× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 5bd70802c051fd95d0d78ac168385cd504705c00526ded2fd5edebdcc32d48f6
File name: cnet2_nmap-5_51-setup.exe
Detection ratio: 10 / 39
Analysis date: 2011-12-05 22:23:24 UTC ( 4 years, 9 months ago ) View latest
Antivirus Result Update
BitDefender Trojan.Generic.KDV.413600 20111205
ByteHero Trojan.Win32.Heur.089 20111129
Emsisoft Trojan.SuspectCRC!IK 20111205
F-Secure Trojan.Generic.KDV.413600 20111205
GData Trojan.Generic.KDV.413600 20111205
Ikarus Trojan.SuspectCRC 20111205
McAfee Artemis!72832717589A 20111205
McAfee-GW-Edition Artemis!72832717589A 20111205
NOD32 a variant of Win32/InstallCore.C 20111204
Panda Suspicious file 20111205
AhnLab-V3 20111205
AntiVir 20111205
Antiy-AVL 20111205
Avast 20111205
CAT-QuickHeal 20111205
ClamAV 20111205
Commtouch 20111205
Comodo 20111205
F-Prot 20111129
Fortinet 20111205
Jiangmin 20111205
K7AntiVirus 20111205
Kaspersky 20111205
Microsoft 20111205
Norman 20111205
PCTools 20111205
Prevx 20111205
Rising 20111205
SUPERAntiSpyware 20111205
Sophos 20111205
TheHacker 20111201
TrendMicro 20111205
TrendMicro-HouseCall 20111205
VBA32 20111205
VIPRE 20111205
ViRobot 20111205
VirusBuster 20111205
eTrust-Vet 20111205
nProtect 20111205
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
CBS Interactive

