× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 5834bef1c7dcb411392919f76e7a2f166a1012fa1ed19271c4b3ac1d929160c9
File name: CodeLobster.PHP.Edition.Pro.5.8.1.exe
Detection ratio: 0 / 70
Analysis date: 2019-01-26 00:01:10 UTC ( 1 month, 3 weeks ago )
Antivirus Result Update
Acronis 20190124
Ad-Aware 20190125
AegisLab 20190125
AhnLab-V3 20190125
Alibaba 20180921
ALYac 20190125
Antiy-AVL 20190125
Arcabit 20190125
Avast 20190125
Avast-Mobile 20190125
AVG 20190125
Avira (no cloud) 20190125
Babable 20180918
Baidu 20190125
BitDefender 20190125
Bkav 20190125
CAT-QuickHeal 20190125
ClamAV 20190125
CMC 20190125
Comodo 20190125
CrowdStrike Falcon (ML) 20181023
Cybereason 20190109
Cylance 20190126
Cyren 20190125
DrWeb 20190125
eGambit 20190126
Emsisoft 20190125
Endgame 20181108
ESET-NOD32 20190126
F-Prot 20190125
F-Secure 20190125
Fortinet 20190126
GData 20190125
Sophos ML 20181128
Jiangmin 20190126
K7AntiVirus 20190125
K7GW 20190125
Kaspersky 20190126
Kingsoft 20190126
Malwarebytes 20190125
MAX 20190126
McAfee 20190125
McAfee-GW-Edition 20190125
Microsoft 20190126
eScan 20190125
NANO-Antivirus 20190125
Palo Alto Networks (Known Signatures) 20190126
Panda 20190125
Qihoo-360 20190126
Rising 20190125
SentinelOne (Static ML) 20190124
Sophos AV 20190125
SUPERAntiSpyware 20190123
Symantec 20190125
TACHYON 20190125
Tencent 20190126
TheHacker 20190125
TotalDefense 20190125
Trapmine 20190123
TrendMicro 20190125
TrendMicro-HouseCall 20190125
Trustlook 20190126
VBA32 20190125
VIPRE 20190125
ViRobot 20190125
Webroot 20190126
Yandex 20190125
Zillya 20190125
ZoneAlarm by Check Point 20190126
Zoner 20190125
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Authenticode signature block and FileVersionInfo properties
Signature verification Signed file, verified signature
Signing date 6:04 PM 12/23/2015
Signers
[+] Stanislav Ustimenko
Status This certificate or one of the certificates in the certificate chain is not time valid.
Issuer COMODO Code Signing CA 2
Valid from 12:00 AM 09/05/2014
Valid to 11:59 PM 09/04/2016
Valid usage Code Signing
Algorithm sha1RSA
Thumbprint B5D387CFCE5A236B43EDF04379BE74F762723DA8
Serial number 00 A3 38 82 6A 33 A9 15 CE 25 63 4E 53 87 75 98 9E
[+] COMODO Code Signing CA 2
Status Valid
Issuer UTN-USERFirst-Object
Valid from 12:00 AM 08/24/2011
Valid to 10:48 AM 05/30/2020
Valid usage Code Signing
Algorithm sha1RSA
Thumbprint B64771392538D1EB7A9281998791C14AFD0C5035
Serial number 10 70 9D 4F F5 54 08 D7 30 60 01 D8 EA 91 75 BB
[+] USERTrust (Code Signing)
Status Valid
Issuer UTN-USERFirst-Object
Valid from 06:31 PM 07/09/1999
Valid to 06:40 PM 07/09/2019
Valid usage EFS, Timestamp Signing, Code Signing
Algorithm sha1RSA
Thumbprint E12DFB4B41D7D9C32B30514BAC1D81D8385E2D46
Serial number 44 BE 0C 8B 50 00 24 B4 11 D3 36 2D E0 B3 5F 1B
Counter signers
[+] COMODO Time Stamping Signer
Status This certificate or one of the certificates in the certificate chain is not time valid.
Issuer UTN-USERFirst-Object
Valid from 12:00 AM 05/05/2015
Valid to 11:59 PM 12/31/2015
Valid usage Timestamp Signing
Algorithm sha1RSA
Thumbrint DF946A5E503015777FD22F46B5624ECD27BEE376
Serial number 00 9F EA C8 11 B0 F1 62 47 A5 FC 20 D8 05 23 AC E6
[+] USERTrust (Code Signing)
Status Valid
Issuer UTN-USERFirst-Object
Valid from 06:31 PM 07/09/1999
Valid to 06:40 PM 07/09/2019
Valid usage EFS, Timestamp Signing, Code Signing
Algorithm sha1RSA
Thumbrint E12DFB4B41D7D9C32B30514BAC1D81D8385E2D46
Serial number 44 BE 0C 8B 50 00 24 B4 11 D3 36 2D E0 B3 5F 1B
Packers identified
F-PROT Unicode, maxorder, appended, NSIS, UTF-8, eval
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2013-12-25 05:01:41
Entry Point 0x000030E4
Number of sections 5
PE sections
Overlays
MD5 99e5f3d993276138f8e48c8c50de99f4
File type data
Offset 53760
Size 34080872
Entropy 8.00
PE imports
RegDeleteKeyA
RegCloseKey
RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegDeleteValueA
RegCreateKeyExA
RegOpenKeyExA
RegEnumValueA
ImageList_Create
Ord(17)
ImageList_Destroy
ImageList_AddMasked
GetDeviceCaps
SelectObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetBkColor
DeleteObject
SetTextColor
GetLastError
lstrlenA
GetFileAttributesA
GlobalFree
WaitForSingleObject
GetExitCodeProcess
CopyFileA
GetTickCount
SetFileTime
GlobalUnlock
LoadLibraryA
DeleteFileA
GetModuleFileNameA
GetShortPathNameA
GetCurrentProcess
LoadLibraryExA
CompareFileTime
GetPrivateProfileStringA
WritePrivateProfileStringA
GetFileSize
lstrcatA
CreateDirectoryA
ExpandEnvironmentStringsA
GetWindowsDirectoryA
SetErrorMode
MultiByteToWideChar
GetCommandLineA
GlobalLock
SetFileAttributesA
SetFilePointer
GetTempPathA
CreateThread
lstrcmpiA
GetModuleHandleA
lstrcmpA
ReadFile
lstrcpyA
FindFirstFileA
CloseHandle
GetTempFileNameA
lstrcpynA
FindNextFileA
RemoveDirectoryA
GetSystemDirectoryA
GetDiskFreeSpaceA
GetProcAddress
SetEnvironmentVariableA
GetFullPathNameA
FreeLibrary
MoveFileA
CreateProcessA
WriteFile
GlobalAlloc
SearchPathA
FindClose
Sleep
CreateFileA
ExitProcess
GetVersion
SetCurrentDirectoryA
MulDiv
SHGetFileInfoA
SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetPathFromIDListA
ShellExecuteA
SHFileOperationA
CharPrevA
GetMessagePos
EndPaint
ReleaseDC
EndDialog
BeginPaint
ShowWindow
DefWindowProcA
GetClassInfoA
SetClassLongA
LoadBitmapA
SetWindowPos
GetSystemMetrics
IsWindow
AppendMenuA
PostQuitMessage
GetWindowRect
DispatchMessageA
ScreenToClient
SetDlgItemTextA
MessageBoxIndirectA
LoadImageA
GetDlgItemTextA
PeekMessageA
SetWindowLongA
IsWindowEnabled
GetSysColor
CheckDlgButton
GetDC
SystemParametersInfoA
CreatePopupMenu
wsprintfA
DialogBoxParamA
SetClipboardData
IsWindowVisible
SendMessageA
DrawTextA
GetClientRect
SetTimer
GetDlgItem
SetForegroundWindow
CreateDialogParamA
EnableMenuItem
RegisterClassA
SendMessageTimeoutA
InvalidateRect
GetWindowLongA
FindWindowExA
CreateWindowExA
LoadCursorA
TrackPopupMenu
SetWindowTextA
FillRect
OpenClipboard
CharNextA
CallWindowProcA
GetSystemMenu
EmptyClipboard
EnableWindow
CloseClipboard
DestroyWindow
ExitWindowsEx
SetCursor
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
CoTaskMemFree
OleUninitialize
CoCreateInstance
OleInitialize
Number of PE resources by type
RT_DIALOG 7
RT_ICON 4
RT_BITMAP 1
RT_GROUP_ICON 1
RT_MANIFEST 1
Number of PE resources by language
ENGLISH US 14
PE resources
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

