× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 650e939a133da9573ea09b800bd220fb1fe58a00aabd31a3515997aba04097e8
File name: RegCompact
Detection ratio: 0 / 60
Analysis date: 2017-05-12 16:49:38 UTC ( 1 week, 3 days ago )
Antivirus Result Update
Ad-Aware 20170512
AegisLab 20170512
AhnLab-V3 20170512
Alibaba 20170512
ALYac 20170512
Arcabit 20170512
Avast 20170512
AVG 20170512
Avira (no cloud) 20170512
AVware 20170512
Baidu 20170503
BitDefender 20170512
Bkav 20170512
CAT-QuickHeal 20170512
ClamAV 20170512
CMC 20170511
Comodo 20170512
CrowdStrike Falcon (ML) 20170130
Cyren 20170512
DrWeb 20170512
Emsisoft 20170512
Endgame 20170503
ESET-NOD32 20170512
F-Prot 20170512
F-Secure 20170512
Fortinet 20170512
GData 20170512
Invincea 20170413
Jiangmin 20170512
K7AntiVirus 20170512
K7GW 20170512
Kaspersky 20170512
Kingsoft 20170512
Malwarebytes 20170512
McAfee 20170512
McAfee-GW-Edition 20170512
Microsoft 20170512
eScan 20170512
NANO-Antivirus 20170512
nProtect 20170512
Palo Alto Networks (Known Signatures) 20170512
Panda 20170512
Qihoo-360 20170512
Rising 20170512
SentinelOne (Static ML) 20170330
Sophos 20170512
SUPERAntiSpyware 20170512
Symantec 20170511
Symantec Mobile Insight 20170512
Tencent 20170512
TheHacker 20170508
TotalDefense 20170512
TrendMicro 20170512
TrendMicro-HouseCall 20170512
VBA32 20170512
VIPRE 20170512
ViRobot 20170512
Webroot 20170512
WhiteArmor 20170512
Yandex 20170510
Zillya 20170511
ZoneAlarm by Check Point 20170512
Zoner 20170512
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2000 Daniel Werner

Product RegCompact
Original name RegCompact.exe
Internal name RegCompact
File version 1.0
Description RegCompact
Packers identified
PEiD Armadillo v1.71
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2000-10-28 07:16:14
Entry Point 0x000031B0
Number of sections 4
PE sections
PE imports
LookupPrivilegeValueA
RegOpenKeyA
RegSaveKeyA
OpenProcessToken
RegReplaceKeyA
AdjustTokenPrivileges
RegEnumValueA
RegOpenKeyExA
RegCloseKey
ImageList_Create
Ord(17)
ImageList_ReplaceIcon
SetBkMode
CreateFontA
DeleteObject
GetStockObject
SetTextColor
GetLastError
HeapFree
GetStdHandle
LCMapStringW
SetHandleCount
GetOEMCP
LCMapStringA
HeapDestroy
HeapAlloc
IsBadWritePtr
FlushFileBuffers
GetEnvironmentStringsW
GetVersionExA
LoadLibraryA
RtlUnwind
GetACP
GetShortPathNameA
FreeEnvironmentStringsA
GetCurrentProcess
GetEnvironmentStrings
GetFileType
GetStringTypeW
GetFileSize
DeleteFileA
WideCharToMultiByte
UnhandledExceptionFilter
MultiByteToWideChar
FreeEnvironmentStringsW
GetCommandLineA
GetProcAddress
IsBadReadPtr
SetStdHandle
SetFilePointer
GetTempPathA
RaiseException
GetCPInfo
GetStringTypeA
GetModuleHandleA
ReadFile
IsBadCodePtr
WriteFile
GetStartupInfoA
CloseHandle
GetTempFileNameA
GetSystemDirectoryA
HeapReAlloc
MoveFileExA
SetFileAttributesA
MoveFileA
TerminateProcess
GetModuleFileNameA
SetUnhandledExceptionFilter
HeapCreate
VirtualFree
FormatMessageA
SetEndOfFile
CreateFileA
ExitProcess
GetVersion
VirtualAlloc
SetCurrentDirectoryA
ShellExecuteA
GetCursorPos
GetMessageA
GetDlgCtrlID
LoadCursorA
LoadIconA
DispatchMessageA
SetDlgItemTextA
TranslateMessage
SendMessageA
MessageBoxA
PeekMessageA
GetDlgItem
CreateDialogParamA
PostQuitMessage
WinHelpA
ShowWindow
DestroyWindow
ScreenToClient
ExitWindowsEx
SetWindowPos
SetCursor
Number of PE resources by type
RT_ICON 6
RT_GROUP_ICON 3
RT_DIALOG 1
RT_GROUP_CURSOR 1
RT_BITMAP 1
RT_CURSOR 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 14
PE resources
ExifTool file metadata
SubsystemVersion
4.0

InitializedDataSize
40960

ImageVersion
0.0

ProductName
RegCompact

FileVersionNumber
1.0.0.0

UninitializedDataSize
0

LanguageCode
English (Australian)

FileFlagsMask
0x003f

CharacterSet
Unicode

LinkerVersion
6.0

FileTypeExtension
exe

OriginalFileName
RegCompact.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
1.0

TimeStamp
2000:10:28 08:16:14+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
RegCompact

ProductVersion
1.0

FileDescription
RegCompact

OSVersion
4.0

FileOS
Windows NT 32-bit

LegalCopyright
Copyright 2000 Daniel Werner

MachineType
Intel 386 or later, and compatibles

CodeSize
36864

FileSubtype
0

ProductVersionNumber
1.0.0.0

EntryPoint
0x31b0

ObjectFileType
Executable application

File identification
MD5 f5e3fbb6209a0ed15e82be0f2b1847f7
SHA1 52ab8b8d344c8935e8ff13b6f05a226992008e88
SHA256 650e939a133da9573ea09b800bd220fb1fe58a00aabd31a3515997aba04097e8
ssdeep
768:encw17j3AXniyY6V2T5LQGZr/5CnvW9u1Xh3iB9JncU7+kmB1oANbkOuco:encKj3AXq64roBN+cUn8oABm

authentihash 8c0fabe58c2edd1bcc2be5de847ea4bd7a68104451b1c4d37b55840d227431d3
imphash b365dfada9d3688dc3b5d62fa724311e
File size 72.0 KB ( 73728 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (35.8%)
Win64 Executable (generic) (31.7%)
Windows screen saver (15.0%)
Win32 Dynamic Link Library (generic) (7.5%)
Win32 Executable (generic) (5.1%)
Tags
peexe armadillo

VirusTotal metadata
First submission 2012-09-14 17:31:12 UTC ( 4 years, 8 months ago )
Last submission 2012-09-14 17:35:33 UTC ( 4 years, 8 months ago )
File names file-4512894_exe
RegCompact.exe
RegCompact
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Runtime DLLs
UDP communications