× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 58aac5a5ff45abd3b84440f686cbc0b9c23d65024b22d384eca9cce4383dce71
File name: 021b8eef6837208b742f99aebeaa98b6
Detection ratio: 9 / 56
Analysis date: 2015-05-05 15:45:00 UTC ( 3 years, 10 months ago ) View latest
Antivirus Result Update
ESET-NOD32 Win32/Spy.Zbot.ACB 20150505
Kaspersky Trojan.Win32.Inject.rnh 20150505
Malwarebytes Trojan.Agent 20150505
McAfee Artemis!021B8EEF6837 20150505
Panda Generic Suspicious 20150505
Sophos AV Mal/Generic-S 20150505
Symantec WS.Reputation.1 20150505
TrendMicro TROJ_FORUCON.BMC 20150505
TrendMicro-HouseCall TROJ_FORUCON.BMC 20150505
Ad-Aware 20150505
AegisLab 20150505
Yandex 20150504
AhnLab-V3 20150505
Alibaba 20150505
ALYac 20150505
Antiy-AVL 20150505
Avast 20150505
AVG 20150505
AVware 20150505
Baidu-International 20150505
BitDefender 20150505
Bkav 20150505
ByteHero 20150505
CAT-QuickHeal 20150505
ClamAV 20150505
CMC 20150505
Comodo 20150505
Cyren 20150505
DrWeb 20150505
Emsisoft 20150505
F-Prot 20150505
F-Secure 20150505
Fortinet 20150505
GData 20150505
Ikarus 20150505
Jiangmin 20150504
K7AntiVirus 20150505
K7GW 20150505
Kingsoft 20150505
McAfee-GW-Edition 20150505
Microsoft 20150505
eScan 20150505
NANO-Antivirus 20150505
Norman 20150505
nProtect 20150504
Qihoo-360 20150505
Rising 20150505
SUPERAntiSpyware 20150505
Tencent 20150505
TheHacker 20150504
TotalDefense 20150430
VBA32 20150505
VIPRE 20150505
ViRobot 20150505
Zillya 20150505
Zoner 20150505
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
(C) 2010-2014 DVDVideoSoft Ltd.

Publisher DVDVideoSoft Ltd.
Product Free Studio
Original name FreeStudioManager.exe
Internal name FreeStudioManager.exe
File version 6,4,1,1215
Description Free Studio
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2015-05-03 15:17:12
Entry Point 0x00002880
Number of sections 7
PE sections
PE imports
CryptGetDefaultProviderA
ImageList_ReplaceIcon
CertGetNameStringA
LineTo
DeleteDC
SelectObject
MoveToEx
GetStockObject
EnumFontFamiliesA
CreateCompatibleDC
DeleteObject
CreateCompatibleBitmap
LoadResource
GetLastError
InitializeCriticalSectionAndSpinCount
HeapFree
GetStdHandle
EnterCriticalSection
LCMapStringW
ReleaseMutex
SetHandleCount
LoadLibraryW
GetConsoleCP
GetOEMCP
QueryPerformanceCounter
IsDebuggerPresent
GetTickCount
UnhandledExceptionFilter
TlsAlloc
GlobalUnlock
SetConsoleCursorPosition
FlushFileBuffers
GetModuleFileNameA
RtlUnwind
DeleteCriticalSection
GetCurrentProcess
GetStartupInfoW
SizeofResource
GetConsoleMode
DecodePointer
LocalAlloc
LockResource
GetModuleHandleW
WideCharToMultiByte
ExitProcess
InterlockedDecrement
MultiByteToWideChar
HeapSize
FreeEnvironmentStringsW
GetCommandLineA
GlobalLock
GetConsoleScreenBufferInfo
FillConsoleOutputAttribute
EncodePointer
GetProcessHeap
SetStdHandle
GetModuleFileNameW
RaiseException
CloseHandle
GetCPInfo
FillConsoleOutputCharacterA
TlsFree
SetFilePointer
GetSystemTimeAsFileTime
HeapSetInformation
ReadFile
SetUnhandledExceptionFilter
WriteFile
InterlockedIncrement
WaitForSingleObject
IsProcessorFeaturePresent
GetACP
HeapReAlloc
GetStringTypeW
GetProcAddress
LocalFree
TerminateProcess
IsValidCodePage
HeapCreate
SetLastError
CreateFileW
GlobalAlloc
CreateEventA
GetEnvironmentStringsW
TlsGetValue
Sleep
GetFileType
SetEndOfFile
TlsSetValue
CreateFileA
HeapAlloc
GetCurrentThreadId
FindResourceA
GetCurrentProcessId
WriteConsoleW
LeaveCriticalSection
RpcAsyncGetCallStatus
RpcAsyncInitializeHandle
EmptyClipboard
UpdateWindow
BeginPaint
PostQuitMessage
ShowWindow
DrawFrameControl
GetClipboardData
SendDlgItemMessageA
GetSystemMetrics
IsWindow
EndPaint
SetDlgItemTextA
MessageBoxA
GetWindow
CheckDlgButton
GetDC
CopyImage
ReleaseDC
SetWindowTextA
DestroyIcon
SetClipboardData
GetClientRect
CreateWindowExA
GetDlgItem
GetWindowLongA
IsClipboardFormatAvailable
CreateMenu
IsDlgButtonChecked
SetWindowContextHelpId
LoadImageA
CloseClipboard
GetWindowInfo
OpenClipboard
DestroyWindow
GdipDisposeImage
GdipCreateBitmapFromFile
GdiplusStartup
GdipCreateHBITMAPFromBitmap
PdhEnumMachinesA
Number of PE resources by type
RT_MENU 9
RT_STRING 7
RT_CURSOR 7
RT_ICON 4
RT_GROUP_CURSOR 3
RT_MANIFEST 1
RT_ACCELERATOR 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 34
PE resources
ExifTool file metadata
UninitializedDataSize
0

