× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 7aa04284c72adee4ef59a253a78a97750ba28f56c8d802f10eb02adf25f00ac8
File name: 7aa04284c72adee4ef59a253a78a97750ba28f56c8d802f10eb02adf25f00ac8
Detection ratio: 0 / 63
Analysis date: 2018-07-01 20:27:09 UTC ( 9 months, 3 weeks ago )
Antivirus Result Update
Ad-Aware 20180701
AegisLab 20180701
AhnLab-V3 20180701
ALYac 20180701
Antiy-AVL 20180701
Arcabit 20180701
Avast 20180701
Avast-Mobile 20180701
AVG 20180701
Avira (no cloud) 20180701
AVware 20180701
Babable 20180406
Baidu 20180628
BitDefender 20180701
Bkav 20180630
CAT-QuickHeal 20180701
ClamAV 20180701
CMC 20180701
Comodo 20180701
CrowdStrike Falcon (ML) 20180530
Cybereason 20180225
Cyren 20180701
DrWeb 20180701
eGambit 20180701
Emsisoft 20180701
Endgame 20180612
ESET-NOD32 20180701
F-Prot 20180701
F-Secure 20180701
Fortinet 20180701
GData 20180701
Ikarus 20180701
Sophos ML 20180601
Jiangmin 20180701
K7AntiVirus 20180701
K7GW 20180701
Kaspersky 20180701
Kingsoft 20180701
MAX 20180701
McAfee 20180701
McAfee-GW-Edition 20180701
Microsoft 20180701
eScan 20180701
NANO-Antivirus 20180701
Palo Alto Networks (Known Signatures) 20180701
Panda 20180701
Qihoo-360 20180701
SentinelOne (Static ML) 20180701
Sophos AV 20180701
SUPERAntiSpyware 20180701
Symantec 20180701
TACHYON 20180701
Tencent 20180701
TheHacker 20180628
TotalDefense 20180701
Trustlook 20180701
VBA32 20180629
VIPRE 20180701
ViRobot 20180701
Webroot 20180701
Yandex 20180629
Zillya 20180629
ZoneAlarm by Check Point 20180701
Zoner 20180701
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Authenticode signature block and FileVersionInfo properties
Copyright
(c) 2016 CodeTwo. All rights reserved.

