× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 759b72c032efd7fc312c65373eba63863e5309ad376b344a04487428cda536fe
File name: GMSQuickMenu.exe
Detection ratio: 0 / 68
Analysis date: 2018-07-11 13:01:27 UTC ( 5 months, 1 week ago ) View latest
Antivirus Result Update
Ad-Aware 20180711
AegisLab 20180711
AhnLab-V3 20180711
ALYac 20180711
Antiy-AVL 20180711
Arcabit 20180711
Avast 20180711
Avast-Mobile 20180711
AVG 20180711
Avira (no cloud) 20180710
AVware 20180711
Babable 20180406
Baidu 20180711
BitDefender 20180711
Bkav 20180711
CAT-QuickHeal 20180711
ClamAV 20180711
CMC 20180711
Comodo 20180711
CrowdStrike Falcon (ML) 20180530
Cybereason 20180225
Cylance 20180711
Cyren 20180711
DrWeb 20180711
eGambit 20180711
Emsisoft 20180711
Endgame 20180711
ESET-NOD32 20180711
F-Prot 20180711
F-Secure 20180711
Fortinet 20180711
GData 20180711
Ikarus 20180711
Sophos ML 20180601
Jiangmin 20180711
K7AntiVirus 20180711
K7GW 20180711
Kaspersky 20180711
Kingsoft 20180711
Malwarebytes 20180711
MAX 20180711
McAfee 20180711
McAfee-GW-Edition 20180711
Microsoft 20180711
eScan 20180711
NANO-Antivirus 20180711
Palo Alto Networks (Known Signatures) 20180711
Panda 20180711
Qihoo-360 20180711
Rising 20180711
SentinelOne (Static ML) 20180701
Sophos AV 20180711
SUPERAntiSpyware 20180711
Symantec 20180711
TACHYON 20180711
Tencent 20180711
TheHacker 20180710
TotalDefense 20180711
TrendMicro 20180711
TrendMicro-HouseCall 20180711
Trustlook 20180711
VBA32 20180711
VIPRE 20180711
ViRobot 20180711
Webroot 20180711
Yandex 20180711
Zillya 20180710
ZoneAlarm by Check Point 20180711
Zoner 20180711
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright

Product GiMeSpace QuickMenu
File version 2.0.2.16
Description GiMeSpace QuickMenu Setup
Comments This installation was built with Inno Setup.
Packers identified
F-PROT INNO, UPX
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2006-11-01 20:28:01
Entry Point 0x00001EB7
Number of sections 4
PE sections
Overlays
MD5 c0ecb44e0737052ccd774bbefee99cbf
File type data
Offset 45056
Size 1643760
Entropy 7.99
PE imports
RegSetValueExA
RegCloseKey
RegCreateKeyExA
GetSystemTime
GetLastError
HeapFree
GetStdHandle
LCMapStringW
SetHandleCount
lstrlenA
WaitForSingleObject
GetOEMCP
LCMapStringA
HeapDestroy
ExitProcess
GetEnvironmentStringsW
FlushFileBuffers
GetModuleFileNameA
RtlUnwind
LoadLibraryA
FreeEnvironmentStringsA
GetStartupInfoA
GetEnvironmentStrings
GetFileSize
DeleteFileA
GetCPInfo
UnhandledExceptionFilter
MultiByteToWideChar
FreeEnvironmentStringsW
GetCommandLineA
GetProcAddress
SetStdHandle
GetModuleHandleA
GetTempPathA
WideCharToMultiByte
GetStringTypeA
SetFilePointer
ReadFile
WriteFile
GetCurrentProcess
CloseHandle
GetTempFileNameA
GetACP
HeapReAlloc
GetStringTypeW
TerminateProcess
CreateProcessA
HeapCreate
VirtualFree
GetFileType
CreateFileA
HeapAlloc
GetVersion
VirtualAlloc
SendMessageA
DestroyWindow
GetDlgItem
CreateDialogParamA
UpdateWindow
Number of PE resources by type
RT_ICON 5
RT_GROUP_ICON 2
RT_DIALOG 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 5
DUTCH 4
PE resources
ExifTool file metadata
UninitializedDataSize
0

Comments
This installation was built with Inno Setup.

LinkerVersion
6.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
2.0.2.16

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
24576

EntryPoint
0x1eb7

MIMEType
application/octet-stream

FileVersion
2.0.2.16

TimeStamp
2006:11:01 21:28:01+01:00

FileType
Win32 EXE

PEType
PE32

SubsystemVersion
4.0

ProductVersion
2.0.2.16

FileDescription
GiMeSpace QuickMenu Setup

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
GiMeSpace

CodeSize
20480

ProductName
GiMeSpace QuickMenu

ProductVersionNumber
2.0.2.16

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 def021eaf8dfbd5603307c41c8202e9b
SHA1 3e163c22e8f2d5f8aaae127f4b3fe4aa162a9f3f
SHA256 759b72c032efd7fc312c65373eba63863e5309ad376b344a04487428cda536fe
ssdeep
49152:V755AO2Fj4gRVL7Nfqr1rTLYPLG4j+sm8Y3:t58kO21XL8LjSX3

authentihash 391fa8527b1afb551573a932870a7882a3cdcca14404c328c23fbf87c98297a8
imphash ee31e1326561c4abbd0816f5b638e7ca
File size 1.6 MB ( 1688816 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable (generic) (52.9%)
Generic Win/DOS Executable (23.5%)
DOS Executable Generic (23.5%)
Tags
peexe upx overlay

VirusTotal metadata
First submission 2018-05-06 12:58:07 UTC ( 7 months, 2 weeks ago )
Last submission 2018-07-07 13:29:17 UTC ( 5 months, 2 weeks ago )
File names GMSQuickMenu.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Deleted files
Created processes
Created mutexes
Runtime DLLs