× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 8a93339d0d82ec5fc9a318a5f58b85439422ce58eeb39cb5d2400e9dcb16667e
File name: speedfan.exe
Detection ratio: 0 / 53
Analysis date: 2016-07-27 22:50:17 UTC ( 2 years, 9 months ago )
Antivirus Result Update
Ad-Aware 20160727
AegisLab 20160727
AhnLab-V3 20160727
Alibaba 20160727
ALYac 20160727
Antiy-AVL 20160727
Arcabit 20160727
Avast 20160727
AVG 20160727
Avira (no cloud) 20160727
AVware 20160727
Baidu 20160727
BitDefender 20160727
Bkav 20160727
CAT-QuickHeal 20160727
ClamAV 20160727
CMC 20160725
Comodo 20160727
Cyren 20160727
DrWeb 20160727
Emsisoft 20160727
ESET-NOD32 20160727
F-Prot 20160727
F-Secure 20160727
Fortinet 20160727
GData 20160727
Ikarus 20160727
Jiangmin 20160727
K7AntiVirus 20160727
K7GW 20160727
Kaspersky 20160727
Kingsoft 20160727
Malwarebytes 20160727
McAfee 20160727
McAfee-GW-Edition 20160727
Microsoft 20160727
eScan 20160727
NANO-Antivirus 20160727
nProtect 20160727
Panda 20160727
Qihoo-360 20160727
Sophos AV 20160727
SUPERAntiSpyware 20160727
Symantec 20160727
Tencent 20160727
TheHacker 20160726
TrendMicro 20160727
TrendMicro-HouseCall 20160727
VBA32 20160727
VIPRE 20160727
ViRobot 20160727
Zillya 20160727
Zoner 20160727
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Authenticode signature block and FileVersionInfo properties
Product SpeedFan
File version 4.45.0.355
Signature verification Signed file, verified signature
Signing date 9:29 AM 11/3/2011
Signers
[+] Sokno S.R.L.
Status This certificate or one of the certificates in the certificate chain is not time valid.
Issuer VeriSign Class 3 Code Signing 2010 CA
Valid from 1:00 AM 1/17/2011
Valid to 12:59 AM 1/18/2012
Valid usage Code Signing
Algorithm sha1RSA
Thumbprint 33825DA64A7856F952C4843F8CF2D7A49904C009
Serial number 13 AE B1 06 77 1C C3 A1 BC EF 35 13 C2 E0 31 96
[+] VeriSign Class 3 Code Signing 2010 CA
Status Valid
Issuer VeriSign Class 3 Public Primary Certification Authority - G5
Valid from 1:00 AM 2/8/2010
Valid to 12:59 AM 2/8/2020
Valid usage Client Auth, Code Signing
Algorithm sha1RSA
Thumbprint 495847A93187CFB8C71F840CB7B41497AD95C64F
Serial number 52 00 E5 AA 25 56 FC 1A 86 ED 96 C9 D4 4B 33 C7
[+] VeriSign
Status Valid
Issuer VeriSign Class 3 Public Primary Certification Authority - G5
Valid from 1:00 AM 11/8/2006
Valid to 12:59 AM 7/17/2036
Valid usage Server Auth, Client Auth, Email Protection, Code Signing
Algorithm sha1RSA
Thumbprint 4EB6D578499B1CCF5F581EAD56BE3D9B6744A5E5
Serial number 18 DA D1 9E 26 7D E8 BB 4A 21 58 CD CC 6B 3B 4A
Counter signers
[+] VeriSign Time Stamping Services Signer - G2
Status This certificate or one of the certificates in the certificate chain is not time valid., The revocation status of the certificate or one of the certificates in the certificate chain is unknown., Error 65536 (0x10000), The revocation status of the certificate or one of the certificates in the certificate chain is either offline or stale.
Issuer VeriSign Time Stamping Services CA
Valid from 1:00 AM 6/15/2007
Valid to 12:59 AM 6/15/2012
Valid usage Timestamp Signing
Algorithm sha1RSA
Thumbrint ADA8AAA643FF7DC38DD40FA4C97AD559FF4846DE
Serial number 38 25 D7 FA F8 61 AF 9E F4 90 E7 26 B5 D6 5A D5
[+] VeriSign Time Stamping Services CA
Status This certificate or one of the certificates in the certificate chain is not time valid.
