× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 71a997f4475d95d6f05f62bc28681f98aee41a0897525af0783629a462d3c482
File name: hardinfo-9035.exe
Detection ratio: 0 / 69
Analysis date: 2019-02-09 17:15:23 UTC ( 1 month, 1 week ago ) View latest
Antivirus Result Update
Acronis 20190208
Ad-Aware 20190209
AegisLab 20190209
AhnLab-V3 20190209
Alibaba 20180921
ALYac 20190209
Antiy-AVL 20190209
Arcabit 20190208
Avast 20190209
Avast-Mobile 20190209
AVG 20190209
Avira (no cloud) 20190209
Babable 20180918
Baidu 20190202
BitDefender 20190209
Bkav 20190201
CAT-QuickHeal 20190209
ClamAV 20190209
CMC 20190209
Comodo 20190209
CrowdStrike Falcon (ML) 20181023
Cybereason 20190109
Cylance 20190209
Cyren 20190209
DrWeb 20190209
Emsisoft 20190209
Endgame 20181108
ESET-NOD32 20190209
F-Prot 20190209
F-Secure 20190209
Fortinet 20190209
GData 20190209
Ikarus 20190209
Sophos ML 20181128
Jiangmin 20190209
K7AntiVirus 20190209
K7GW 20190209
Kaspersky 20190209
Kingsoft 20190209
Malwarebytes 20190209
MAX 20190209
McAfee 20190209
McAfee-GW-Edition 20190209
Microsoft 20190209
eScan 20190209
NANO-Antivirus 20190209
Palo Alto Networks (Known Signatures) 20190209
Panda 20190209
Qihoo-360 20190209
Rising 20190209
SentinelOne (Static ML) 20190203
Sophos AV 20190209
SUPERAntiSpyware 20190206
Symantec 20190209
Symantec Mobile Insight 20190207
TACHYON 20190209
Tencent 20190209
TheHacker 20190203
TotalDefense 20190206
Trapmine 20190123
TrendMicro 20190209
TrendMicro-HouseCall 20190209
Trustlook 20190209
VBA32 20190208
ViRobot 20190209
Webroot 20190209
Yandex 20190208
Zillya 20190208
ZoneAlarm by Check Point 20190209
Zoner 20190209
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Authenticode signature block and FileVersionInfo properties
Copyright
All rights reserved

