× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 5fbc75e909ac359ac934f9eed5e8769ea939456f23c0aa3c8cf4b0b9dcff567f
File name: HealthyWormCoin.exe
Detection ratio: 2 / 56
Analysis date: 2017-01-02 02:32:05 UTC ( 10 months, 3 weeks ago ) View latest
Antivirus Result Update
Qihoo-360 HEUR/QVM20.1.0000.Malware.Gen 20170102
Sophos AV Bitcoin Miner (PUA) 20170102
Ad-Aware 20170102
AegisLab 20161231
AhnLab-V3 20170101
Alibaba 20161223
ALYac 20170101
Antiy-AVL 20170101
Arcabit 20170102
Avast 20170102
AVG 20170101
Avira (no cloud) 20170101
AVware 20170102
Baidu 20161207
BitDefender 20170102
Bkav 20161229
CAT-QuickHeal 20161231
ClamAV 20170102
CMC 20170101
Comodo 20170102
CrowdStrike Falcon (ML) 20161024
Cyren 20170102
DrWeb 20170102
Emsisoft 20170102
ESET-NOD32 20170101
F-Prot 20170102
F-Secure 20170102
Fortinet 20170102
GData 20170102
Ikarus 20170101
Sophos ML 20161216
Jiangmin 20170102
K7AntiVirus 20170101
K7GW 20170102
Kaspersky 20170102
Kingsoft 20170102
Malwarebytes 20170102
McAfee 20170102
McAfee-GW-Edition 20170102
Microsoft 20170102
eScan 20170102
NANO-Antivirus 20170102
nProtect 20170102
Panda 20170101
Rising 20170102
SUPERAntiSpyware 20170101
Symantec 20170102
Tencent 20170102
TheHacker 20161229
TrendMicro 20170102
TrendMicro-HouseCall 20170102
Trustlook 20170102
VBA32 20161229
VIPRE 20170102
ViRobot 20170101
WhiteArmor 20161221
Yandex 20161230
Zillya 20161231
Zoner 20161231
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
2015 The HealthyWormCoin developers, 2009-2014 The Bitcoin developers, 2012-2016-2017 The HealthyWormCoin developers

