× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 70eff8e1c0d1f89f92ec1d174d71bc05ba67d7312db527d798ee4b3ee8e174c2
File name: AionRainMeter.exe
Detection ratio: 1 / 42
Analysis date: 2012-07-17 20:08:39 UTC ( 6 years ago )
Antivirus Result Update
AntiVir TR/Crypt.XPACK.Gen 20120717
AhnLab-V3 20120717
Antiy-AVL 20120717
Avast 20120717
AVG 20120717
BitDefender 20120717
ByteHero 20120716
CAT-QuickHeal 20120717
ClamAV 20120717
Commtouch 20120717
Comodo 20120717
DrWeb 20120717
Emsisoft 20120717
eSafe 20120717
ESET-NOD32 20120717
F-Prot 20120717
F-Secure 20120717
Fortinet 20120717
GData 20120717
Ikarus 20120717
Jiangmin 20120717
K7AntiVirus 20120717
Kaspersky 20120717
McAfee 20120717
McAfee-GW-Edition 20120717
Microsoft 20120717
Norman 20120717
nProtect 20120717
Panda 20120717
PCTools 20120717
Rising 20120717
Sophos AV 20120717
SUPERAntiSpyware 20120717
Symantec 20120717
TheHacker 20120717
TotalDefense 20120717
TrendMicro 20120717
TrendMicro-HouseCall 20120717
VBA32 20120717
VIPRE 20120717
ViRobot 20120717
VirusBuster 20120717
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
File version 1.2.0.8215
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2012-07-16 23:55:57
Entry Point 0x006F2480
Number of sections 3
PE sections
PE imports
GetModuleHandleA, GetProcAddress
RegCloseKey
ImageList_Add
GetSaveFileNameW
AlphaBlend
IsEqualGUID
LresultFromObject
SysFreeString
ShellExecuteW
CharNextW
VerQueryValueW
sndPlaySoundW
OpenPrinterW
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
2.25

ImageVersion
0.0

FileVersionNumber
1.2.0.8215

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Windows, Latin1

InitializedDataSize
3394048

MIMEType
application/octet-stream

FileVersion
1.2.0.8215

TimeStamp
2012:07:17 01:55:57+02:00

FileType
Win32 EXE

PEType
PE32

SubsystemVersion
5.0

OSVersion
5.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CodeSize
3676672

FileSubtype
0

ProductVersionNumber
1.0.0.0

EntryPoint
0x6f2480

ObjectFileType
Executable application

File identification
MD5 a260ea11e99725d1952cc0f0ea6241f3
SHA1 af3635cf823f5feec92282b0daed5ba9e7c25e36
SHA256 70eff8e1c0d1f89f92ec1d174d71bc05ba67d7312db527d798ee4b3ee8e174c2
ssdeep
49152:KBcUB+v7lzUWZPt1TKdPcq1mf4ZWKLJJVKbOuv6EHe7Bh7Hq21Or4kA9+oORmSV9:4B6yWpt1dq6KWBCEHkTe2QH1ERg

File size 3.4 MB ( 3546624 bytes )
File type Win32 EXE
Magic literal

TrID Generic Win/DOS Executable (49.9%)
DOS Executable Generic (49.8%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
Tags
peexe

VirusTotal metadata
First submission 2012-07-17 20:08:39 UTC ( 6 years ago )
Last submission 2012-07-17 20:08:39 UTC ( 6 years ago )
File names AionRainMeter.exe
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!