Product HARDiNFO 8 FREE
File version 8.0
Description HARDiNFO FREE Installation
Comments This installation was built with InstallAware: http://www.installaware.com
Signature verification Signed file, verified signature
Signing date 10:40 PM 1/30/2017
Signers
[+] Ultimate Systems
Status This certificate or one of the certificates in the certificate chain is not time valid.
Issuer COMODO RSA Code Signing CA
Valid from 12:00 AM 02/11/2016
Valid to 11:59 PM 02/10/2017
Valid usage Code Signing
Algorithm sha256RSA
Thumbprint 6B95170FF5F436B4AB83F950C4848109B7CB3AC9
Serial number 00 A2 1E 43 E1 70 26 9A FF ED 69 2C 1D AB 63 8E CE
[+] COMODO RSA Code Signing CA
Status Valid
Issuer COMODO RSA Certification Authority
Valid from 11:00 PM 05/08/2013
Valid to 10:59 PM 05/08/2028
Valid usage Code Signing
Algorithm sha384RSA
Thumbprint B69E752BBE88B4458200A7C0F4F5B3CCE6F35B47
Serial number 2E 7C 87 CC 0E 93 4A 52 FE 94 FD 1C B7 CD 34 AF
[+] COMODO SECURE™
Status Valid
Issuer COMODO RSA Certification Authority
Valid from 12:00 AM 01/19/2010
Valid to 11:59 PM 01/18/2038
Valid usage Server Auth, Client Auth, Email Protection, Code Signing, Timestamp Signing, EFS, IPSEC Tunnel, IPSEC User
Algorithm sha384RSA
Thumbprint AFE5D244A8D1194230FF479FE2F897BBCD7A8CB4
Serial number 4C AA F9 CA DB 63 6F E0 1F F7 4E D8 5B 03 86 9D
Counter signers
[+] COMODO SHA-1 Time Stamping Signer
Status Valid
Issuer UTN-USERFirst-Object
Valid from 12:00 AM 12/31/2015
Valid to 05:40 PM 07/09/2019
Valid usage Timestamp Signing
Algorithm sha1RSA
Thumbrint 03A5B14663EB12023091B84A6D6A68BC871DE66B
Serial number 16 88 F0 39 25 5E 63 8E 69 14 39 07 E6 33 0B
[+] USERTrust (Code Signing)
Status Valid
Issuer UTN-USERFirst-Object
Valid from 05:31 PM 07/09/1999
Valid to 05:40 PM 07/09/2019
Valid usage EFS, Timestamp Signing, Code Signing
Algorithm sha1RSA
Thumbrint E12DFB4B41D7D9C32B30514BAC1D81D8385E2D46
Serial number 44 BE 0C 8B 50 00 24 B4 11 D3 36 2D E0 B3 5F 1B
Packers identified
F-PROT 7Z
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2013-11-04 03:38:59
Entry Point 0x000181DD
Number of sections 4
PE sections
Overlays
MD5 e108d872a0eca922dfbca7050beceb41
File type data
Offset 289792
Size 30939928
Entropy 8.00
PE imports
RegCreateKeyExW
RegCloseKey
RegSetValueExW
GetStdHandle
GetConsoleOutputCP
WaitForSingleObject
GetExitCodeProcess
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
GetLocaleInfoA
LocalAlloc
FreeEnvironmentStringsW
SetStdHandle
WideCharToMultiByte
GetStringTypeA
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
GetOEMCP
LocalFree
FormatMessageW
InitializeCriticalSection
FindClose
TlsGetValue
SetFileAttributesW
SetLastError
GetModuleFileNameW
IsDebuggerPresent
HeapAlloc
GetModuleFileNameA
UnhandledExceptionFilter
InterlockedDecrement
MultiByteToWideChar
GetFullPathNameW
CreateThread
SetUnhandledExceptionFilter
ExitThread
TerminateProcess
WriteConsoleA
SetCurrentDirectoryW
SetEndOfFile
GetVersion
InterlockedIncrement
WriteConsoleW
InitializeCriticalSectionAndSpinCount
HeapFree
EnterCriticalSection
SetHandleCount
GetVersionExW
SetEvent
QueryPerformanceCounter
GetTickCount
TlsAlloc
FlushFileBuffers
LoadLibraryA
RtlUnwind
GetStartupInfoA
GetWindowsDirectoryW
GetFileSize
GetModuleHandleW
CreateDirectoryW
DeleteFileW
WaitForMultipleObjects
GetTempFileNameW
RemoveDirectoryW
FindNextFileW
ResetEvent
FindFirstFileW
GetProcAddress
CreateEventW
CreateFileW
GetFileType
TlsSetValue
CreateFileA
ExitProcess
LeaveCriticalSection
GetLastError
LCMapStringW
GetShortPathNameW
GetConsoleCP
LCMapStringA
GetEnvironmentStringsW
lstrlenW
VirtualFree
GetEnvironmentStrings
GetCurrentDirectoryW
GetCurrentProcessId
SetFileTime
GetCommandLineW
GetCPInfo
HeapSize
GetCommandLineA
RaiseException
TlsFree
SetFilePointer
ReadFile
CloseHandle
GetACP
GetCurrentThreadId
IsValidCodePage
HeapCreate
GetTempPathW
CreateProcessW
Sleep
VirtualAlloc
SysAllocString
SysFreeString
VariantClear
SysAllocStringLen
ShellExecuteExW
RegisterWindowMessageW
EndDialog
KillTimer
ShowWindow
SetWindowLongW
MessageBoxW
PeekMessageW
CharUpperW
DialogBoxParamW
PostMessageW
SetDlgItemTextW
SendMessageW
LoadStringW
SetWindowTextW
GetDlgItem
SetTimer
IsDlgButtonChecked
GetWindowTextW
GetDesktopWindow
LoadIconW
GetWindowTextLengthW
GetWindowLongW
SetForegroundWindow
DestroyWindow
CoCreateInstance
CoInitialize
Number of PE resources by type
RT_STRING 105
RT_ICON 7
RT_DIALOG 2
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 13
HEBREW DEFAULT 3
SWEDISH 3
HUNGARIAN DEFAULT 3
VIETNAMESE DEFAULT 3
ESTONIAN DEFAULT 3
LITHUANIAN 3
FRENCH 3
CHINESE SIMPLIFIED 3
SLOVENIAN DEFAULT 3
DUTCH 3
PORTUGUESE 3
ITALIAN 3
CATALAN DEFAULT 3
FINNISH DEFAULT 3
PORTUGUESE BRAZILIAN 3
KOREAN 3
CZECH DEFAULT 3
BASQUE DEFAULT 3
LATVIAN DEFAULT 3
GERMAN 3
POLISH DEFAULT 3
JAPANESE DEFAULT 3
DANISH DEFAULT 3
SLOVAK DEFAULT 3
GREEK DEFAULT 3
TURKISH DEFAULT 3
NORWEGIAN BOKMAL 3
CHINESE TRADITIONAL 3
THAI DEFAULT 3
SERBIAN DEFAULT 3
ARABIC SAUDI ARABIA 3
SPANISH MODERN 3
ROMANIAN 3
RUSSIAN 3
NEUTRAL 2
PE resources
ExifTool file metadata
UninitializedDataSize
0

