× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 760893f13bfd177fc57aa70c450c938a7a188cacea5e511bbd5933443c420e35
File name: MCP-1-0-0-1.exe
Detection ratio: 0 / 43
Analysis date: 2012-09-22 13:34:05 UTC ( 6 years, 4 months ago )
Antivirus Result Update
Yandex 20120921
AhnLab-V3 20120922
AntiVir 20120922
Antiy-AVL 20120911
Avast 20120921
AVG 20120922
BitDefender 20120922
ByteHero 20120920
CAT-QuickHeal 20120922
ClamAV 20120922
Commtouch 20120921
Comodo 20120922
DrWeb 20120922
Emsisoft 20120919
eSafe 20120920
ESET-NOD32 20120922
F-Prot 20120921
F-Secure 20120922
Fortinet 20120922
GData 20120922
Ikarus 20120922
Jiangmin 20120922
K7AntiVirus 20120921
Kaspersky 20120922
Kingsoft 20120918
McAfee 20120922
McAfee-GW-Edition 20120922
Microsoft 20120922
Norman 20120922
nProtect 20120921
Panda 20120922
PCTools 20120922
Rising 20120921
Sophos AV 20120922
SUPERAntiSpyware 20120911
Symantec 20120922
TheHacker 20120920
TotalDefense 20120921
TrendMicro 20120922
TrendMicro-HouseCall 20120922
VBA32 20120921
VIPRE 20120922
ViRobot 20120922
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (c) 2012 PantherMan594

Publisher PantherMan594
Product MCPortable
Original name MCPortable.exe
Internal name MCP.exe
File version 1.0.0.1
Description MCPortable Installer
Packers identified
F-PROT 7Z
PEiD Armadillo v1.71
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2010-11-18 16:27:33
Entry Point 0x0001D262
Number of sections 5
PE sections
PE imports
AreFileApisANSI
GetLastError
GetStdHandle
EnterCriticalSection
FileTimeToSystemTime
lstrlenA
RemoveDirectoryW
WaitForSingleObject
SetEvent
GetCommandLineW
GetTickCount
SetFileTime
SetFileAttributesW
GetVersionExA
RemoveDirectoryA
DeleteFileA
GetModuleFileNameA
DeleteCriticalSection
GetStartupInfoA
SetFileAttributesA
FileTimeToLocalFileTime
GetCurrentDirectoryW
GetFileSize
lstrcatA
CreateDirectoryA
GetModuleHandleW
GetCurrentDirectoryA
FormatMessageW
MultiByteToWideChar
CreateDirectoryW
DeleteFileW
WaitForMultipleObjects
FormatMessageA
GetFullPathNameA
SetFilePointer
GetFullPathNameW
CloseHandle
WideCharToMultiByte
GetModuleFileNameW
GetModuleHandleA
ReadFile
WriteFile
GetCurrentProcess
FindFirstFileA
ResetEvent
FindFirstFileW
GetProcAddress
SetPriorityClass
LocalFree
MoveFileA
InitializeCriticalSection
CreateFileW
VirtualFree
CreateEventA
FindClose
Sleep
MoveFileW
SetEndOfFile
CreateFileA
VirtualAlloc
SetLastError
LeaveCriticalSection
_purecall
__p__fmode
malloc
__CxxFrameHandler
??1type_info@@UAE@XZ
memset
__dllonexit
_except_handler3
_onexit
wcslen
exit
_XcptFilter
memcmp
__setusermatherr
_controlfp
_adjust_fdiv
_acmdln
_CxxThrowException
__p__commode
free
__getmainargs
memcpy
memmove
_beginthreadex
_initterm
_exit
__set_app_type
Ord(6)
Ord(2)
Ord(9)
SHGetFileInfoA
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetMalloc
MapDialogRect
EndDialog
CharUpperW
KillTimer
ShowWindow
MessageBoxW
GetWindowRect
SetDlgItemTextA
PostMessageA
MoveWindow
DialogBoxParamW
SetWindowLongA
DialogBoxParamA
CharUpperA
LoadStringA
SystemParametersInfoA
SetWindowTextA
SendMessageW
GetWindowLongA
SendMessageA
LoadStringW
SetWindowTextW
GetDlgItem
ScreenToClient
InvalidateRect
wsprintfA
GetWindowTextLengthA
SetTimer
LoadCursorA
LoadIconA
IsDlgButtonChecked
GetWindowTextW
GetWindowTextLengthW
GetWindowTextA
SetCursor
CoUninitialize
CoInitialize
Number of PE resources by type
RT_ICON 15
RT_STRING 9
RT_DIALOG 4
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 30
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
6.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.0.0.1

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
629248

FileOS
Windows NT 32-bit

MIMEType
application/octet-stream

LegalCopyright
Copyright (c) 2012 PantherMan594

FileVersion
1.0.0.1

TimeStamp
2010:11:18 17:27:33+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
MCP.exe

ProductVersion
1.0.0.1

FileDescription
MCPortable Installer

OSVersion
4.0

OriginalFilename
MCPortable.exe

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
PantherMan594

CodeSize
127488

ProductName
MCPortable

ProductVersionNumber
1.0.0.1

EntryPoint
0x1d262

ObjectFileType
Executable application

File identification
MD5 ee68fff40449c46be5880f680fbd48e6
SHA1 5cec9da6892fa73411c4e76eaeaf9681b482296a
SHA256 760893f13bfd177fc57aa70c450c938a7a188cacea5e511bbd5933443c420e35
ssdeep
393216:uGkX8euWaY1FFfHRMgREaqdcml1KF1Z6tjWgDGK/CpBXLIHnVSoONp5oWBH:rY1FNRlaVcMKFK7aK/mLIHEvx

File size 20.9 MB ( 21967258 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable Generic (68.0%)
Generic Win/DOS Executable (15.9%)
DOS Executable Generic (15.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
Tags
peexe armadillo

VirusTotal metadata
First submission 2012-09-20 21:07:36 UTC ( 6 years, 4 months ago )
Last submission 2012-09-22 13:34:05 UTC ( 6 years, 4 months ago )
File names MCP.exe
MCP-1-0-0-1.exe
MCPortable.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!