Product HealthyWormCoin-Qt
Original name HealthyWormCoin-Qt.exe
Internal name HealthyWormCoin-Qt
File version 1.0.0.0
Description HealthyWormCoin-Qt (OSS GUI client for HealthyWormCoin Coin)
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2017-01-01 21:41:15
Entry Point 0x000014C0
Number of sections 8
PE sections
PE imports
RegCreateKeyExW
RegCloseKey
CopySid
RegQueryValueExA
OpenEventLogA
RegDeleteKeyW
RegQueryValueExW
SetSecurityDescriptorDacl
RegFlushKey
OpenProcessToken
DeregisterEventSource
RegOpenKeyExW
RegisterEventSourceA
RegOpenKeyExA
GetTokenInformation
CloseEventLog
RegQueryInfoKeyW
RegDeleteValueW
RegEnumKeyExW
GetLengthSid
ReadEventLogA
RegSetValueExW
FreeSid
RegEnumValueW
InitializeSecurityDescriptor
ReportEventA
PrintDlgExW
GetSaveFileNameW
GetOpenFileNameW
SetGraphicsMode
GetCharABCWidthsW
GetCharABCWidthsFloatW
CreateFontIndirectW
SetBkMode
GetGlyphOutlineW
CreatePen
GetBkMode
SaveDC
SetTextAlign
GetPaletteEntries
EndPath
CombineRgn
GetTextMetricsW
StretchBlt
GetDeviceCaps
LineTo
OffsetRgn
DeleteDC
SetWorldTransform
RestoreDC
PolyBezierTo
SetPolyFillMode
EndDoc
PtInRegion
StartPage
GetRegionData
FillPath
CreateDCW
CreateDIBSection
RealizePalette
SetTextColor
GetObjectA
MoveToEx
ExtTextOutW
GetObjectW
CreateEllipticRgn
CreateBitmap
BitBlt
CreatePalette
EnumFontFamiliesExW
GetStockObject
SelectPalette
GetOutlineTextMetricsW
GetDIBits
GdiFlush
SelectClipRgn
CreateCompatibleDC
GetTextExtentPoint32W
StartDocW
StrokePath
EndPage
CreateRectRgn
CloseFigure
AbortDoc
GetNearestPaletteIndex
CreateSolidBrush
GetTextFaceW
ExtCreatePen
SelectObject
GetFontData
ResetDCW
BeginPath
DeleteObject
CreateCompatibleBitmap
SelectClipPath
ImmSetCompositionFontW
ImmSetCompositionWindow
ImmGetDefaultIMEWnd
ImmNotifyIME
ImmGetContext
ImmSetCandidateWindow
ImmReleaseContext
ImmGetCompositionStringW
ImmAssociateContext
GetIpAddrTable
GetBestRoute
GetStdHandle
GetDriveTypeW
ReleaseMutex
FileTimeToSystemTime
CreateFileMappingA
GetFileAttributesA
WaitForSingleObject
FindFirstFileW
GetVolumePathNameA
GetFileAttributesW
lstrcmpW
GetLocalTime
DeleteCriticalSection
GetCurrentProcess
MoveFileW
LocalAlloc
UnhandledExceptionFilter
SetFilePointer
IsValidLanguageGroup
OpenFileMappingA
SetErrorMode
GetLogicalDrives
GetFileInformationByHandle
GetLocaleInfoW
GetFileTime
IsDBCSLeadByteEx
GetTempPathA
WideCharToMultiByte
GetTempPathW
GetTimeZoneInformation
GetSystemTimeAsFileTime
GetDiskFreeSpaceA
ResumeThread
SetEvent
LocalFree
FormatMessageW
GetThreadPriority
SetWaitableTimer
GetEnvironmentVariableA
OutputDebugStringW
FindClose
TlsGetValue
FormatMessageA
GetFullPathNameW
OutputDebugStringA
VirtualQuery
SetLastError
GetUserDefaultUILanguage
GetSystemTime
DeviceIoControl
InitializeCriticalSection
CopyFileW
GetUserDefaultLangID
GetModuleFileNameW
ExitProcess
GetVersionExA
GetModuleFileNameA
QueueUserAPC
VerSetConditionMask
GetVolumeInformationA
SetThreadPriority
CreateDirectoryExW
GetVolumeInformationW
LoadLibraryExW
MultiByteToWideChar
SystemTimeToTzSpecificLocalTime
SetFilePointerEx
FindNextChangeNotification
CreateMutexA
GetVolumeNameForVolumeMountPointA
SetFileAttributesW
LockFileEx
CreateSemaphoreA
CreateThread
VirtualLock
MoveFileExW
GetSystemDirectoryW
CreateSemaphoreW
CreateMutexW
ExitThread
MoveFileExA
MoveFileA
GlobalMemoryStatus
FindCloseChangeNotification
SetUnhandledExceptionFilter
GetVersion
SetCurrentDirectoryW
GlobalAlloc
GetDiskFreeSpaceExW
SetEndOfFile
GetCurrentThreadId
SleepEx
CloseHandle
AreFileApisANSI
InitializeCriticalSectionAndSpinCount
HeapFree
EnterCriticalSection
TerminateThread
LoadLibraryW
GetVersionExW
FreeLibrary
QueryPerformanceCounter
GetTickCount
TlsAlloc
VirtualProtect
FlushFileBuffers
LoadLibraryA
GlobalSize
GetStartupInfoA
UnlockFile
GetFileSize
OpenProcess
CreateDirectoryA
DeleteFileA
GetDateFormatW
GetStartupInfoW
ReadProcessMemory
CreateDirectoryW
DeleteFileW
GetProcAddress
GetProcessHeap
CreateFileMappingW
GetProfileStringW
CompareStringW
RemoveDirectoryW
ExpandEnvironmentStringsW
FindNextFileW
WaitForMultipleObjectsEx
ResetEvent
CreateWaitableTimerA
FindNextFileA
IsValidLocale
DuplicateHandle
FindFirstFileExW
GetUserDefaultLCID
CreateEventW
CreateFileW
CreateEventA
GetFileType
TlsSetValue
CreateFileA
HeapAlloc
GetCurrencyFormatW
LeaveCriticalSection
GetLastError
SystemTimeToFileTime
CreateWaitableTimerW
VirtualAllocEx
GetSystemInfo
GlobalFree
GetTimeFormatW
GetProcessTimes
GlobalUnlock
LockFile
FindFirstChangeNotificationW
GetQueuedCompletionStatus
WaitForSingleObjectEx