Comments
This installation was built with InstallAware: http://www.installaware.com

InitializedDataSize
151552

ImageVersion
0.0

FileVersionNumber
8.0.0.0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

ImageFileCharacteristics
No relocs, Executable, 32-bit

CharacterSet
Windows, Latin1

LinkerVersion
9.0

EntryPoint
0x181dd

MIMEType
application/octet-stream

TimeStamp
2013:11:04 04:38:59+01:00

FileType
Win32 EXE

PEType
PE32

ProductVersion
8.00, 0, 0

SubsystemVersion
5.0

OSVersion
5.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CodeSize
137216

FileSubtype
0

ProductVersionNumber
0.0.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 18ca9414f2a985ad9c6f17f6a86ffb48
SHA1 d3e0db8c4c830e908d782a5399f3ec64b4cb8054
SHA256 71a997f4475d95d6f05f62bc28681f98aee41a0897525af0783629a462d3c482
ssdeep
786432:g2Lx4eoWnbrhu1nJzS9CrZXpvGNTMwlPUcM8Mtu9:g2Lx4TQr8JzSUdX21lPG

authentihash 37490107d56e302bdc0a1925480727315b8b395d4c7753f732f431662a4bd468
imphash d7ce6dd95e3ebd47f39cf25197cd96e8
File size 29.8 MB ( 31229720 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win64 Executable (generic) (72.3%)
Win32 Executable (generic) (11.8%)
OS/2 Executable (generic) (5.3%)
Generic Win/DOS Executable (5.2%)
DOS Executable Generic (5.2%)
Tags
peexe signed overlay

VirusTotal metadata
First submission 2017-01-30 23:16:14 UTC ( 2 years, 1 month ago )
Last submission 2018-11-07 02:15:21 UTC ( 4 months, 1 week ago )
File names hardinfo-9035.exe
HARDiNFO8_Free.exe
HARDiNFO8_Free.exe
hardinfo-9035.exe
HARDiNFO8_Free.exe
HARDiNFO8_Free.exe
HARDiNFO8_Free.exe
hardinfo8_free.exe
hardinfo-9035-jetelecharge.exe
1019497
HARDiNFO8_Free.exe
HARDiNFO8_Free.exe
71A997F4475D95D6F05F62BC28681F98AEE41A0897525AF0783629A462D3C482.exe
HARDiNFO8_Free.exe
HARDiNFO8_Free.exe
hardinfo-8-free-8-0-0-2350-0.exe
HARDiNFO8_Free.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!