Product CodeTwo NetCalendars
Internal name CodeTwo NetCalendars
File version 2.1.2.17
Signature verification Signed file, verified signature
Signers
[+] CodeTwo sp. z o.o. sp. k.
Status Valid
Issuer Symantec Class 3 SHA256 Code Signing CA
Valid from 1:00 AM 2/2/2016
Valid to 12:59 AM 2/2/2019
Valid usage Code Signing
Algorithm sha256RSA
Thumbprint 93C6D3D2722434F5D04DDE12F6ABF7F014B79B5C
Serial number 36 54 28 0D B4 05 39 2A 38 3A 02 11 51 22 5F C1
[+] Symantec Class 3 SHA256 Code Signing CA
Status Valid
Issuer VeriSign Class 3 Public Primary Certification Authority - G5
Valid from 1:00 AM 12/10/2013
Valid to 12:59 AM 12/10/2023
Valid usage Client Auth, Code Signing
Algorithm sha256RSA
Thumbprint 007790F6561DAD89B0BCD85585762495E358F8A5
Serial number 3D 78 D7 F9 76 49 60 B2 61 7D F4 F0 1E CA 86 2A
[+] VeriSign
Status Valid
Issuer VeriSign Class 3 Public Primary Certification Authority - G5
Valid from 1:00 AM 11/8/2006
Valid to 12:59 AM 7/17/2036
Valid usage Server Auth, Client Auth, Email Protection, Code Signing
Algorithm sha1RSA
Thumbprint 4EB6D578499B1CCF5F581EAD56BE3D9B6744A5E5
Serial number 18 DA D1 9E 26 7D E8 BB 4A 21 58 CD CC 6B 3B 4A
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-05-10 07:15:48
Entry Point 0x0012BB43
Number of sections 5
PE sections
Overlays
MD5 d71b85aedeb9177105a49ced375dc096
File type data
Offset 9108480
Size 3416
Entropy 7.31
PE imports
RegDeleteKeyA
RegCloseKey
RegQueryValueA
RegQueryValueExA
RegSetValueExA
RegEnumValueA
RegCreateKeyExA
RegOpenKeyExA
RegEnumKeyA
RegDeleteValueA
RegEnumKeyExA
SetMapMode
GetWindowOrgEx
GetTextMetricsA
CombineRgn
GetViewportOrgEx
GetObjectType
GetBoundsRect
SetLayout
SetPixel
DeleteObject
IntersectClipRect
OffsetWindowOrgEx
CreateEllipticRgn
CreatePalette
CreateDIBitmap
GetDIBits
SetTextAlign
StretchBlt
GetTextFaceA
ScaleViewportExtEx
GetPaletteEntries
SetWindowExtEx
SetBkColor
GetBkColor
SetRectRgn
GetTextCharsetInfo
GetSystemPaletteEntries
OffsetRgn
TextOutA
CreateFontIndirectA
CreateRectRgnIndirect
LPtoDP
GetPixel
GetLayout
ExcludeClipRect
OffsetViewportOrgEx
SetBkMode
PtInRegion
BitBlt
EnumFontFamiliesA
GetDeviceCaps
FillRgn
FrameRgn
SelectPalette
PtVisible
ExtSelectClipRgn
ScaleWindowExtEx
SetROP2
GetNearestPaletteIndex
SetDIBColorTable
GetTextColor
SetPixelV
SetViewportExtEx
CreateCompatibleDC
GetWindowExtEx
PatBlt
CreatePen
GetClipBox
Rectangle
GetObjectA
CreateDCA
LineTo
DeleteDC
RealizePalette
CreateHatchBrush
CreatePatternBrush
SetPaletteEntries
CreateBitmap
RectVisible
GetStockObject
ExtTextOutA
SelectClipRgn
RoundRect
GetTextExtentPoint32A
SetWindowOrgEx
GetViewportExtEx
CreatePolygonRgn
Polygon
GetRgnBox
SaveDC
RestoreDC
CreateDIBSection
SetTextColor
ExtFloodFill
MoveToEx
SetViewportOrgEx
CreateRoundRectRgn
EnumFontFamiliesExA
CreateRectRgn
Escape
SelectObject
SetPolyFillMode
CreateCompatibleBitmap
CreateSolidBrush
Polyline
DPtoLP
CopyMetaFileA
Ellipse
ImmReleaseContext
ImmGetOpenStatus
ImmGetContext
GetStdHandle
VerifyVersionInfoA
FileTimeToSystemTime
GetFileAttributesA
WaitForSingleObject
SetEndOfFile
HeapDestroy
EncodePointer
lstrcmpW
DeleteCriticalSection
GetCurrentProcess
GetCurrentDirectoryA
GetConsoleMode
LocalAlloc
lstrcatA
SetErrorMode
FreeEnvironmentStringsW
GetLocaleInfoW
SetStdHandle
GetFileTime
GetTempPathA
WideCharToMultiByte
LoadLibraryW
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
GetFullPathNameA
GetOEMCP
LocalFree
ResumeThread
InitializeCriticalSection
OutputDebugStringW
GlobalHandle
FindClose
InterlockedDecrement
GetProfileIntA
OutputDebugStringA
SetLastError
GetUserDefaultUILanguage
TlsGetValue
LoadResource
GetModuleFileNameW
IsDebuggerPresent
HeapAlloc
