConnectNamedPipe
FreeLibraryAndExitThread
InitializeCriticalSection
OutputDebugStringW
FindClose
TlsGetValue
MoveFileW
SetFileAttributesW
OutputDebugStringA
InterlockedPushEntrySList
SetLastError
GetUserDefaultUILanguage
PeekNamedPipe
CopyFileW
WriteProcessMemory
LoadResource
RemoveDirectoryW
IsDebuggerPresent
HeapAlloc
GetModuleFileNameA
lstrcmpiW
RaiseException
LoadLibraryExA
SetConsoleCtrlHandler
GetUserDefaultLCID
UnhandledExceptionFilter
LoadLibraryExW
MultiByteToWideChar
VerifyVersionInfoW
SetFilePointerEx
SetEnvironmentVariableW
FlushInstructionCache
FindNextChangeNotification
CreateEventW
GetFullPathNameW
CreateThread
GetSystemDefaultUILanguage
MoveFileExW
InterlockedFlushSList
SetUnhandledExceptionFilter
CreateMutexW
MulDiv
IsProcessorFeaturePresent
ExitThread
DecodePointer
SetEnvironmentVariableA
SetThreadContext
TerminateProcess
FindCloseChangeNotification
SearchPathW
GetModuleHandleExW
SetCurrentDirectoryW
GetEnvironmentVariableW
GetDiskFreeSpaceExW
SetEndOfFile
GetCurrentThreadId
GetProcAddress
SetCurrentDirectoryA
WriteConsoleW
CreateToolhelp32Snapshot
AreFileApisANSI
InitializeCriticalSectionAndSpinCount
HeapFree
EnterCriticalSection
OpenProcess
LoadLibraryW
GetVersionExW
SetEvent
QueryPerformanceCounter
GetTickCount
TlsAlloc
VirtualProtect
FlushFileBuffers
InitializeCriticalSectionEx
RtlUnwind
CreateRemoteThread
WaitForMultipleObjects
GetDateFormatW
GetStartupInfoW
CreateDirectoryW
DeleteFileW
GlobalLock
GetSystemInfo
GetProcessHeap
GetTempFileNameW
GetComputerNameW
GetTimeFormatW
WriteFile
GetModuleFileNameW
ExpandEnvironmentStringsW
FindFirstFileExA
FindNextFileW
FormatMessageA
ResetEvent
FindFirstFileW
IsValidLocale
lstrcmpW
FindFirstFileExW
ExpandEnvironmentStringsA
CreateFileMappingW
ReadConsoleW
GetTimeZoneInformation
CreateFileW
GetThreadContext
GetFileType
TlsSetValue
ExitProcess
LeaveCriticalSection
GetLastError
LCMapStringW
VirtualAllocEx
CreateNamedPipeW
GetConsoleCP
FindResourceW
CompareStringW
GetEnvironmentStringsW
GlobalUnlock
WaitForSingleObjectEx
lstrlenW
FindFirstChangeNotificationW
CreateProcessW
Module32FirstW
SwitchToThread
SizeofResource
GetCurrentDirectoryW
GetCurrentProcessId
LockResource
SetFileTime
GetCommandLineW
GetCurrentDirectoryA
HeapSize
GetCommandLineA
VerSetConditionMask
GetCurrentThread
QueryPerformanceFrequency
MapViewOfFile
TlsFree
ReadFile
CloseHandle
GetACP
GetModuleHandleW
FreeResource
GetFileAttributesExW
WideCharToMultiByte
IsValidCodePage
UnmapViewOfFile
FindResourceExW
VirtualQuery
VirtualFree
Sleep
VirtualAlloc
GetOEMCP
CreateHardLinkW
TransparentBlt
AlphaBlend
NetGetDCName
NetUserGetInfo
NetApiBufferFree
VarUI4FromStr
SysStringLen
SysAllocStringLen
SysStringByteLen
VariantClear
SysAllocString
SysFreeString
SysAllocStringByteLen
VariantInit
DragQueryFileW
Ord(62)
SHBrowseForFolderW
SHGetPathFromIDListW
DragAcceptFiles
Shell_NotifyIconW
ShellExecuteW
Ord(727)
ExtractIconExW
Ord(6)
ShellExecuteExW
SHGetFileInfoW
DuplicateIcon
CommandLineToArgvW
DragFinish
Ord(12)
PathRemoveFileSpecW
RedrawWindow
GetMessagePos
UnregisterHotKey
LoadBitmapW
SetRectEmpty
DestroyMenu
PostQuitMessage
TrackMouseEvent
GetForegroundWindow
SetWindowPos
IsWindow
ClientToScreen
WindowFromPoint
CopyRect
SetMenuItemInfoW
SetActiveWindow
GetMenuItemID
GetCursorPos
MapDialogRect
GetDlgCtrlID
GetMenu
UnregisterClassW
GetClientRect
SetMenuDefaultItem
CallNextHookEx
IsClipboardFormatAvailable
LoadImageW
GetActiveWindow
RegisterHotKey
GetWindowTextW
GetWindowTextLengthW
LoadAcceleratorsW
DrawTextW
PtInRect
DrawEdge
GetClassInfoExW
UpdateWindow
EqualRect
EnumWindows
ShowScrollBar
SetProcessDPIAware
ChangeWindowMessageFilter
GetMessageW
ShowWindow
DrawFrameControl