SwitchToThread
GetCurrentDirectoryW
VirtualFreeEx
GetCurrentProcessId
CreateIoCompletionPort
SetFileTime
GetCommandLineW
GetCurrentThread
QueryPerformanceFrequency
ReleaseSemaphore
MapViewOfFile
TlsFree
GetModuleHandleA
VirtualUnlock
ReadFile
PulseEvent
FindFirstFileA
VerifyVersionInfoW
GlobalLock
GetModuleHandleW
GetFileAttributesExW
GetLongPathNameW
UnmapViewOfFile
WriteFile
PostQueuedCompletionStatus
CreateProcessW
WaitForMultipleObjects
Sleep
TerminateProcess
OpenEventA
VariantInit
SysAllocStringLen
Shell_NotifyIconW
ShellExecuteW
SHGetSpecialFolderPathA
SHGetFileInfoW
PathRemoveFileSpecW
SetFocus
SetWindowRgn
SetWindowPos
EndPaint
ScrollWindowEx
WindowFromPoint
SetCaretBlinkTime
SetMenuItemInfoW
GetDC
DestroyCursor
GetCursorPos
ReleaseDC
GetMenu
TranslateMessage
UnregisterClassW
GetClassInfoW
ToAscii
SetCaretPos
CallNextHookEx
GetSysColor
LoadImageW
ClientToScreen
GetActiveWindow
InvalidateRgn
DestroyWindow
GetUserObjectInformationW
GetParent
UpdateWindow
CreateCaret
GetMessageW
ShowWindow
FlashWindowEx
ValidateRgn
PeekMessageW
SetWindowPlacement
GetClipboardFormatNameW
GetSystemMenu
SetParent
DestroyCaret
CreateCursor
CharNextExA
GetIconInfo
GetQueueStatus
RegisterClassW
IsZoomed
GetWindowPlacement
SetWindowLongW
GetKeyboardLayoutList
IsIconic
TrackPopupMenuEx
SetTimer
GetKeyboardLayout
GetSysColorBrush
CreateWindowExW
GetWindowLongW
GetUpdateRect
IsChild
MapWindowPoints
RegisterWindowMessageW
BeginPaint
DefWindowProcW
KillTimer
MapVirtualKeyW
ClipCursor
SetClipboardViewer
GetSystemMetrics
EnableMenuItem
GetWindowRect
SetCapture
ReleaseCapture
GetProcessWindowStation
DrawIconEx
SetWindowTextW
CreateIconIndirect
ScreenToClient
PostMessageW
GetKeyboardState
GetDesktopWindow
SetWindowsHookExW
LoadIconW
FindWindowExW
DispatchMessageW
SetForegroundWindow
GetAsyncKeyState
GetCaretBlinkTime
HideCaret
FindWindowW
MessageBeep
GetWindowThreadProcessId
MessageBoxW
SendMessageW
RegisterClassExW
UnhookWindowsHookEx
MoveWindow
MessageBoxA
ChangeClipboardChain
AdjustWindowRectEx
MsgWaitForMultipleObjectsEx
RegisterClipboardFormatW
GetKeyState
GetWindowRgn
GetDoubleClickTime
DestroyIcon
IsWindowVisible
SetDoubleClickTime
SetCursorPos
SystemParametersInfoW
InvalidateRect
GetClientRect
ToUnicode
GetFocus
SetCursor
PlaySoundW
DeviceCapabilitiesW
GetPrinterW
EnumFormsW
EnumPrintersW
ClosePrinter
OpenPrinterW
getaddrinfo
htonl
shutdown
WSARecv
accept
ioctlsocket
WSAStartup
freeaddrinfo
WSASocketW
getsockname
WSAAddressToStringA
htons
getnameinfo
WSAGetLastError
gethostname
getsockopt
recv
send
ntohl
inet_addr
WSASend
ntohs
select
listen
__WSAFDIsSet
WSACleanup
WSASetLastError
WSAAsyncSelect
closesocket
setsockopt
socket
bind
sendto
connect
__lconv_init
wcsftime
fseek
fclose
_snwprintf
strtoul
fflush
isxdigit
_fmode
strtol
__initenv
system
_wgetenv
fwrite
frexp
fputs
_fstat64
exit
isspace
_close
puts
iswctype
wcscoll
_exit
__dllonexit
_wfopen
strstr
_write
_clearfp
memcpy
perror
ctime
memmove
signal
remove
iswspace
strcmp
memchr
strncmp
fgetc
memset
strcat
_stricmp
_setmode
fgets
__pioinfo
strchr
asin
fopen
fgetpos
fsetpos
ftell
_strlwr
sprintf
strrchr
_acmdln
fputc
ferror
gmtime
free
ungetc
_getdrive
__getmainargs
ungetwc
_stat
_lseeki64
_vsnprintf
_flushall
_read
wcsxfrm
iswdigit
strcpy
bsearch
__mb_cur_max
islower
_getch
isupper
_ftime
_iob
rand
_putenv
setlocale
realloc
_getcwd
strxfrm
__doserrno
_open_osfhandle
calloc
isprint
_lseek
_setjmp3
toupper
printf
_commit
strncpy
_cexit
raise
isalnum
mktime
qsort
_tzset
_open
_onexit
wcslen
isalpha
_snprintf
putc
memcmp
__setusermatherr
log10
srand
vprintf
_fdopen
_wchmod
getenv
atoi
vfprintf
atol
atof
strcoll
_tzname
localeconv
strerror
wcscpy
_beginthreadex
strspn
_strnicmp
putwc
localtime
malloc
sscanf
acos
fread
_waccess
abort
fprintf
getwc
tan
ispunct
feof
_endthreadex
_amsg_exit
_control87
strlen
_lock
_get_osfhandle
_strdup
towlower
_fileno
wcsrchr
longjmp
tolower
atan
_unlock
fwprintf
setbuf
_initterm
towupper
iswprint
_errno
_filelengthi64
strftime
time
wcsstr
_wgetdcwd
getc
setvbuf
__set_app_type
OleUninitialize
CoUninitialize
CoInitialize
OleFlushClipboard
CoLockObjectExternal
ReleaseStgMedium
CoCreateGuid
RegisterDragDrop
CoCreateInstance
DoDragDrop
RevokeDragDrop
OleSetClipboard
CoGetMalloc
OleGetClipboard
OleIsCurrentClipboard
CoTaskMemFree
StringFromGUID2
OleInitialize
Number of PE resources by type
RT_ICON 6
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 8
PE resources
ExifTool file metadata
UninitializedDataSize
37376