Product CNET Download.com Installer
Internal name CNET Download.com Installer
File version v2.0.2.108
Description CNET Download.com Install
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 1992-06-19 22:22:17
Entry Point 0x000B7CB0
Number of sections 8
PE sections
Overlays
MD5 08e4cb617a8566b448c1167a43764a01
File type data
Offset 1004544
Size 3816
Entropy 7.23
PE imports
SetThreadLocale
GetStdHandle
FileTimeToDosDateTime
ReleaseMutex
GetFileAttributesA
WaitForSingleObject
FindFirstFileW
GetFileAttributesW
GetLocalTime
DeleteCriticalSection
GetCurrentProcess
GetLocaleInfoA
LocalAlloc
UnhandledExceptionFilter
ExpandEnvironmentStringsA
SetErrorMode
SetFileAttributesA
GetTempPathA
GetCPInfo
WriteFile
GetDiskFreeSpaceA
ConnectNamedPipe
GetFullPathNameA
SetEvent
LocalFree
ResumeThread
GetExitCodeProcess
InitializeCriticalSection
LoadResource
GlobalHandle
FindClose
InterlockedDecrement
MoveFileW
SetFileAttributesW
GetStringTypeExA
GetEnvironmentVariableW
PeekNamedPipe
CopyFileW
RemoveDirectoryW
GlobalFindAtomA
ExitProcess
GetModuleFileNameA
EnumCalendarInfoA
GetVolumeInformationA
LoadLibraryExA
GetUserDefaultLCID
GetSystemDefaultLCID
TlsGetValue
MultiByteToWideChar
FormatMessageA
CreateMutexA
SetFilePointer
CreateSemaphoreA
CreateThread
SetEnvironmentVariableW
DisconnectNamedPipe
GetExitCodeThread
GlobalAddAtomA
MulDiv
GetSystemDirectoryA
SetEnvironmentVariableA
TerminateProcess
GlobalAlloc
LocalFileTimeToFileTime
SetEndOfFile
GetCurrentThreadId
InterlockedIncrement
CloseHandle
EnterCriticalSection
GetSystemTime
FreeLibrary
GetTickCount
GetVersionExA
LoadLibraryA
RtlUnwind
ExitThread
GlobalSize
GetStartupInfoA
GetDateFormatA
GetFileSize
OpenProcess
CreateDirectoryA
DeleteFileA
GetWindowsDirectoryA
CreateDirectoryW
DeleteFileW
GetProcAddress
GlobalReAlloc
GetModuleFileNameW
ExpandEnvironmentStringsW
FindNextFileW
WaitNamedPipeA
lstrcpyA
ResetEvent
GetComputerNameA
FindNextFileA
GlobalLock
RemoveDirectoryA
CreateFileW
CreateEventA
CopyFileA
GetFileType
TlsSetValue
CreateFileA
LeaveCriticalSection
GetLastError
DosDateTimeToFileTime
GlobalDeleteAtom
GetShortPathNameW
GetSystemInfo
lstrlenA
GlobalFree
GetThreadLocale
GlobalUnlock
VirtualQuery
CreateNamedPipeA
lstrlenW
GetShortPathNameA
VirtualFree
SizeofResource
GetCurrentProcessId
LockResource
SetFileTime
WideCharToMultiByte
GetCommandLineA
GetCurrentThread
OpenMutexA
RaiseException
GetModuleHandleA
ReadFile
FindFirstFileA
lstrcpynA
GetACP
GetVersion
FreeResource
CreatePipe
CreateProcessA
CreateProcessW
Sleep
FindResourceA
VirtualAlloc
CompareStringA
CoInternetCreateSecurityManager
CoInternetCreateZoneManager
RegDeleteKeyA
RegCloseKey
RegDeleteValueA
RegQueryValueExA
RegSetValueA
RegCreateKeyExA
GetSidSubAuthorityCount
RegFlushKey
GetSidSubAuthority
OpenProcessToken
DuplicateToken
RegEnumKeyA
RegEnumValueA
DuplicateTokenEx
IsValidSid
OpenThreadToken
GetUserNameA
GetLengthSid
RegEnumKeyExA
RegQueryInfoKeyA
CreateProcessAsUserW
RegSetValueExA
EqualSid
RegOpenKeyExA
ImageList_BeginDrag
ImageList_SetBkColor
ImageList_SetDragCursorImage
ImageList_Read
ImageList_GetDragImage
ImageList_Create
ImageList_DragMove
ImageList_DrawEx
ImageList_SetIconSize
ImageList_Write
ImageList_GetImageCount
ImageList_Destroy
ImageList_Draw
ImageList_GetIconSize
ImageList_DragLeave
ImageList_GetBkColor
ImageList_GetIcon
ImageList_ReplaceIcon
ImageList_DragEnter
ImageList_Add
ImageList_DragShowNolock
ImageList_Remove
ImageList_EndDrag
GetOpenFileNameA
GetBrushOrgEx
GetDIBColorTable
GetEnhMetaFileDescriptionA
DeleteEnhMetaFile
SetMapMode
GetWindowOrgEx
PatBlt
GetClipBox
GetCurrentPositionEx
SaveDC
CreateFontIndirectA
GetTextMetricsA
MaskBlt
CreateBrushIndirect
SetStretchBltMode
GetEnhMetaFilePaletteEntries
GetPixel
Rectangle
BitBlt
GetObjectA
ExcludeClipRect
LineTo
DeleteDC
RestoreDC
SetBkMode
GetSystemPaletteEntries
SetPixel
CreateSolidBrush
IntersectClipRect
CreateHalftonePalette
CreateDIBSection
CopyEnhMetaFileA
RealizePalette
SetTextColor
GetDeviceCaps
MoveToEx
SetEnhMetaFileBits
CreateBitmap
RectVisible
CreatePalette
GetStockObject
CreateDIBitmap
SetViewportOrgEx