EnumDisplayMonitors
PeekMessageW
InsertMenuItemW
SetWindowPlacement
MapWindowPoints
TranslateMessage
IsWindowEnabled
GetWindow
GetDlgItemInt
GetIconInfo
LoadStringA
SetParent
GetMenuStringW
IsZoomed
GetWindowPlacement
LoadStringW
SetWindowLongW
EnableMenuItem
EnumDisplayDevicesW
TrackPopupMenuEx
DrawFocusRect
SetTimer
GetKeyboardLayout
FillRect
MonitorFromPoint
CreateAcceleratorTableW
DeferWindowPos
CreateWindowExW
GetWindowLongW
GetMenuItemInfoW
SetFocus
RegisterWindowMessageW
GetMonitorInfoW
BeginPaint
OffsetRect
DefWindowProcW
KillTimer
MapVirtualKeyW
CheckMenuRadioItem
GetClipboardData
GetParent
GetSystemMetrics
IsIconic
GetWindowRect
InflateRect
SetCapture
ReleaseCapture
CharLowerW
SendDlgItemMessageW
PostMessageW
MonitorFromRect
CreateDialogParamW
CreatePopupMenu
GetSubMenu
GetClassLongW
DrawIconEx
SetWindowTextW
CreateMenu
GetDlgItem
ScreenToClient
GetKeyboardState
DialogBoxIndirectParamW
GetMenuItemCount
DestroyAcceleratorTable
SetDlgItemInt
SetWindowsHookExW
LoadCursorW
FindWindowExW
GetDC
InsertMenuW
SetForegroundWindow
OpenClipboard
GetCaretBlinkTime
EndPaint
ReleaseDC
IntersectRect
SetLayeredWindowAttributes
EndDialog
FindWindowW
GetCapture
GetShellWindow
MessageBeep
LoadMenuW
RemoveMenu
GetWindowThreadProcessId
GetSysColorBrush
BeginDeferWindowPos
MessageBoxW
SendMessageW
RegisterClassExW
SetMenu
MoveWindow
DialogBoxParamW
MessageBoxA
AppendMenuW
GetWindowDC
DestroyCursor
AdjustWindowRectEx
GetSysColor
SetDlgItemTextW
SetScrollInfo
GetKeyState
EndDeferWindowPos
GetDoubleClickTime
DestroyIcon
IsWindowVisible
SystemParametersInfoW
DispatchMessageW
FrameRect
SetRect
GetKeyNameTextW
AnimateWindow
CharNextW
CallWindowProcW
GetClassNameW
InvalidateRect
DestroyWindow
ModifyMenuW
MonitorFromWindow
IsRectEmpty
IsMenu
GetFocus
EnableWindow
CloseClipboard
SetCursor
GetAncestor
UnhookWindowsHookEx
TranslateAcceleratorW
CreateEnvironmentBlock
GetUserProfileDirectoryW
ExpandEnvironmentStringsForUserW
DestroyEnvironmentBlock
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
InternetQueryDataAvailable
InternetConnectW
InternetCloseHandle
InternetCrackUrlW
HttpSendRequestW
InternetReadFile
InternetOpenW
HttpOpenRequestW
CredPackAuthenticationBufferW
CredUIPromptForCredentialsW
CredUnPackAuthenticationBufferW
CredUIPromptForWindowsCredentialsW
DwmEnableBlurBehindWindow
DwmIsCompositionEnabled
DwmExtendFrameIntoClientArea
GdipSetClipRectI
GdipDrawImagePointRectI
GdipBitmapLockBits
GdipDrawImageRectI
GdipGetImagePixelFormat
GdipAddPathPolygonI
GdipCreateSolidFill
GdipCreateLineBrushI
GdipDrawPath
GdipCreateBitmapFromScan0
GdiplusShutdown
GdipImageGetFrameDimensionsCount
GdipDisposeImage
GdipCreatePath
GdipBitmapUnlockBits
GdipImageSelectActiveFrame
GdipCreateHBITMAPFromBitmap
GdiplusStartup
GdipCreateBitmapFromStreamICM
GdipDeleteGraphics
GdipFillPath
GdipCreateBitmapFromStream
GdipGraphicsClear
GdipCreateFromHDC
GdipCreatePen1
GdipImageGetFrameCount
GdipGetImageWidth
GdipGetPropertyItem
GdipAlloc
GdipGetPropertyItemSize
GdipDrawImageRectRectI
GdipCreateBitmapFromHBITMAP
GdipDeletePath
GdipDeletePen
GdipFillRectangleI
GdipCloneBrush
GdipDrawLineI
GdipFree
GdipGetImageHeight
GdipCloneImage
GdipDeleteBrush
GdipImageGetFrameDimensionsList
GdipAddPathRectangleI
GdipGetImageGraphicsContext
CoInitializeEx
CoUninitialize
CoTaskMemAlloc
CoTaskMemRealloc
CoCreateInstance
DoDragDrop
PropVariantClear
CoTaskMemFree
Number of PE resources by type
RT_STRING 42
RT_BITMAP 32
RT_DIALOG 20
Struct(241) 16
RT_ICON 12
RT_MENU 3
RT_HTML 1
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 129
PE resources
Debug information
ExifTool file metadata
LegalTrademarks
Copyright (C) 2011-2019 Bucher Christophe