InitializedDataSize
283648

ImageVersion
0.0

ProductName
Free Studio

FileVersionNumber
6.4.1.1215

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
Free Studio

CharacterSet
Unicode

LinkerVersion
10.0

OriginalFilename
FreeStudioManager.exe

FileTypeExtension
exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
6,4,1,1215

TimeStamp
2015:05:03 16:17:12+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
FreeStudioManager.exe

ProductVersion
6,4,1,1215

SubsystemVersion
5.1

OSVersion
5.1

FileOS
Windows NT 32-bit

LegalCopyright
(C) 2010-2014 DVDVideoSoft Ltd.

MachineType
Intel 386 or later, and compatibles

CompanyName
DVDVideoSoft Ltd.

CodeSize
44032

FileSubtype
0

ProductVersionNumber
6.4.1.1215

EntryPoint
0x2880

ObjectFileType
Executable application

File identification
MD5 021b8eef6837208b742f99aebeaa98b6
SHA1 8de91b3b2d73d3921723a9c9e03efe1877ef7fee
SHA256 58aac5a5ff45abd3b84440f686cbc0b9c23d65024b22d384eca9cce4383dce71
ssdeep
6144:yPm/nLVAr/5QRc+0O1bFVFbLQlik0LX0TqLYt3xgdWiNSn6Gd4DIBMJ:yPInLVs+d91b/FO0b0uLOx0tNSn6Gd4+

authentihash 52163200b176425d7973802eb4eb0417b967c82c6972117d2222ef2dab6f3b7f
imphash b76f69fcdf36d2196442eb1089e67363
File size 321.0 KB ( 328704 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386

TrID Win32 Executable MS Visual C++ (generic) (42.2%)
Win64 Executable (generic) (37.3%)
Win32 Dynamic Link Library (generic) (8.8%)
Win32 Executable (generic) (6.0%)
Generic Win/DOS Executable (2.7%)
Tags
peexe

VirusTotal metadata
First submission 2015-05-05 15:45:00 UTC ( 3 years, 10 months ago )
Last submission 2015-05-05 15:45:00 UTC ( 3 years, 10 months ago )
File names 58AAC5A5FF45ABD3B84440F686CBC0B9C23D65024B22D384ECA9CCE4383DCE71.EXE
FreeStudioManager.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!