× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 8534c3b79e50ace57f268bbc6c655a2c55b735daef252af513ca379d131cde4c
File name: MCP_1-0-0-3.exe
Detection ratio: 0 / 44
Analysis date: 2012-10-21 17:30:11 UTC ( 6 years, 3 months ago )
Antivirus Result Update
Yandex 20121021
AhnLab-V3 20121021
AntiVir 20121021
Antiy-AVL 20121020
Avast 20121021
AVG 20121021
BitDefender 20121021
ByteHero 20121019
CAT-QuickHeal 20121021
ClamAV 20121021
Commtouch 20121021
Comodo 20121021
DrWeb 20121021
Emsisoft 20121021
eSafe 20121017
ESET-NOD32 20121021
F-Prot 20121021
F-Secure 20121021
Fortinet 20121021
GData 20121021
Ikarus 20121021
Jiangmin 20121021
K7AntiVirus 20121018
Kaspersky 20121021
Kingsoft 20121008
McAfee 20121021
McAfee-GW-Edition 20121021
Microsoft 20121021
eScan 20121021
Norman 20121021
nProtect 20121021
Panda 20121021
PCTools 20121021
Rising 20121019
Sophos AV 20121021
SUPERAntiSpyware 20121021
Symantec 20121021
TheHacker 20121020
TotalDefense 20121021
TrendMicro 20121021
TrendMicro-HouseCall 20121021
VBA32 20121019
VIPRE 20121021
ViRobot 20121021
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (c) 2012 PantherMan594

Publisher PantherMan594
Product MCPortable
Original name MCPortable.exe
Internal name MCP.exe
File version 1.0.0.3
Description MCPortable Installer
Packers identified
F-PROT 7Z
PEiD Armadillo v1.71
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2010-11-18 16:27:33
Entry Point 0x0001D262
Number of sections 5
PE sections
PE imports
AreFileApisANSI
GetLastError
GetStdHandle
EnterCriticalSection
FileTimeToSystemTime
lstrlenA
RemoveDirectoryW
WaitForSingleObject
SetEvent
GetCommandLineW
GetTickCount
SetFileTime
SetFileAttributesW
GetVersionExA
RemoveDirectoryA
DeleteFileA
GetModuleFileNameA
DeleteCriticalSection
GetStartupInfoA
SetFileAttributesA
FileTimeToLocalFileTime
GetCurrentDirectoryW
GetFileSize
lstrcatA
CreateDirectoryA
GetModuleHandleW
GetCurrentDirectoryA
FormatMessageW
MultiByteToWideChar
CreateDirectoryW
DeleteFileW
WaitForMultipleObjects
FormatMessageA
GetFullPathNameA
SetFilePointer
GetFullPathNameW
CloseHandle
WideCharToMultiByte
GetModuleFileNameW
GetModuleHandleA
ReadFile
WriteFile
GetCurrentProcess
FindFirstFileA
ResetEvent
FindFirstFileW
GetProcAddress
SetPriorityClass
LocalFree
MoveFileA
InitializeCriticalSection
CreateFileW
VirtualFree
CreateEventA
FindClose
Sleep
MoveFileW
SetEndOfFile
CreateFileA
VirtualAlloc
SetLastError
LeaveCriticalSection
_purecall
__p__fmode
malloc
__CxxFrameHandler
??1type_info@@UAE@XZ
memset
__dllonexit
_except_handler3
_onexit
wcslen
exit
_XcptFilter
memcmp
__setusermatherr
_controlfp
_adjust_fdiv
_acmdln
_CxxThrowException
__p__commode
free
__getmainargs
memcpy
memmove
_beginthreadex
_initterm
_exit
__set_app_type
Ord(6)
Ord(2)
Ord(9)
SHGetFileInfoA
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetMalloc
MapDialogRect
EndDialog
CharUpperW
KillTimer
ShowWindow
MessageBoxW
GetWindowRect
SetDlgItemTextA
PostMessageA
MoveWindow
DialogBoxParamW
SetWindowLongA
DialogBoxParamA
CharUpperA
LoadStringA
SystemParametersInfoA
SetWindowTextA
SendMessageW
GetWindowLongA
SendMessageA
LoadStringW
SetWindowTextW
GetDlgItem
ScreenToClient
InvalidateRect
wsprintfA
GetWindowTextLengthA
SetTimer
LoadCursorA
LoadIconA
IsDlgButtonChecked
GetWindowTextW
GetWindowTextLengthW
GetWindowTextA
SetCursor
CoUninitialize
CoInitialize
Number of PE resources by type
RT_ICON 15
RT_STRING 9
RT_DIALOG 4
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 30
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
6.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.0.0.3

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
629248

FileOS
Windows NT 32-bit

MIMEType
application/octet-stream

LegalCopyright
Copyright (c) 2012 PantherMan594

FileVersion
1.0.0.3

TimeStamp
2010:11:18 16:27:33+00:00

FileType
Win32 EXE

PEType
PE32

InternalName
MCP.exe

ProductVersion
1.0.0.3

FileDescription
MCPortable Installer

OSVersion
4.0

OriginalFilename
MCPortable.exe

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
PantherMan594

CodeSize
127488

ProductName
MCPortable

ProductVersionNumber
1.0.0.3

EntryPoint
0x1d262

ObjectFileType
Executable application

File identification
MD5 9a6e792c3753e764ca69a0204a46b48d
SHA1 2c8d880b98acf34a4d06fbf8249c0ec6f6a69d96
SHA256 8534c3b79e50ace57f268bbc6c655a2c55b735daef252af513ca379d131cde4c
ssdeep
24576:uWvknOMEBiF6sO2fsUz53NWNRhLOIFzaE1:uUeOMAiF6Z2fxNWNRp9ai

File size 1.2 MB ( 1279223 bytes )
File type Win32 EXE
Magic literal
MS-DOS executable PE for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable Generic (68.0%)
Generic Win/DOS Executable (15.9%)
DOS Executable Generic (15.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
Tags
peexe armadillo

VirusTotal metadata
First submission 2012-10-21 17:30:11 UTC ( 6 years, 3 months ago )
Last submission 2012-10-21 17:30:11 UTC ( 6 years, 3 months ago )
File names MCPortable.exe
MCP_1-0-0-3.exe
MCP.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!