FlushFileBuffers
GetModuleFileNameA
VerSetConditionMask
GetVolumeInformationA
GetPrivateProfileStringA
SetThreadPriority
UnhandledExceptionFilter
LoadLibraryExW
MultiByteToWideChar
SetFilePointerEx
FormatMessageA
SetFilePointer
CreateThread
GetSystemDirectoryW
GetSystemDefaultUILanguage
GlobalAddAtomA
SetUnhandledExceptionFilter
MulDiv
IsProcessorFeaturePresent
ExitThread
DecodePointer
SetEnvironmentVariableA
TerminateProcess
GetModuleHandleExW
VirtualQuery
SearchPathA
ReadConsoleW
GetCurrentThreadId
InterlockedIncrement
WriteConsoleW
InitializeCriticalSectionAndSpinCount
HeapFree
EnterCriticalSection
lstrcmpiA
FreeLibrary
QueryPerformanceCounter
GetTickCount
TlsAlloc
VirtualProtect
GetVersionExA
LoadLibraryA
RtlUnwind
GlobalSize
UnlockFile
GetFileSize
GlobalDeleteAtom
GetPrivateProfileIntA
CreateDirectoryA
DeleteFileA
GetWindowsDirectoryA
GetStartupInfoW
GetProcAddress
GetProcessHeap
CompareStringW
GetFileSizeEx
GlobalReAlloc
lstrcmpA
FindFirstFileA
lstrcpyA
CompareStringA
GetTempFileNameA
DuplicateHandle
GlobalLock
GetTimeZoneInformation
CreateFileW
GlobalFindAtomA
GetFileType
TlsSetValue
CreateFileA
ExitProcess
LeaveCriticalSection
GetLastError
LocalReAlloc
LCMapStringW
GetSystemInfo
lstrlenA
GlobalFree
GetConsoleCP
FindResourceW
GlobalGetAtomNameA
GetEnvironmentStringsW
GlobalUnlock
GlobalAlloc
lstrlenW
WinExec
LockFile
FileTimeToLocalFileTime
SizeofResource
WritePrivateProfileStringA
GetCurrentProcessId
LockResource
HeapQueryInformation
GetCPInfo
HeapSize
GetCommandLineA
GetCurrentThread
RaiseException
TlsFree
GetModuleHandleA
ReadFile
GlobalFlags
CloseHandle
GetACP
CopyFileA
GetModuleHandleW
FreeResource
IsValidCodePage
FindResourceExW
Sleep
GetFileAttributesExA
FindResourceA
VirtualAlloc
TransparentBlt
AlphaBlend
LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject
CreateErrorInfo
VariantChangeType
VariantTimeToSystemTime
SysStringLen
SystemTimeToVariantTime
VarBstrFromDate
SysAllocStringLen
VariantClear
SysAllocString
VariantCopy
LoadTypeLib
SysFreeString
SysAllocStringByteLen
VariantInit
SHGetFileInfoA
DragFinish
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHBrowseForFolderA
SHAppBarMessage
DragQueryFileA
SHGetPathFromIDListA
SHGetMalloc
ShellExecuteA
StrFormatKBSizeA
PathFindExtensionA
PathIsUNCA
PathRemoveFileSpecW
PathStripToRootA
PathFindFileNameA
SetFocus
GetForegroundWindow
SetWindowRgn
RedrawWindow
SetMenuItemBitmaps
DestroyWindow
DrawStateA
MoveWindow
EnableScrollBar
DestroyMenu
PostQuitMessage
GetMessagePos
SetWindowPos
GetNextDlgTabItem
IsWindow
SetTimer
DispatchMessageA
EndPaint
GetWindowLongA
SetMenuItemInfoA
CharUpperBuffA
GrayStringA
WindowFromPoint
PeekMessageA
DrawIcon
GetMessageTime
SetActiveWindow
GetDC
GetAsyncKeyState
ReleaseDC
GetDlgCtrlID
GetClassInfoA
GetMenu
UnregisterClassA
GetWindowTextLengthA
DefFrameProcA
GetClientRect
SetMenuDefaultItem
CopyAcceleratorTableA
SetScrollPos
CallNextHookEx
LoadAcceleratorsA
IsClipboardFormatAvailable
CharUpperA
LoadImageW
TrackPopupMenu
GetTopWindow
LoadImageA
LoadAcceleratorsW
ScrollWindow
GetWindowTextA
GetKeyState
PtInRect
DrawEdge
GetParent
MapDialogRect
UpdateWindow
SetPropA
EqualRect
DefMDIChildProcA
GetClassInfoExA
ShowWindow
SetClassLongA
DrawFrameControl
GetNextDlgGroupItem
EnumDisplayMonitors
GetCursorPos
TranslateMDISysAccel
EnableWindow
SetWindowPlacement
LockWindowUpdate
LoadIconW
TranslateMessage
IsWindowEnabled
GetWindow
GetMenuDefaultItem
InsertMenuItemA
GetIconInfo
SetParent
SetClipboardData
IsCharLowerA
IsZoomed
GetWindowPlacement
MapVirtualKeyExA
GetWindowRgn
DrawMenuBar
IsIconic
RegisterClassA
GetMenuItemCount
TabbedTextOutA
DrawFocusRect
CreateWindowExA