SubsystemVersion
4.0

MachineType
Intel 386 or later, and compatibles

TimeStamp
2013:12:25 06:01:41+01:00

FileType
Win32 EXE

PEType
PE32

CodeSize
24064

LinkerVersion
6.0

FileTypeExtension
exe

InitializedDataSize
162816

ImageFileCharacteristics
No relocs, Executable, No line numbers, No symbols, 32-bit

EntryPoint
0x30e4

OSVersion
4.0

ImageVersion
6.0

UninitializedDataSize
1024

Compressed bundles
File identification
MD5 48b244627f70d42efa67d5cb86bb9556
SHA1 cc6f5ca6f83514340c81d1e78d7de02f2e25be99
SHA256 5834bef1c7dcb411392919f76e7a2f166a1012fa1ed19271c4b3ac1d929160c9
ssdeep
786432:ubcnzQqs6iDeB89z5kIMaC7ORHW4+1d06js:ubcn86eekzOYH61dz4

authentihash 185a39d21b13baed33c844784a20d5fc8b878e92c1889381249439dad017ee2b
imphash e160ef8e55bb9d162da4e266afd9eef3
File size 32.6 MB ( 34134632 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID NSIS - Nullsoft Scriptable Install System (94.9%)
Win64 Executable (generic) (3.0%)
Win32 Dynamic Link Library (generic) (0.7%)
Win32 Executable (generic) (0.5%)
OS/2 Executable (generic) (0.2%)
Tags
nsis peexe signed overlay

VirusTotal metadata
First submission 2015-12-27 05:20:09 UTC ( 3 years, 2 months ago )
Last submission 2017-04-21 17:29:10 UTC ( 1 year, 11 months ago )
File names 787624
CodelobsterPHPEditionSetup.exe
CodelobsterPHPEditionSetup.exe
5834BEF1C7DCB411392919F76E7A2F166A1012FA1ED19271C4B3AC1D929160C9
CodeLobster.PHP.Edition.Pro.5.8.1.exe
CodelobsterPHPEditionSetup.exe
CodelobsterPHPEditionSetup.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!