× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 80feb42e2708723f74e2a1182d911b77e231c17f437b0bd81f1db3e6a2f5f5e0
File name: iPack Builder v2.2.exe
Detection ratio: 0 / 56
Analysis date: 2015-09-12 16:26:43 UTC ( 2 years, 2 months ago ) View latest
Antivirus Result Update
Ad-Aware 20150912
AegisLab 20150912
Yandex 20150911
AhnLab-V3 20150912
Alibaba 20150912
ALYac 20150912
Antiy-AVL 20150912
Arcabit 20150912
Avast 20150912
AVG 20150912
Avira (no cloud) 20150912
AVware 20150912
Baidu-International 20150912
BitDefender 20150912
Bkav 20150912
ByteHero 20150912
CAT-QuickHeal 20150912
ClamAV 20150912
CMC 20150910
Comodo 20150912
Cyren 20150912
DrWeb 20150912
Emsisoft 20150912
ESET-NOD32 20150912
F-Prot 20150912
F-Secure 20150912
Fortinet 20150912
GData 20150912
Ikarus 20150912
Jiangmin 20150911
K7AntiVirus 20150912
K7GW 20150912
Kaspersky 20150912
Kingsoft 20150912
Malwarebytes 20150912
McAfee 20150912
McAfee-GW-Edition 20150912
Microsoft 20150912
eScan 20150912
NANO-Antivirus 20150912
nProtect 20150911
Panda 20150912
Qihoo-360 20150912
Rising 20150911
Sophos AV 20150912
SUPERAntiSpyware 20150912
Symantec 20150911
Tencent 20150912
TheHacker 20150912
TrendMicro 20150912
TrendMicro-HouseCall 20150912
VBA32 20150911
VIPRE 20150912
ViRobot 20150912
Zillya 20150912
Zoner 20150912
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © Mr Blade 2014 - 2015

Product iPack Builder
Original name iPack Builder v2.0.exe
Internal name iPack Builder v2.0.exe
File version 2.2
Description iPack Builder
Packers identified
F-PROT SFX
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2014-10-31 03:28:47
Entry Point 0x000069D0
Number of sections 5
PE sections
PE imports
GetTokenInformation
LookupPrivilegeValueA
RegCloseKey
OpenProcessToken
AdjustTokenPrivileges
FreeSid
RegQueryValueExA
AllocateAndInitializeSid
RegSetValueExA
EqualSid
RegCreateKeyExA
RegOpenKeyExA
RegDeleteValueA
RegQueryInfoKeyA
Ord(23)
Ord(20)
Ord(21)
Ord(22)
GetDeviceCaps
GetLastError
IsDBCSLeadByte
GetSystemTimeAsFileTime
DosDateTimeToFileTime
ReadFile
GetStartupInfoA
TerminateThread
GetDiskFreeSpaceA
GetFileAttributesA
GlobalFree
WaitForSingleObject
LockResource
SetEvent
QueryPerformanceCounter
MulDiv
ExitProcess
SetFileTime
GetVersionExA
GlobalUnlock
RemoveDirectoryA
RtlUnwind
LoadLibraryA
GetShortPathNameA
FreeLibrary
GetCurrentProcess
GetVolumeInformationA
LoadLibraryExA
SizeofResource
LocalFileTimeToFileTime
GetPrivateProfileStringA
WritePrivateProfileStringA
LocalAlloc
GetPrivateProfileIntA
CreateDirectoryA
DeleteFileA
GetCurrentDirectoryA
UnhandledExceptionFilter
_llseek
GetProcAddress
GetSystemInfo
CreateMutexA
GetModuleHandleA
GetTempPathA
CreateThread
SetFilePointer
lstrcmpA
FindFirstFileA
GetCurrentProcessId
OutputDebugStringA
SetUnhandledExceptionFilter
WriteFile
_lopen
_lclose
CompareStringA
GetTempFileNameA
EnumResourceLanguagesA
FindNextFileA
GetSystemDirectoryA
GlobalLock
GetModuleHandleW
ExpandEnvironmentStringsA
FreeResource
SetFileAttributesA
GetDriveTypeA
LocalFree
TerminateProcess
CreateProcessA
GetModuleFileNameA
GetExitCodeProcess
ResetEvent
GetWindowsDirectoryA
LoadResource
GlobalAlloc
CreateEventA
FindClose
Sleep
FormatMessageA
GetTickCount
CreateFileA
GetCurrentThreadId
GetVersion
FindResourceA
SetCurrentDirectoryA
CloseHandle
CharPrevA
EndDialog
ShowWindow
MessageBeep
SetWindowPos
SendDlgItemMessageA
GetSystemMetrics
GetWindowRect
DispatchMessageA
EnableWindow
SetDlgItemTextA
GetDlgItemTextA
MessageBoxA
PeekMessageA
SetWindowLongA
CharUpperA
GetDC
ReleaseDC
SetWindowTextA
LoadStringA
SendMessageA
GetDlgItem
GetWindowLongA
CharNextA
GetDesktopWindow
CallWindowProcA
MsgWaitForMultipleObjects
SetForegroundWindow
ExitWindowsEx
DialogBoxIndirectParamA
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
_cexit
?terminate@@YAXXZ
_vsnprintf
_ismbblead
__p__fmode
_exit
_acmdln
memset
__p__commode
_errno
__setusermatherr
_amsg_exit
exit
_XcptFilter
__getmainargs
_initterm
_controlfp
memcpy
__set_app_type
Number of PE resources by type
RT_RCDATA 14
RT_ICON 13
RT_STRING 6
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 35
NEUTRAL 1
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
5.1

