× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 6cc0a67dc565cb1befe62bca7b88b1ab936f7a1fe80a82077f5d6879adfcabe6
File name: VoicemeeterSetup.exe
Detection ratio: 0 / 66
Analysis date: 2018-10-12 17:28:49 UTC ( 2 months ago ) View latest
Antivirus Result Update
Ad-Aware 20181012
AegisLab 20181012
AhnLab-V3 20181012
Alibaba 20180921
ALYac 20181012
Antiy-AVL 20181012
Arcabit 20181012
Avast 20181012
Avast-Mobile 20181012
AVG 20181012
Avira (no cloud) 20181012
Babable 20180918
Baidu 20181012
BitDefender 20181012
Bkav 20181011
CAT-QuickHeal 20181011
ClamAV 20181012
CMC 20181012
Comodo 20181012
CrowdStrike Falcon (ML) 20180723
Cybereason 20180225
Cylance 20181012
Cyren 20181012
DrWeb 20181012
eGambit 20181012
Emsisoft 20181012
Endgame 20180730
ESET-NOD32 20181012
F-Prot 20181012
F-Secure 20181012
Fortinet 20181012
GData 20181012
Ikarus 20181012
Sophos ML 20180717
Jiangmin 20181012
K7AntiVirus 20181012
K7GW 20181012
Kaspersky 20181012
Kingsoft 20181012
Malwarebytes 20181012
MAX 20181012
McAfee 20181012
McAfee-GW-Edition 20181012
Microsoft 20181012
eScan 20181012
NANO-Antivirus 20181012
Palo Alto Networks (Known Signatures) 20181012
Panda 20181012
Qihoo-360 20181012
Rising 20181012
SentinelOne (Static ML) 20181011
Sophos AV 20181012
SUPERAntiSpyware 20181012
Symantec 20181012
Symantec Mobile Insight 20181001
TACHYON 20181012
Tencent 20181012
TheHacker 20181011
TrendMicro 20181010
TrendMicro-HouseCall 20181010
Trustlook 20181012
VBA32 20181012
ViRobot 20181012
Webroot 20181012
Yandex 20181011
Zillya 20181012
ZoneAlarm by Check Point 20181012
Zoner 20181011
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Authenticode signature block and FileVersionInfo properties
Copyright
V.Burel©2013-2018

Product VoicemeeterSetup
Original name VoicemeeterSetup.exe
Internal name VoicemeeterSetup
File version 1, 0, 6, 1
Description VB-AUDIO Voicemeeter Installer
Comments VB-AUDIO Voicemeeter Installer.
Signature verification Signed file, verified signature
Signing date 3:16 PM 6/1/2018
Signers
[+] Vincent Burel
Status Valid
Issuer DigiCert EV Code Signing CA (SHA2)
Valid from 1:00 AM 3/2/2017
Valid to 1:00 PM 3/7/2019
Valid usage Code Signing
Algorithm sha256RSA
Thumbprint 89622187C5B86B751CB42AA550286122F197FABC
Serial number 03 50 19 2D 0D 53 BB 89 97 0C 95 18 7E 36 36 1B
[+] DigiCert EV Code Signing CA (SHA2)
Status Valid
Issuer DigiCert High Assurance EV Root CA
Valid from 1:00 PM 4/18/2012
Valid to 1:00 PM 4/18/2027
Valid usage Code Signing
Algorithm sha256RSA
Thumbprint 60EE3FC53D4BDFD1697AE5BEAE1CAB1C0F3AD4E3
Serial number 03 F1 B4 E1 5F 3A 82 F1 14 96 78 B3 D7 D8 47 5C
[+] DigiCert
Status Valid
Issuer DigiCert High Assurance EV Root CA
Valid from 1:00 AM 11/10/2006
Valid to 1:00 AM 11/10/2031
Valid usage Server Auth, Client Auth, Email Protection, Code Signing, Timestamp Signing
Algorithm sha1RSA
Thumbprint 5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25
Serial number 02 AC 5C 26 6A 0B 40 9B 8F 0B 79 F2 AE 46 25 77
Counter signers
[+] DigiCert SHA2 Timestamp Responder
Status Valid
Issuer DigiCert SHA2 Assured ID Timestamping CA
Valid from 1:00 AM 1/4/2017
Valid to 1:00 AM 1/18/2028
Valid usage Timestamp Signing
Algorithm sha256RSA
Thumbrint 400191475C98891DEBA104AF47091B5EB6D4CBCB
Serial number 09 C0 FC 46 C8 04 42 13 B5 59 8B AF 28 4F 4E 41
[+] DigiCert SHA2 Assured ID Timestamping CA
Status Valid
Issuer DigiCert Assured ID Root CA
Valid from 1:00 PM 1/7/2016
Valid to 1:00 PM 1/7/2031
Valid usage Timestamp Signing
Algorithm sha256RSA
Thumbrint 3BA63A6E4841355772DEBEF9CDCF4D5AF353A297
Serial number 0A A1 25 D6 D6 32 1B 7E 41 E4 05 DA 36 97 C2 15
[+] DigiCert
Status Valid
Issuer DigiCert Assured ID Root CA
Valid from 1:00 AM 11/10/2006
Valid to 1:00 AM 11/10/2031
Valid usage Server Auth, Client Auth, Email Protection, Code Signing, Timestamp Signing
Algorithm sha1RSA
Thumbrint 0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43
Serial number 0C E7 E0 E5 17 D8 46 FE 8F E5 60 FC 1B F0 30 39
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2018-06-01 14:15:23
Entry Point 0x00006BA7
Number of sections 4
PE sections
Overlays
MD5 fe5af25b457170a3592e5c3f267f4799
File type data
Offset 9826304
Size 7704
Entropy 7.18
PE imports
RegDeleteKeyA
RegOpenKeyA
RegCloseKey
RegQueryValueExA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyA
RegEnumKeyExA
GetObjectA
RoundRect
DeleteDC
SetBkMode
BitBlt
GetStockObject
CreateFontIndirectA
SetTextColor
SelectObject
CreateCompatibleDC
DeleteObject
Rectangle
GetLastError
ExitProcess
HeapFree
GetStdHandle
EnterCriticalSection
LCMapStringW
ReleaseMutex
SetHandleCount
WaitForSingleObject
GetExitCodeProcess
LCMapStringA
CopyFileA
GetTickCount
TlsAlloc
GetVersionExA
GetEnvironmentStringsW
FlushFileBuffers
RemoveDirectoryA
RtlUnwind
LoadLibraryA
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
CreateThread
GetEnvironmentStrings
GetWindowsDirectoryA
SetThreadPriority
LockResource
CreateDirectoryA
DeleteFileA
GetCurrentDirectoryA
UnhandledExceptionFilter
InterlockedDecrement
MultiByteToWideChar
FreeEnvironmentStringsW
GetCPInfo
GetModuleFileNameA
GetProcAddress
GetCurrentThread
GetStartupInfoA
SetStdHandle
CreateMutexA
GetModuleHandleA
GetOEMCP
WideCharToMultiByte
GetStringTypeA
SetFilePointer
FindFirstFileA
WriteFile
InterlockedIncrement
CloseHandle
GetCommandLineA
FindNextFileA
GetACP
HeapReAlloc
GetStringTypeW
GetVersion
FreeResource
HeapDestroy
SetFileAttributesA
FreeLibrary
TerminateProcess
SizeofResource
CreateProcessA
InitializeCriticalSection
LoadResource
VirtualFree
GetEnvironmentVariableA
FindClose
TlsGetValue
Sleep
GetFileType
TlsSetValue
CreateFileA
HeapAlloc
GetCurrentThreadId
FindResourceA
VirtualAlloc
HeapCreate
SetLastError
LeaveCriticalSection
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailA
ShellExecuteA
SetFocus
GetMessageA
UpdateWindow
BeginPaint
EnumWindows
KillTimer
PostQuitMessage
DefWindowProcA
ShowWindow
LoadBitmapA
SetWindowPos
GetSystemMetrics
DispatchMessageA
EndPaint
PostMessageA
MessageBoxA
TranslateMessage
GetDC
DrawTextA
SystemParametersInfoA
SetTimer
RegisterClassA
CreateWindowExA
LoadCursorA
LoadIconA
ReleaseDC
GetWindowTextA
SetCursor
CoUninitialize
CoInitialize
CoCreateInstance
CoFreeLibrary
Number of PE resources by type
RT_ICON 2
RT_RCDATA 1
RT_MANIFEST 1
RT_BITMAP 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 7
PE resources
ExifTool file metadata
SubsystemVersion
4.0