SelectPalette
UnrealizeObject
GetDIBits
CreateEnhMetaFileA
ExtCreateRegion
GetEnhMetaFileBits
SetBrushOrgEx
GetDCOrgEx
PlayEnhMetaFile
StretchBlt
GetBitmapBits
CreateCompatibleDC
CloseEnhMetaFile
SetROP2
SelectObject
GetTextExtentPoint32A
GetWinMetaFileBits
SetDIBColorTable
GetEnhMetaFileHeader
GetPaletteEntries
SetWindowOrgEx
SetBkColor
SetWinMetaFileBits
DeleteObject
CreateCompatibleBitmap
CreatePenIndirect
LPtoDP
CreateStreamOnHGlobal
OleUninitialize
OleDraw
CoInitialize
OleInitialize
ProgIDFromCLSID
IsAccelerator
StringFromCLSID
RegisterDragDrop
CoCreateInstance
CoUninitialize
ReleaseStgMedium
RevokeDragDrop
CoGetClassObject
OleSetMenuDescriptor
IsEqualGUID
CoTaskMemFree
CoTaskMemAlloc
SafeArrayCreate
VariantCopy
VariantInit
VariantChangeTypeEx
SafeArrayGetLBound
VarI4FromStr
VarBstrFromDate
VariantCopyInd
GetActiveObject
VarBoolFromStr
SafeArrayGetUBound
VarNeg
SysFreeString
SafeArrayGetElement
SafeArrayPtrOfIndex
VarBstrFromCy
VarR8FromStr
VarBstrFromBool
VarCyFromStr
SafeArrayRedim
VarNot
SysAllocStringLen
VariantClear
SysReAllocStringLen
VarDateFromStr
GetErrorInfo
SafeArrayPutElement
DragQueryFileA
DragFinish
DragQueryPoint
Shell_NotifyIconA
RedrawWindow
RegisterClipboardFormatA
GetForegroundWindow
SetWindowRgn
EnableScrollBar
DestroyMenu
PostQuitMessage
LoadBitmapA
SetWindowPos
IsWindow
DispatchMessageA
EndPaint
SetMenuItemInfoA
CharUpperBuffA
WindowFromPoint
DrawIcon
GetMessageTime
SetActiveWindow
GetMenuItemID
GetCursorPos
ReleaseDC
GetClassInfoA
GetMenu
UnregisterClassA
SendMessageA
GetClientRect
CharLowerBuffA
SetScrollPos
CallNextHookEx
GetWindowTextLengthA
GetKeyboardState
ClientToScreen
GetTopWindow
ShowCursor
LoadImageA
MsgWaitForMultipleObjects
ScrollWindow
GetWindowTextA
GetKeyState
PtInRect
DrawEdge
GetParent
UpdateWindow
SetPropA
EqualRect
EnumWindows
DefMDIChildProcA
ShowWindow
SetClassLongA
GetPropA
GetDesktopWindow
TranslateMDISysAccel
EnableWindow
SetWindowPlacement
PeekMessageA
GetClipboardData
TranslateMessage
IsWindowEnabled
GetWindow
ActivateKeyboardLayout
InsertMenuItemA
CreatePopupMenu
GetIconInfo
LoadStringA
SetParent
CharLowerA
IsZoomed
GetWindowPlacement
GetKeyboardLayoutList
DrawMenuBar
IsIconic
RegisterClassA
TrackPopupMenuEx
GetWindowLongA
SetTimer
OemToCharA
GetActiveWindow
ShowOwnedPopups
FillRect
EnumThreadWindows
CharNextA
WaitForInputIdle
CreateMenu
DestroyWindow
IsChild
IsDialogMessageA
SetFocus
CreateWindowExA
MapVirtualKeyA
SetCapture
BeginPaint
OffsetRect
GetScrollPos
KillTimer
RegisterWindowMessageA
DefWindowProcA
MapWindowPoints
SendDlgItemMessageA
GetSystemMetrics
EnableMenuItem
SetScrollRange
GetWindowRect
InflateRect
PostMessageA
ReleaseCapture
EnumChildWindows
GetScrollRange
SetWindowLongA
GetMenuItemCount
RemovePropA
SetWindowTextA
CheckMenuItem
GetSubMenu
GetLastActivePopup
DrawIconEx
GetDCEx
GetDlgItem
BringWindowToTop
ScreenToClient
InsertMenuA
FindWindowExA
LoadCursorA
LoadIconA
TrackPopupMenu
SetWindowsHookExA
GetMenuStringA
AttachThreadInput
GetMenuState
GetKeyboardLayout
GetSystemMenu
GetDC
SetForegroundWindow
GetAsyncKeyState
DrawTextA
IntersectRect
GetScrollInfo
LoadMenuA
GetCapture
WaitMessage
FindWindowA
RemoveMenu
GetWindowThreadProcessId
ShowScrollBar
MessageBoxW
DrawFrameControl
UnhookWindowsHookEx
SetDlgItemTextA
MoveWindow
CallWindowProcA
MessageBoxA
GetClassNameA
GetWindowDC
DestroyCursor
AdjustWindowRectEx
LoadKeyboardLayoutA
GetSysColor
SetScrollInfo
GetMenuItemInfoA
SystemParametersInfoA
GetDoubleClickTime
DestroyIcon
GetKeyNameTextA
IsWindowVisible
WinHelpA
FrameRect
SetRect
DeleteMenu
InvalidateRect
DefFrameProcA
CallWindowProcW
GetClassNameW
CreateIcon
IsRectEmpty
GetCursor
GetFocus
GetKeyboardType
SetMenu
SetCursor
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
FindFirstUrlCacheEntryA
FindNextUrlCacheEntryA
Number of PE resources by type
RT_STRING 15
RT_BITMAP 11
RT_GROUP_CURSOR 7
RT_CURSOR 7
RT_RCDATA 5
RT_ICON 5
RT_VERSION 2
RT_DIALOG 1
RT_MANIFEST 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 44
ENGLISH US 11
PE resources
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
2.25