LinkerVersion
2.25

ImageVersion
1.0

FileSubtype
0

FileVersionNumber
1.0.0.0

LanguageCode
English (U.S.)

FileFlagsMask
0x0000

FileDescription
HealthyWormCoin-Qt (OSS GUI client for HealthyWormCoin Coin)

CharacterSet
Windows, Latin1

InitializedDataSize
22327808

EntryPoint
0x14c0

OriginalFileName
HealthyWormCoin-Qt.exe

MIMEType
application/octet-stream

LegalCopyright
2015 The HealthyWormCoin developers, 2009-2014 The Bitcoin developers, 2012-2016-2017 The HealthyWormCoin developers

FileVersion
1.0.0.0

LegalTrademarks1
Distributed under the MIT/X11 software license, see the accompanying file COPYING or http://www.opensource.org/licenses/mit-license.php.

TimeStamp
2017:01:01 22:41:15+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
HealthyWormCoin-Qt

ProductVersion
1.0.0.0

SubsystemVersion
4.0

OSVersion
4.0

FileOS
Windows NT 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
HealthyWormCoin

CodeSize
17917952

ProductName
HealthyWormCoin-Qt

ProductVersionNumber
1.0.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 a1afaa9698b12ed1b9ac2bd65e89fe05
SHA1 f883b5a5ff45d16e09ac524d59e9bfc60f9ed2a8
SHA256 5fbc75e909ac359ac934f9eed5e8769ea939456f23c0aa3c8cf4b0b9dcff567f
ssdeep
393216:sWcIch+n36uliURXsrAmJPOKadn8VWu0341aWNliVpHpRVGMjRihvJgXup2CCBJl:s/ISuliHtJP1a1Jo1f2dTo2RKhgXup2C

authentihash 12f31622b7fc14c1bb5d356440af1bdaa76a42f10705adb155782160747291af
imphash 8d9c1b3d24f28d61df7021a39abe5ee1
File size 21.3 MB ( 22328832 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID InstallShield setup (46.2%)
Win32 EXE PECompact compressed (generic) (44.6%)
Win32 Executable (generic) (4.8%)
Generic Win/DOS Executable (2.1%)
DOS Executable Generic (2.1%)
Tags
peexe

VirusTotal metadata
First submission 2017-01-02 02:32:05 UTC ( 10 months, 3 weeks ago )
Last submission 2017-11-09 17:19:14 UTC ( 1 week, 2 days ago )
File names HealthyWormCoin.exe
HealthyWormCoin-Qt.exe
HealthyWormCoin-Qt
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!