GetActiveWindow
GetKeyboardLayout
FillRect
MonitorFromPoint
CopyRect
GetSysColorBrush
RealChildWindowFromPoint
GetUpdateRect
CreateAcceleratorTableA
IsChild
IsDialogMessageA
MapWindowPoints
MapVirtualKeyA
GetMessageA
PostMessageA
BeginPaint
OffsetRect
EndDialog
GetScrollPos
CopyIcon
KillTimer
GetMonitorInfoA
TrackMouseEvent
GetComboBoxInfo
RegisterWindowMessageA
DefWindowProcA
ToAsciiEx
LoadBitmapW
SendDlgItemMessageA
GetSystemMetrics
EnableMenuItem
SetScrollRange
GetWindowRect
InflateRect
InvertRect
SetCapture
ReleaseCapture
EnumChildWindows
GetScrollRange
SetWindowLongA
CheckDlgButton
WaitMessage
CreatePopupMenu
CheckMenuItem
GetSubMenu
GetLastActivePopup
DrawIconEx
CreateMenu
GetDlgItem
GetMenuCheckMarkDimensions
BringWindowToTop
ClientToScreen
GetClassLongA
InsertMenuA
CreateDialogIndirectParamA
LoadCursorA
LoadIconA
GetKeyboardState
SetWindowsHookExA
GetMenuItemInfoA
DestroyAcceleratorTable
GetMenuState
ShowOwnedPopups
LoadCursorW
GetSystemMenu
ReuseDDElParam
GetMenuItemID
SetForegroundWindow
NotifyWinEvent
PostThreadMessageA
OpenClipboard
EmptyClipboard
DrawTextA
IntersectRect
SetLayeredWindowAttributes
GetScrollInfo
LoadMenuA
HideCaret
GetCapture
RemovePropA
ScreenToClient
SetWindowTextA
MessageBeep
LoadMenuW
DrawTextExA
RemoveMenu
GetWindowThreadProcessId
DeferWindowPos
ShowScrollBar
AppendMenuA
GetPropA
SetMenu
RegisterClipboardFormatA
SetRectEmpty
GetMenuStringA
CallWindowProcA
MessageBoxA
GetClassNameA
GetWindowDC
DestroyCursor
AdjustWindowRectEx
GetSysColor
SetScrollInfo
CopyImage
EndDeferWindowPos
SystemParametersInfoA
UpdateLayeredWindow
GetDoubleClickTime
DestroyIcon
GetKeyNameTextA
BeginDeferWindowPos
GetDesktopWindow
SubtractRect
UnpackDDElParam
SetCursorPos
WinHelpA
UnionRect
MonitorFromWindow
FrameRect
SetRect
DeleteMenu
InvalidateRect
SendMessageA
TranslateAcceleratorA
ValidateRect
IsRectEmpty
IsMenu
GetFocus
CloseClipboard
IsWindowVisible
ModifyMenuA
UnhookWindowsHookEx
SetCursor
IsAppThemed
GetThemeSysColor
GetWindowTheme
GetCurrentThemeName
DrawThemeText
OpenThemeData
DrawThemeParentBackground
CloseThemeData
DrawThemeBackground
GetThemeColor
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
PlaySoundA
OpenPrinterA
DocumentPropertiesA
ClosePrinter
GdipBitmapLockBits
GdipGetImagePixelFormat
GdipCreateBitmapFromScan0
GdiplusShutdown
GdipGetImagePalette
GdipDisposeImage
GdipBitmapUnlockBits
GdiplusStartup
GdipDeleteGraphics
GdipCreateBitmapFromStream
GdipCreateFromHDC
GdipGetImagePaletteSize
GdipCreateBitmapFromHBITMAP
GdipAlloc
GdipGetImageWidth
GdipDrawImageI
GdipDrawImageRectI
GdipSetInterpolationMode
GdipFree
GdipGetImageHeight
GdipCloneImage
GdipGetImageGraphicsContext
Ord(95)
Ord(87)
Ord(159)
Ord(204)
Ord(168)
Ord(89)
Ord(44)
Ord(172)
Ord(91)
Ord(141)
Ord(71)
Ord(67)
Ord(31)
Ord(117)
Ord(8)
Ord(160)
OleUninitialize
CoUninitialize
OleTranslateAccelerator
OleLockRunning
OleDestroyMenuDescriptor
DoDragDrop
StringFromGUID2
CreateStreamOnHGlobal
OleFlushClipboard
ReleaseStgMedium
CoCreateGuid
RegisterDragDrop
RevokeDragDrop
CoRegisterMessageFilter
OleGetClipboard
OleDuplicateData
CoInitialize
OleInitialize
CoLockObjectExternal
CoCreateInstance
OleRun
CoInitializeEx
CoTaskMemAlloc
CoRevokeClassObject
OleCreateMenuDescriptor
CoFreeUnusedLibraries
IsAccelerator
CoDisconnectObject
OleIsCurrentClipboard
CoTaskMemFree
Number of PE resources by type
RT_CURSOR 16
RT_GROUP_CURSOR 15
RT_ICON 15
RT_STRING 15
RT_DIALOG 3
RT_BITMAP 2
RT_MANIFEST 1
MSI 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 49
POLISH DEFAULT 21
PE resources
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
12.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
2.1.2.17