SubsystemVersion
6.0

Comments
Tabbed cool console window (THIS IS NOT A SHELL :-)

LinkerVersion
14.16

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.19.0.19104

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
Main ConsoleZ module

ImageFileCharacteristics
No relocs, Executable, 32-bit

CharacterSet
Unicode

InitializedDataSize
1879040

EntryPoint
0x126b50

OriginalFileName
Console.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright (C) 2011-2019 Bucher Christophe

FileVersion
1.19.0.19104

TimeStamp
2019:04:14 22:44:46+02:00

FileType
Win32 EXE

PEType
PE32

InternalName
ConsoleZ

ProductVersion
1.19.0.19104

UninitializedDataSize
0

OSVersion
6.0

FileOS
Windows NT 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CodeSize
1652736

ProductName
ConsoleZ

ProductVersionNumber
1.19.0.19104

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 d8d751789ff2641bcb7e0424adcb466e
SHA1 fb96564bbe0a8649a8794d94a4a2dc9e780cfb50
SHA256 4fd8bd768803ff5342a9bb8a44084feb8253990a95764c81f3dee4485b5f7c47
ssdeep
49152:0JdhqIBWxrzPyvH07remlbUVxfoeSyJ5zAsHnA:kdhqIYrbeNmlb8d5zAsHnA

authentihash 6ea15e8e006c6e7729b4ec9cfb042635e0ce7320ad0b02d1602aded3b8c11e00
imphash 3760e7b16960f5a0828f217f334ba46c
File size 3.4 MB ( 3523584 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win64 Executable (generic) (61.7%)
Win32 Dynamic Link Library (generic) (14.7%)
Win32 Executable (generic) (10.0%)
OS/2 Executable (generic) (4.5%)
Generic Win/DOS Executable (4.4%)
Tags
peexe

VirusTotal metadata
First submission 2019-04-16 21:29:41 UTC ( 1 month, 1 week ago )
Last submission 2019-04-16 21:29:41 UTC ( 1 month, 1 week ago )
File names ConsoleZ
Console.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!