× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 69ee51e4d8feec31dd4099d6ac610fd072c58a0cb1ce73f9df2ea723c3d050a3
File name: 69ee51e4d8feec31dd4099d6ac610fd072c58a0cb1ce73f9df2ea723c3d050a3
Detection ratio: 10 / 57
Analysis date: 2016-06-08 22:02:13 UTC ( 2 years, 10 months ago ) View latest
Antivirus Result Update
AegisLab Troj.W32.Gen.lNEB 20160608
Avast Win32:Malware-gen 20160608
Avira (no cloud) TR/Crypt.Xpack.xzxb 20160608
ESET-NOD32 Win32/TrojanDownloader.Agent.CFH 20160608
Fortinet W32/Agent.CFH!tr.dldr 20160608
Kaspersky UDS:DangerousObject.Multi.Generic 20160608
McAfee Artemis!9F20F48E4427 20160608
McAfee-GW-Edition BehavesLike.Win32.Expiro.dc 20160608
Qihoo-360 HEUR/QVM10.1.Malware.Gen 20160608
Sophos AV Mal/Generic-S 20160608
Ad-Aware 20160608
AhnLab-V3 20160608
Alibaba 20160608
ALYac 20160608
Antiy-AVL 20160608
Arcabit 20160608
AVG 20160608
AVware 20160608
Baidu 20160608
Baidu-International 20160606
BitDefender 20160608
Bkav 20160608
CAT-QuickHeal 20160608
ClamAV 20160608
CMC 20160607
Comodo 20160608
Cyren 20160608
DrWeb 20160608
Emsisoft 20160608
F-Prot 20160608
F-Secure 20160608
GData 20160608
Ikarus 20160608
Jiangmin 20160608
K7AntiVirus 20160608
K7GW 20160608
Kingsoft 20160608
Malwarebytes 20160608
Microsoft 20160608
eScan 20160608
NANO-Antivirus 20160608
nProtect 20160608
Panda 20160608
Rising 20160608
SUPERAntiSpyware 20160608
Symantec 20160608
Tencent 20160608
TheHacker 20160607
TotalDefense 20160607
TrendMicro 20160608
TrendMicro-HouseCall 20160608
VBA32 20160608
VIPRE 20160608
ViRobot 20160608
Yandex 20160607
Zillya 20160608
Zoner 20160608
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
(C) 2010-2014 DVDVideoSoft Ltd.