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
0.0.2.108

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
251904

EntryPoint
0xb7cb0

MIMEType
application/octet-stream

LegalCopyright
CBS Interactive

FileVersion
v2.0.2.108

TimeStamp
1992:06:19 23:22:17+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
CNET Download.com Installer

ProductVersion
v2.0.2.108

FileDescription
CNET Download.com Install

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
CNET Download.com

CodeSize
751616

ProductName
CNET Download.com Installer

ProductVersionNumber
0.0.2.108

Warning
Possibly corrupt Version resource

FileTypeExtension
exe

ObjectFileType
Dynamic link library

File identification
MD5 72832717589af9dd95c811f6e73b12c2
SHA1 29d0ca5df3dd63a69630a1bbdbfbcfdad6271702
SHA256 5bd70802c051fd95d0d78ac168385cd504705c00526ded2fd5edebdcc32d48f6
ssdeep
24576:6tMLYGZrvXiUMlc0ZRg7BO1acA0F9Jc5b+TsfYQItQ8j:tPvSpv6KacpW5qTYAQi

authentihash 37132356444c40cb2fcc2293c679bae30f7937705da0ced1b2e767ccfbf4e909
imphash d5e446d555cd7736ca04d8379bf8870c
File size 984.7 KB ( 1008360 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable Borland Delphi 7 (94.6%)
Win32 Executable Delphi generic (2.0%)
Windows screen saver (1.8%)
Win32 Executable (generic) (0.6%)
Win16/32 Executable Delphi generic (0.2%)
Tags
peexe overlay

VirusTotal metadata
First submission 2011-11-17 19:58:19 UTC ( 4 years, 10 months ago )
Last submission 2016-05-30 16:24:36 UTC ( 4 months ago )
File names codex-gigas_480502caae2c5560cf7f087ebd3db5a9
codex-gigas_10ea21ec34ad6944e1dfc346a94b0b61
codex-gigas_02a413930c00e869b00d0df55df043a5
codex-gigas_9276caeea495c66e62cc540f5b1d6c75
codex-gigas_79008e657d8b276baeada8f04f692e09
codex-gigas_2f304ce5d10943d17068b7304961a913
codex-gigas_2a2bd1217309412f1fcb402087f5f972
codex-gigas_936f880db7e3ca380eeaf74da98ee569
codex-gigas_81085c39c8c500c6eaeb4c09c8b43c06
codex-gigas_5ed1617c31bd0d9b7d1dde304a4c11f6
codex-gigas_155e66768ca3200485cb12f956b80381
codex-gigas_b695fa6cf4785f1918b9ca23ac970384
codex-gigas_50dd7ba8e33be320bd5d20b77f1403ca
codex-gigas_12b0ce2c0daab157fce5983dab6b4324
codex-gigas_0c65bd749f1a6dce7515566a9933a740
codex-gigas_39144259e1673262a51070c764ea9751
codex-gigas_5fba12aaf4a0ddf7efbfb362ff086036
codex-gigas_cbdbccbd8baf66e719e00cd35da3cd42
codex-gigas_7f5f8c0c6af90c59da068d2097fa40ff
codex-gigas_c1a72db60c3a0db87f45dd26a9963471
codex-gigas_dd12275ad582bffbd5914ad120e47d5d
codex-gigas_97552ff3d80158a46d45c8d70be2d8d8
codex-gigas_d748c32f6ecdd3eacf6af9f8798040be
codex-gigas_1ec58321e5a2035726111be9fe293b00
codex-gigas_a1bcc410900fd1ec9ef699c597e6daf5
Advanced heuristic and reputation engines
TrendMicro-HouseCall
TrendMicro's heuristic engine has flagged this file as: TROJ_GEN.R047C0OAE16.

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!