Comments
VB-AUDIO Voicemeeter Installer.

InitializedDataSize
9789440

ImageVersion
0.0

ProductName
VoicemeeterSetup

FileVersionNumber
1.0.6.1

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x003f

ImageFileCharacteristics
No relocs, Executable, No line numbers, No symbols, 32-bit

CharacterSet
Unicode

LinkerVersion
6.0

FileTypeExtension
exe

OriginalFileName
VoicemeeterSetup.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
1, 0, 6, 1

TimeStamp
2018:06:01 15:15:23+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
VoicemeeterSetup

ProductVersion
1, 0, 6, 1

FileDescription
VB-AUDIO Voicemeeter Installer

OSVersion
4.0

FileOS
Unknown (0)

LegalCopyright
V.Burel 2013-2018

MachineType
Intel 386 or later, and compatibles

CompanyName
VB-AUDIO Software

CodeSize
53248

FileSubtype
0

ProductVersionNumber
1.0.6.1

EntryPoint
0x6ba7

ObjectFileType
Executable application

Execution parents
File identification
MD5 d0656947124d065f85ba1031abf738b5
SHA1 fb5ac69f386aaeb6800914b82779f3e93a289b95
SHA256 6cc0a67dc565cb1befe62bca7b88b1ab936f7a1fe80a82077f5d6879adfcabe6
ssdeep
196608:ZgVTJDeybm2WprAWVbAQbniIv+5bs0BjDhcSR7s0DSOKTOeBkIxmQ2puW15qD03u:Z4lDeyK2uDRdiIWZbFcYw0uOKTPB/00L

authentihash 6b2b15018eb29d645f9cb957aff650ca01a18a7aa55c2da481957d24919b4bc4
imphash 21db448125ba60cc133af5d37583f18a
File size 9.4 MB ( 9834008 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (64.5%)
Win32 Dynamic Link Library (generic) (13.6%)
Win32 Executable (generic) (9.3%)
OS/2 Executable (generic) (4.1%)
Generic Win/DOS Executable (4.1%)
Tags
peexe signed overlay

VirusTotal metadata
First submission 2018-06-20 06:05:54 UTC ( 5 months, 3 weeks ago )
Last submission 2018-11-25 20:26:37 UTC ( 2 weeks, 3 days ago )
File names VoicemeeterSetup.exe
VoicemeeterSetup.exe
VoicemeeterSetup.exe
VoicemeeterSetup.exe
VoicemeeterSetup.exe
VoicemeeterSetup
VoicemeeterSetup.exe
VoicemeeterSetup.exe
VoicemeeterSetup.exe
VoicemeeterSetup.exe
VoicemeeterSetup.exe
VoicemeeterSetup.exe
VoicemeeterSetup.exe
VoicemeeterSetup.exe
VoicemeeterSetup (1).exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Created mutexes
Runtime DLLs