× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 681c76134a6cfecee07fb2b377d3e748f74ed86d00a8ae24596e63fd8019f637
File name: 56_newsvine.jp2.exe
Detection ratio: 0 / 43
Analysis date: 2011-05-11 11:57:30 UTC ( 2 years, 11 months ago ) View latest
Antivirus Result Update
AVG 20110511
AhnLab-V3 20110511
AntiVir 20110511
Antiy-AVL 20110511
Avast 20110511
Avast5 20110511
BitDefender 20110511
CAT-QuickHeal 20110511
ClamAV 20110511
Commtouch 20110511
Comodo 20110511
DrWeb 20110511
Emsisoft 20110511
F-Prot 20110511
F-Secure 20110511
Fortinet 20110511
GData 20110511
Ikarus 20110511
Jiangmin 20110511
K7AntiVirus 20110510
Kaspersky 20110511
McAfee 20110511
McAfee-GW-Edition 20110510
Microsoft 20110511
NOD32 20110511
Norman 20110511
PCTools 20110511
Panda 20110511
Prevx 20110511
Rising 20110511
SUPERAntiSpyware 20110511
Sophos 20110511
Symantec 20110511
TheHacker 20110511
TrendMicro 20110511
TrendMicro-HouseCall 20110511
VBA32 20110511
VIPRE 20110511
ViRobot 20110511
VirusBuster 20110511
eSafe 20110511
eTrust-Vet 20110511
nProtect 20110511
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file.
Authenticode signature block
Copyright
Copyright (C) Microsoft Corporation

Publisher Microsoft Corporation
Product Task Manager Application
Original name Task Manager
Internal name Task Manager
File version 1, 0, 0, 1
Description Task Manager
Packers identified
PEiD Armadillo v1.71
PE header basic information
Number of sections 4
PE sections
PE imports
RegSetValueExA
RegCloseKey
RegCreateKeyA
GetFileSize
ReadFile
CloseHandle
UnmapViewOfFile
GetModuleHandleA
SetFileTime
CreateFileA
SystemTimeToFileTime
GetModuleFileNameA
GetProcAddress
GetTempFileNameA
GetTempPathA
SetFilePointer
GetCurrentThreadId
GetVersionExA
GetStartupInfoA
WriteFile
MapViewOfFile
LocalFileTimeToFileTime
CreateFileMappingA
83 more function(s) imported by ordinal)
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_onexit
__dllonexit
__CxxFrameHandler
_snprintf
strstr
_setmbcp
_controlfp
free
calloc
_stricmp
strncpy
GetSystemMetrics
IsIconic
EnableWindow
GetClientRect
DrawIcon
SendMessageA
GetInputState
GetMessageA
PostThreadMessageA
File identification
MD5 36a5fb1bc24bf2d199ecceb44f43271b
SHA1 d0cb72eadb15616f1b87e2369350ee55487529ee
SHA256 681c76134a6cfecee07fb2b377d3e748f74ed86d00a8ae24596e63fd8019f637
ssdeep
1536:7FQ+AcNsfuxegyupdpzLT+nr9gEmGymk9xdMG+GdnGT4:hAmOuxeop/zLT0qyG+iGT4

File size 76.1 KB ( 77909 bytes )
File type Win32 EXE
Magic literal

TrID Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
VirusTotal metadata
First submission 2011-05-11 11:57:30 UTC ( 2 years, 11 months ago )
Last submission 2011-09-25 13:23:51 UTC ( 2 years, 7 months ago )
File names 56_newsvine.jp2.exe
681c76134a6cfecee07fb2b377d3e748f74ed86d00a8ae24596e63fd8019f637
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!