× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 66540211ea7c93bf02af2da291277b2d389fdc8e2690abbed778dabb5570756b
File name: MetronomTimer.exe
Detection ratio: 0 / 42
Analysis date: 2012-08-25 08:34:47 UTC ( 1 year, 7 months ago ) View latest
Antivirus Result Update
AVG 20120825
AhnLab-V3 20120824
AntiVir 20120825
Antiy-AVL 20120824
Avast 20120825
BitDefender 20120825
ByteHero 20120817
CAT-QuickHeal 20120825
ClamAV 20120825
Commtouch 20120824
Comodo 20120825
DrWeb 20120825
ESET-NOD32 20120824
Emsisoft 20120825
F-Prot 20120824
F-Secure 20120825
Fortinet 20120825
GData 20120825
Ikarus 20120825
Jiangmin 20120825
K7AntiVirus 20120824
Kaspersky 20120825
McAfee 20120825
McAfee-GW-Edition 20120825
Microsoft 20120825
Norman 20120824
PCTools 20120825
Panda 20120824
Rising 20120824
SUPERAntiSpyware 20120825
Sophos 20120825
Symantec 20120825
TheHacker 20120824
TotalDefense 20120824
TrendMicro 20120825
TrendMicro-HouseCall 20120825
VBA32 20120824
VIPRE 20120825
ViRobot 20120825
VirusBuster 20120824
eSafe 20120823
nProtect 20120824
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2038-08-02 22:53:22
Link date 5:25 PM 6/27/1902
Entry Point 0x00001000
Number of sections 8
PE sections
PE imports
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
ImageList_GetImageCount
ImageList_GetImageInfo
ImageList_BeginDrag
ImageList_Destroy
ImageList_GetDragImage
ImageList_SetBkColor
ImageList_Draw
ImageList_GetIconSize
ImageList_Create
ImageList_Remove
ImageList_DragShowNolock
ImageList_SetDragCursorImage
ImageList_DragMove
ImageList_DragLeave
ImageList_GetBkColor
ImageList_EndDrag
InitCommonControls
ImageList_SetIconSize
ImageList_ReplaceIcon
ImageList_DragEnter
ImageList_Add
GetSystemPaletteEntries
PatBlt
GetCurrentPositionEx
SaveDC
CreateFontIndirectA
GetPaletteEntries
SetStretchBltMode
EnumFontsA
GetBitmapBits
Rectangle
GetDeviceCaps
ExcludeClipRect
CreateCompatibleDC
DeleteDC
RestoreDC
GetTextExtentPointA
GetWindowOrgEx
SetWindowOrgEx
IntersectClipRect
BitBlt
RealizePalette
SetTextColor
GetObjectA
RectVisible
CreateBitmap
MoveToEx
CreatePalette
CreateBrushIndirect
CreateDIBitmap
GetStockObject
SelectPalette
LineTo
GetDIBits
EnumFontFamiliesExA
StretchBlt
StretchDIBits
SetROP2
CreateRectRgn
SelectObject
GetTextMetricsA
UnrealizeObject
CreateSolidBrush
Polyline
SetViewportOrgEx
SetBkMode
SetBkColor
DeleteObject
CreateCompatibleBitmap
CreatePenIndirect
SuspendThread
GetLastError
GetStdHandle
EnterCriticalSection
GlobalDeleteAtom
ReadFile
SetHandleCount
LoadLibraryA
GetFileAttributesA
GlobalFree
WaitForSingleObject
FreeLibrary
MulDiv
LocalAlloc
ExitProcess
GetThreadLocale
TlsAlloc
GlobalUnlock
GetVersionExA
GetModuleFileNameA
VirtualQuery
RtlUnwind
GetACP
GetLocalTime
GlobalReAlloc
WritePrivateProfileStringA
DeleteCriticalSection
GetCurrentProcess
GetDateFormatA
GetEnvironmentStrings
GetPrivateProfileStringA
GetLocaleInfoA
GetFileSize
LockResource
SetFilePointer
GetCPInfo
GetSystemDefaultLCID
SetErrorMode
MultiByteToWideChar
GetCommandLineA
GetProcAddress
TerminateThread
SleepEx
LeaveCriticalSection
GetSystemDefaultLangID
RaiseException
UnhandledExceptionFilter
CreateThread
TlsFree
GetModuleHandleA
lstrcmpA
GetExitCodeThread
GlobalAddAtomA
WriteFile
GetStartupInfoA
CloseHandle
ExitThread
GlobalLock
GetStringTypeW
GetVersion
FreeResource
LocalFree
ResumeThread
TlsSetValue
SizeofResource
WideCharToMultiByte
GlobalHandle
InitializeCriticalSection
LoadResource
GlobalAlloc
VirtualFree
TlsGetValue
GetFileType
SetEndOfFile
SetConsoleCtrlHandler
CreateFileA
SetThreadPriority
GetCurrentThreadId
FindResourceA
VirtualAlloc
GetCurrentProcessId
CompareStringA
VariantCopyInd
VariantChangeTypeEx
SysStringLen
VariantClear
SysAllocStringLen
GetForegroundWindow
SetWindowRgn
DestroyMenu
PostQuitMessage
SetWindowPos
IsWindow
SetTimer
DispatchMessageA
EndPaint
CharUpperBuffA
WindowFromPoint
SetActiveWindow
GetDC
GetCursorPos
DrawTextA
GetClassInfoA
GetMenu
UnregisterClassA
DefFrameProcA
GetClientRect
CharLowerBuffA
SetScrollPos
CallNextHookEx
GetActiveWindow
ShowCursor
GetMenuItemCount
GetWindowTextA
DestroyWindow
GetParent
SystemParametersInfoA
SetPropA
EqualRect
EnumWindows
DefWindowProcA
ShowWindow
GetPropA
GetDesktopWindow
TranslateMDISysAccel
EnableWindow
SetWindowPlacement
PeekMessageA
TranslateMessage
IsWindowEnabled
GetWindow
ActivateKeyboardLayout
InsertMenuItemA
GetIconInfo
LoadStringA
ScrollWindow
GetSystemMetrics
IsZoomed
GetWindowPlacement
GetKeyboardLayoutList
DrawMenuBar
IsIconic
RegisterClassA
GetWindowLongA
CreateWindowExA
OemToCharA
GetKeyboardLayout
FillRect
EnumThreadWindows
WaitForInputIdle
CreateMenu
PtInRect
IsDialogMessageA
SetFocus
MapVirtualKeyA
ReleaseCapture
SetCapture
BeginPaint
OffsetRect
GetScrollPos
KillTimer
RegisterWindowMessageA
DefMDIChildProcA
CharLowerA
EnableMenuItem
GetWindowRect
InflateRect
UpdateWindow
PostMessageA
DrawIcon
SetWindowLongA
RemovePropA
CreatePopupMenu
CheckMenuItem
GetSubMenu
GetLastActivePopup
GetDCEx
ClientToScreen
InsertMenuA
LoadCursorA
LoadIconA
TrackPopupMenu
SetWindowsHookExA
GetMenuStringA
GetMenuState
ShowOwnedPopups
GetSystemMenu
SetForegroundWindow
ReleaseDC
IntersectRect
GetCapture
WaitMessage
ScreenToClient
SetWindowTextA
RemoveMenu
SetMenu
CallWindowProcA
MessageBoxA
DestroyCursor
AdjustWindowRectEx
GetSysColor
SetScrollInfo
GetKeyState
GetWindowRgn
DestroyIcon
GetKeyNameTextA
IsWindowVisible
WinHelpA
FrameRect
SetRect
DeleteMenu
InvalidateRect
SendMessageA
CreateIcon
IsRectEmpty
GetCursor
GetFocus
UnhookWindowsHookEx
SetCursor
PlaySoundA
timeGetTime
PE exports
Number of PE resources by type
RT_STRING 20
RT_BITMAP 12
RT_GROUP_CURSOR 6
RT_CURSOR 6
RT_ICON 2
RT_RCDATA 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 33
GERMAN 15
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

