× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 77f0af5d9cd845ae2b17d55ff46bf19160faf906af03ccdbffc40091424942fb
File name: acoustica.mixcraft.5.2.build.151-MPT.exe
Detection ratio: 12 / 42
Analysis date: 2011-05-23 12:59:31 UTC ( 2 years, 11 months ago ) View latest
Antivirus Result Update
AVG HackTool.LTE 20110523
CAT-QuickHeal (Suspicious) - DNAScan 20110522
ClamAV PUA.Packed.PECompact-1 20110523
Comodo UnclassifiedMalware 20110523
Fortinet HackerTool/Kiser 20110522
Ikarus HackTool.Win32.Kiser 20110523
Jiangmin TrojanDropper.Delf.gbf 20110522
NOD32 probably a variant of Win32/HackTool.Patcher.A 20110523
Norman W32/Suspicious_Gen.NHP.dropper 20110522
SUPERAntiSpyware Trojan.Agent/Gen-Faldesc 20110523
VIPRE Trojan.Win32.Generic!BT 20110523
eSafe Win32.HackerToolKise 20110522
AhnLab-V3 20110523
AntiVir 20110523
Antiy-AVL 20110523
Avast 20110523
Avast5 20110523
BitDefender 20110523
Commtouch 20110522
DrWeb 20110523
F-Prot 20110522
F-Secure 20110523
GData 20110523
K7AntiVirus 20110520
Kaspersky 20110523
McAfee 20110523
McAfee-GW-Edition 20110522
Microsoft 20110523
PCTools 20110519
Panda 20110522
Prevx 20110523
Rising 20110523
Sophos 20110523
Symantec 20110523
TheHacker 20110523
TrendMicro 20110523
TrendMicro-HouseCall 20110523
VBA32 20110523
ViRobot 20110523
VirusBuster 20110522
eTrust-Vet 20110523
nProtect 20110523
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Authenticode signature block
Copyright
© MPT

Publisher MPT34M
Product Activator
Original name Activator
Internal name MPT34M
File version 1.0
Description cr4cking th3 cod3 4 fun!
Packers identified
F-PROT PecBundle, PECompact
PEiD PECompact 2.xx --> BitSum Technologies
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2010-11-04 00:30:47
Link date 1:30 AM 11/4/2010
Entry Point 0x00003BC2
Number of sections 2
PE sections
PE imports
VirtualFree
LoadLibraryA
VirtualAlloc
GetProcAddress
Number of PE resources by type
RT_RCDATA 10
RT_STRING 4
RT_BITMAP 4
RT_DIALOG 3
RT_GROUP_ICON 2
RT_GROUP_CURSOR 1
RT_MANIFEST 1
RT_ICON 1
RT_CURSOR 1
RT_VERSION 1
Number of PE resources by language
NEUTRAL 27
ENGLISH UK 1
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
5.12

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.0.0.0

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x0000

CharacterSet
Windows, Latin1

InitializedDataSize
1467392

FileOS
Unknown (0)

MIMEType
application/octet-stream

LegalCopyright
MPT

FileVersion
1.0

TimeStamp
2010:11:04 01:30:47+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
MPT34M

FileAccessDate
2014:04:04 18:48:59+01:00

ProductVersion
1.0

FileDescription
cr4cking th3 cod3 4 fun!

OSVersion
4.0

FileCreateDate
2014:04:04 18:48:59+01:00

OriginalFilename
Activator

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
MPT34M

CodeSize
34304

ProductName
Activator

ProductVersionNumber
2.0.0.0

EntryPoint
0x3bc2

ObjectFileType
Unknown

Compressed bundles
File identification
MD5 43f8e3d334dece87342e05870dacd371
SHA1 a93eb3448683656d020eb0acfa23a47847c98e2b
SHA256 77f0af5d9cd845ae2b17d55ff46bf19160faf906af03ccdbffc40091424942fb
ssdeep
12288:M6da1zgu/tbaMlC+5LUMfJQsb2hPBnLAKJ/5AwiISFfgSpcNXwNIKKy2z:MDg4tI+5LUMffb2hxAJwaF4NXuvKn

imphash 09d0478591d4f788cb3e5ea416c25237
File size 689.0 KB ( 705536 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 EXE PECompact compressed (v2.x) (51.0%)
Win32 EXE PECompact compressed (generic) (35.9%)
Win32 Dynamic Link Library (generic) (5.6%)
Win32 Executable (generic) (3.8%)
Generic Win/DOS Executable (1.7%)
Tags
pecompact peexe

VirusTotal metadata
First submission 2011-02-06 09:09:13 UTC ( 3 years, 2 months ago )
Last submission 2014-04-04 17:48:03 UTC ( 2 weeks, 5 days ago )
File names 43f8e3d334dece87342e05870dacd371
file-1827632_exe
file-3215991_exe
1A493CB900DE959CC4BA0A4450D20900B6D0A042.exe
acoustica.mixcraft.5.2.build.151-MPT.exe
smona132405894596736581963
acoustica mixcraft. 6.build. patch.exe
MPT34M
Activator
a93eb3448683656d020eb0acfa23a47847c98e2b
acoustica.mixcraft.5.2.build.151-MPT(1).exe
Advanced heuristic and reputation engines
ClamAV PUA
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: http://www.clamav.net/index.php?s=pua&lang=en .

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!