× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 63cba8a28257297db4db1745975a94fa4968488b4d968e25f77faf055ac9d276
File name: Videos_xxx.exe
Detection ratio: 2 / 43
Analysis date: 2012-03-07 00:44:57 UTC ( 5 years, 2 months ago )
Antivirus Result Update
Avast Win32:WrongInf-C [Susp] 20120306
CAT-QuickHeal (Suspicious) - DNAScan 20120305
AhnLab-V3 20120305
AntiVir 20120306
Antiy-AVL 20120305
AVG 20120306
BitDefender 20120306
ByteHero 20120305
ClamAV 20120306
Commtouch 20120306
Comodo 20120306
DrWeb 20120306
Emsisoft 20120306
eSafe 20120305
eTrust-Vet 20120306
F-Prot 20120306
F-Secure 20120306
Fortinet 20120305
GData 20120306
Ikarus 20120306
Jiangmin 20120301
K7AntiVirus 20120306
Kaspersky 20120306
McAfee 20120306
McAfee-GW-Edition 20120307
Microsoft 20120307
NOD32 20120306
Norman 20120304
nProtect 20120306
Panda 20120307
PCTools 20120228
Prevx 20120307
Rising 20120306
Sophos 20120306
SUPERAntiSpyware 20120305
Symantec 20120305
TheHacker 20120306
TrendMicro 20120306
TrendMicro-HouseCall 20120306
VBA32 20120306
VIPRE 20120306
ViRobot 20120306
VirusBuster 20120304
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
(c) Microsoft Corporation. All rights reserved.

Publisher Microsoft Corporation
Product Microsoft_ Windows_ Operating System
Original name wmplayer.exe
Internal name wmplayer.exe
File version 12.0.7600.16385 (win7_rtm.090713-1255)
Description Windows Media Player
PE header basic information
Number of sections 4
PE sections
PE imports
ExitProcess, FindResourceA, SetPriorityClass, UnmapViewOfFile, LoadResource, HeapAlloc, SizeofResource, GetShortPathNameA, GetLastError, LoadLibraryA, LocalAlloc, LockResource, GetModuleFileNameA, GetModuleHandleA, DeleteFileA
ExifTool file metadata
SubsystemVersion
4.0

InitializedDataSize
286208

ImageVersion
0.0

ProductName
Microsoft Windows Operating System

FileVersionNumber
12.0.7600.16385

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Unicode

LinkerVersion
8.0

FileOS
Windows NT 32-bit

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
12.0.7600.16385 (win7_rtm.090713-1255)

TimeStamp
2012:03:06 16:54:18+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
wmplayer.exe

ProductVersion
12.0.7600.16385

FileDescription
Windows Media Player

OSVersion
4.0

OriginalFilename
wmplayer.exe

LegalCopyright
Microsoft Corporation. All rights reserved.

MachineType
Intel 386 or later, and compatibles

CompanyName
Microsoft Corporation

CodeSize
22528

FileSubtype
0

ProductVersionNumber
12.0.7600.16385

EntryPoint
0x5530

ObjectFileType
Executable application

File identification
MD5 16b83eccc8b06b9e11a90cbdd63a0316
SHA1 be9a31925806948289de369e9b8fbcd2e2c0acfd
SHA256 63cba8a28257297db4db1745975a94fa4968488b4d968e25f77faf055ac9d276
ssdeep
6144:1rZBqlmG3Sos7x9OP+5VTlT018JkuYHd76UwQDFSi:1rZBqlT3SVVTlw9uY16sD

File size 331.0 KB ( 338944 bytes )
File type Win32 EXE
Magic literal
MS-DOS executable PE for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
VirusTotal metadata
First submission 2012-03-06 21:30:11 UTC ( 5 years, 2 months ago )
Last submission 2012-03-07 00:44:57 UTC ( 5 years, 2 months ago )
File names Videos_xxx.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!