LinkerVersion
11.0

ImageVersion
6.3

ProductName
iPack Builder

FileVersionNumber
2.2.0.0

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
2764800

FileTypeExtension
exe

OriginalFileName
iPack Builder v2.0.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
2.2

TimeStamp
2014:10:31 04:28:47+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
iPack Builder v2.0.exe

ProductVersion
2.2

FileDescription
iPack Builder

OSVersion
6.3

FileOS
Win32

LegalCopyright
Copyright Mr Blade 2014 - 2015

MachineType
Intel 386 or later, and compatibles

CompanyName
Mr Blade Designs

CodeSize
27136

FileSubtype
0

ProductVersionNumber
2.2.0.0

EntryPoint
0x69d0

ObjectFileType
Executable application

AssemblyVersion
1.0.0.0

Compressed bundles
File identification
MD5 9db9d3e5c92bc1e031f8b491a688cd24
SHA1 4a2f756a0cabaf3796f1deb3a302302a8bc771a5
SHA256 80feb42e2708723f74e2a1182d911b77e231c17f437b0bd81f1db3e6a2f5f5e0
ssdeep
49152:pKfcCgKTIlTpRNMXkhiVnJEhsYFm6MwvJOx2Hz2lRchiIIHjFV7aPec2xFTa1:WcCgKTMdRNaBVbmBpE2Hzw8iIojDmeby

authentihash 7335407fb86aa4612e897ac0c654438fbdb9c4654a4ca7ab8c0a5d4c9d0d0dca
imphash bc70c4fa605f17c85050b7c7b6d42e44
File size 2.7 MB ( 2792960 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (42.2%)
Win64 Executable (generic) (37.3%)
Win32 Dynamic Link Library (generic) (8.8%)
Win32 Executable (generic) (6.0%)
Generic Win/DOS Executable (2.7%)
Tags
peexe

VirusTotal metadata
First submission 2015-09-12 16:26:43 UTC ( 2 years, 2 months ago )
Last submission 2017-09-21 06:35:15 UTC ( 2 months ago )
File names iPack Builder v2.2.exe
iPack Builder v2.2.exe
iPack Builder v2.2.exe
iPack Builder v2.2.exe
iPack Builder v2.0.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Deleted files
Created processes
Created mutexes
Opened mutexes
Runtime DLLs
Additional details
The file uses the IsDebuggerPresent Windows API function in order to see whether it is being debugged.