TimeStamp
1900:01:00 00:00:00+00:00

FileType
Win32 EXE

PEType
PE32

CodeSize
270336

LinkerVersion
2.25

FileAccessDate
2014:03:14 18:56:03+01:00

EntryPoint
0x1000

InitializedDataSize
40960

SubsystemVersion
4.0

ImageVersion
0.0

OSVersion
1.0

FileCreateDate
2014:03:14 18:56:03+01:00

UninitializedDataSize
0

File identification
MD5 12f5b49fbbbb2f050a279824213372c5
SHA1 2fa1a9bd61969cb3a787346a53f1100d1ea07947
SHA256 66540211ea7c93bf02af2da291277b2d389fdc8e2690abbed778dabb5570756b
ssdeep
6144:hHSZjPstjWJzTNNFpisqWCzQoWooh01zteUs9SqkV4:hyZP5NN4vjQ01zcQlV

imphash 70d1c852c615a964d6526d434b365335
File size 349.5 KB ( 357888 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Windows Screen Saver (31.7%)
DOS Executable Borland C++ (31.5%)
Win32 Dynamic Link Library (generic) (15.9%)
Win32 Executable (generic) (10.9%)
Generic Win/DOS Executable (4.8%)
Tags
peexe

VirusTotal metadata
First submission 2010-07-15 16:37:46 UTC ( 3 years, 9 months ago )
Last submission 2012-08-25 08:35:49 UTC ( 1 year, 7 months ago )
File names MetronomTimer.exe
file-4415101_exe
12F5B49FBBBB2F050A279824213372C5
Advanced heuristic and reputation engines
ClamAV PUA
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: http://www.clamav.net/index.php?s=pua&lang=en .

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!