Product Free Studio
Original name FreeStudioManager.exe
Internal name FreeStudioManager.exe
File version 6.8.2.5
Description Free Studio
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-06-06 20:03:37
Entry Point 0x0000CFA7
Number of sections 6
PE sections
PE imports
GetOpenFileNameA
GetDeviceCaps
BitBlt
SelectObject
CreateFontA
GetStockObject
TextOutA
SetBkMode
CreateDIBSection
CreateCompatibleDC
DeleteObject
CreateCompatibleBitmap
SetTextColor
GetLastError
InitializeCriticalSectionAndSpinCount
HeapFree
GetStdHandle
EnterCriticalSection
LCMapStringW
SetHandleCount
DeviceIoControl
GetOEMCP
LCMapStringA
IsDebuggerPresent
HeapAlloc
TlsAlloc
GetEnvironmentStringsW
LoadLibraryA
RtlUnwind
GetSystemDirectoryA
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetEnvironmentStrings
GetLocaleInfoA
GetCurrentProcessId
WideCharToMultiByte
UnhandledExceptionFilter
LoadLibraryExW
MultiByteToWideChar
HeapSize
FreeEnvironmentStringsW
GetCommandLineA
GetProcAddress
TlsFree
GetProcessHeap
ExitProcess
RaiseException
GetCPInfo
GetStringTypeA
GetModuleHandleA
SetUnhandledExceptionFilter
WriteFile
GetStartupInfoA
CloseHandle
GetSystemTimeAsFileTime
GetACP
HeapReAlloc
GetStringTypeW
GetModuleHandleW
FreeLibrary
TerminateProcess
GetModuleFileNameA
QueryPerformanceCounter
WriteConsoleA
IsValidCodePage
HeapCreate
TlsGetValue
VirtualFree
AllocConsole
InterlockedDecrement
Sleep
GetFileType
TlsSetValue
CreateFileA
GetTickCount
GetCurrentThreadId
InterlockedIncrement
VirtualAlloc
SetLastError
LeaveCriticalSection
ReadProcessorPwrScheme
SetupDiGetDeviceInstallParamsA
SetupDiSetDeviceInstallParamsA
SetupDiSetSelectedDevice
SetupDiGetSelectedDriverA
SetupDiOpenDeviceInfoW
SetupDiBuildDriverInfoList
SetupDiCreateDeviceInfoList
SetupDiGetClassDevsW
SetupDiDestroyDeviceInfoList
SetupDiCallClassInstaller
wvnsprintfA
StrToIntExA
PathCompactPathA
EmptyClipboard
GetParent
ReleaseDC
BeginPaint
GetIconInfo
TrackMouseEvent
FindWindowA
DefWindowProcA
ShowWindow
LoadMenuA
SetWindowPos
GetSystemMetrics
GetWindowRect
EndPaint
SetDlgItemTextA
GetCursorInfo
GetWindowDC
AdjustWindowRectEx
GetWindow
CheckDlgButton
GetDC
RegisterClassExA
SystemParametersInfoA
ChildWindowFromPoint
SetWindowTextA
LoadStringA
SetClipboardData
SendMessageA
GetWindowTextA
GetClientRect
SetCursorPos
ScreenToClient
GetSubMenu
CreateWindowExA
LoadCursorA
TrackPopupMenu
ClientToScreen
IsDlgButtonChecked
GetDesktopWindow
GetClassNameA
CloseClipboard
GetDlgItem
OpenClipboard
DestroyMenu
DestroyWindow
ImageNtHeader
GdipGraphicsClear
GdipCreateFromHDC
GdipFree
GdipCloneImage
GdipAlloc
GdipDisposeImage
GdipLoadImageFromFile
GdiplusStartup
GdipDrawImageI
GdipSetTextRenderingHint
GdipDeleteGraphics
Number of PE resources by type
RT_STRING 20
RT_DIALOG 8
RT_BITMAP 2
RT_HTML 1
RT_MANIFEST 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 33
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
5.0

LinkerVersion
9.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
6.8.2.5

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
126464

EntryPoint
0xcfa7

OriginalFileName
FreeStudioManager.exe

MIMEType
application/octet-stream

LegalCopyright
(C) 2010-2014 DVDVideoSoft Ltd.

FileVersion
6.8.2.5

TimeStamp
2016:06:06 21:03:37+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
FreeStudioManager.exe

ProductVersion
6.8.2.5

FileDescription
Free Studio

OSVersion
5.0

FileOS
Windows NT 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
DVDVideoSoft Ltd.

CodeSize
90624

ProductName
Free Studio

ProductVersionNumber
6.8.2.5

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 9f20f48e4427ce0a46c59d918ee4011a
SHA1 88d9b538b9ea0eb61b52f787ae4fb58d86d882bd
SHA256 69ee51e4d8feec31dd4099d6ac610fd072c58a0cb1ce73f9df2ea723c3d050a3
ssdeep
3072:xV82mVJ+MLN18+IcCrPh4mRFsL5ugyHYhfT2O+9KVAViFA4YeQgK8EG:4d+y1816CyRh7hUKVpABeRE

authentihash 783310e7bf0e1253069a69ff44742f3be8fbb96c595b19a1a82388a419abd37d
imphash 3a4dfc0d2f7f60fcd55b0e76c71a2ed3
File size 213.0 KB ( 218112 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (42.2%)
Win64 Executable (generic) (37.3%)
Win32 Dynamic Link Library (generic) (8.8%)
Win32 Executable (generic) (6.0%)
Generic Win/DOS Executable (2.7%)
Tags
peexe

VirusTotal metadata
First submission 2016-06-08 22:02:13 UTC ( 2 years, 10 months ago )
Last submission 2016-07-05 13:22:26 UTC ( 2 years, 9 months ago )
File names FreeStudioManager.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Deleted files
Created processes
Code injections in the following processes
Created mutexes
Opened mutexes
Searched windows
Opened service managers
Opened services
Runtime DLLs
HTTP requests
DNS requests
TCP connections
UDP communications