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Windows, Latin1

InitializedDataSize
7732736

EntryPoint
0x12bb43

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
2.1.2.17

TimeStamp
2016:05:10 08:15:48+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
CodeTwo NetCalendars

ProductVersion
2,1,2,17

SubsystemVersion
5.1

OSVersion
5.1

FileOS
Win32

LegalCopyright
(c) 2016 CodeTwo. All rights reserved.

MachineType
Intel 386 or later, and compatibles

CompanyName
CodeTwo

CodeSize
1405440

ProductName
CodeTwo NetCalendars

ProductVersionNumber
2.1.2.17

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 eaf8a859221a20371c73c945b8007965
SHA1 1b1cc0d9454bb3f32265f7d5320e9fa5f78edb8d
SHA256 7aa04284c72adee4ef59a253a78a97750ba28f56c8d802f10eb02adf25f00ac8
ssdeep
196608:q6Ib/8xGuT9m6CxIMEINPquBN8ZuqdlApqY:qoBmVVRBBN0A

authentihash 6942e2c032b430e16ef92237e46e8c26c5c5de2585652d0625c5618d07f81c5c
imphash 0d612f48aba5d0a884dcd122fd2a92db
File size 8.7 MB ( 9111896 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win64 Executable (generic) (72.3%)
Win32 Executable (generic) (11.8%)
OS/2 Executable (generic) (5.3%)
Generic Win/DOS Executable (5.2%)
DOS Executable Generic (5.2%)
Tags
peexe signed overlay

VirusTotal metadata
First submission 2018-02-19 09:38:11 UTC ( 1 year, 2 months ago )
Last submission 2018-03-31 11:05:09 UTC ( 1 year ago )
File names 7AA04284C72ADEE4EF59A253A78A97750BA28F56C8D802F10EB02ADF25F00AC8.exe
C2NetCalendarsSetupEN.exe
CodeTwo NetCalendars
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Deleted files
Created processes
Code injections in the following processes
Opened mutexes
Hooking activity
Runtime DLLs
Additional details
The file installs an application-defined hook procedure into a hook chain. You would install a hook procedure to monitor the system for certain types of events. These events are associated either with a specific thread or with all threads in the same desktop as the calling thread. This is done making use of the SetWindowsHook Windows API function.