Issuer Thawte Timestamping CA
Valid from 1:00 AM 12/4/2003
Valid to 12:59 AM 12/4/2013
Valid usage Timestamp Signing
Algorithm sha1RSA
Thumbrint F46AC0C6EFBB8C6A14F55F09E2D37DF4C0DE012D
Serial number 47 BF 19 95 DF 8D 52 46 43 F7 DB 6D 48 0D 31 A4
[+] Thawte Timestamping CA
Status Valid
Issuer Thawte Timestamping CA
Valid from 1:00 AM 1/1/1997
Valid to 12:59 AM 1/1/2021
Valid usage Timestamp Signing
Algorithm md5RSA
Thumbrint BE36A4562FB2EE05DBB3D32323ADF445084ED656
Serial number 00
Packers identified
PEiD BobSoft Mini Delphi -> BoB / BobSoft
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 1992-06-19 22:22:17
Entry Point 0x002D89A8
Number of sections 8
PE sections
Overlays
MD5 7cfa8c93a23db7a542940e775a18044b
File type data
Offset 4648448
Size 8600
Entropy 7.32
PE imports
GetRandomRgn
RegDeleteKeyA
RegCloseKey
OpenServiceA
QueryServiceConfigA
RegQueryValueExA
RegCreateKeyExA
RegCreateKeyA
RegQueryValueExW
SetSecurityDescriptorDacl
LookupAccountNameA
RegFlushKey
RegQueryValueA
RegOpenKeyExW
RegOpenKeyExA
RegDeleteValueA
CloseServiceHandle
GetUserNameA
RegEnumKeyExA
RegQueryInfoKeyA
RegSetValueExW
InitializeSecurityDescriptor
RegSetValueExA
RegEnumValueA
OpenSCManagerA
ImageList_BeginDrag
ImageList_SetBkColor
ImageList_Replace
InitCommonControls
ImageList_SetDragCursorImage
ImageList_Read
ImageList_GetDragImage
ImageList_Create
ImageList_DragMove
ImageList_DrawEx
ImageList_SetIconSize
ImageList_Write
ImageList_GetImageCount
ImageList_Destroy
ImageList_Draw
ImageList_GetIconSize
ImageList_DragLeave
ImageList_GetBkColor
ImageList_GetIcon
ImageList_ReplaceIcon
ImageList_DragEnter
ImageList_Add
ImageList_DragShowNolock
ImageList_Remove
ImageList_EndDrag
SetDIBits
SetMapMode
GetWindowOrgEx
GetNearestColor
SetTextAlign
GetPaletteEntries
CombineRgn
GetViewportOrgEx
GetTextExtentPointA
SetPixel
EndDoc
IntersectClipRect
CopyEnhMetaFileA
CreatePalette
CreateDIBitmap
GetDIBits
SetPixelFormat
GetEnhMetaFileBits
GetDCOrgEx
StretchBlt
StretchDIBits
GetTextMetricsA
SetBkColor
SetWinMetaFileBits
GetBkColor
GetDIBColorTable
DeleteEnhMetaFile
GetSystemPaletteEntries
OffsetRgn
GetCurrentPositionEx
CreateFontIndirectA
CreateRectRgnIndirect
LPtoDP
GetPixel
GetBrushOrgEx
ExcludeClipRect
TranslateCharsetInfo
SetBkMode
ChoosePixelFormat
BitBlt
GetDeviceCaps
CreateBrushIndirect
SelectPalette
SetROP2
EndPage
SetDIBColorTable
GetTextColor
DeleteObject
CreatePenIndirect
PatBlt
CreatePen
SetStretchBltMode
Rectangle
GetObjectA
CreateDCA
LineTo
DeleteDC
GetMapMode
RealizePalette
CreatePatternBrush
SetEnhMetaFileBits
CreateBitmap
RectVisible
GetStockObject
PlayEnhMetaFile
ExtTextOutA
UnrealizeObject
GdiFlush
SelectClipRgn
RoundRect
GetTextAlign
CreateCompatibleDC
GetTextExtentPoint32A
GetWinMetaFileBits
GetEnhMetaFileHeader
SetWindowOrgEx
SelectObject
GetTextExtentPoint32W
CreatePolygonRgn
CreateICA
Polygon
CreateHalftonePalette
SaveDC
MaskBlt
GetEnhMetaFilePaletteEntries
RestoreDC
GetBitmapBits
CreateDIBSection
SetTextColor
GetClipBox
GetCurrentObject
MoveToEx
SetViewportOrgEx
ExtTextOutW
EnumFontFamiliesExA
SetBrushOrgEx
CreateRectRgn
GetClipRgn
CreateCompatibleBitmap
CreateSolidBrush
Polyline
Ellipse
SetThreadLocale
GetStdHandle
FileTimeToDosDateTime
ReleaseMutex
CreateFileMappingA
GetOverlappedResult
WaitForSingleObject
GetLocalTime
FreeEnvironmentStringsA
DeleteCriticalSection
GetDiskFreeSpaceA
GetLocaleInfoA
LocalAlloc
ExpandEnvironmentStringsA
OpenFileMappingA
SetErrorMode
GetFullPathNameA
GetTempPathA
WideCharToMultiByte
GetFileAttributesA
InterlockedExchange
WriteFile
SetComputerNameA
GetThreadPriority
SetFileAttributesA
SetEvent
LocalFree
MoveFileA
ResumeThread
InitializeCriticalSection
LoadResource
GlobalHandle
FindClose
TlsGetValue
FormatMessageA
GetStringTypeExA
DeviceIoControl
GetEnvironmentVariableA
Beep
GlobalFindAtomA
ExitProcess
GetModuleFileNameA
RaiseException
EnumCalendarInfoA
GetPriorityClass
LoadLibraryExA
GetPrivateProfileStringA
SetThreadPriority
UnhandledExceptionFilter
InterlockedDecrement
MultiByteToWideChar
SetProcessAffinityMask
GetSystemPowerStatus
FlushInstructionCache
CreateMutexA
GetModuleHandleA
CreateThread
GetExitCodeThread
GlobalAddAtomA
GetCurrentProcess
MulDiv
ExitThread
SetPriorityClass
GlobalMemoryStatus
VirtualQuery
SetEndOfFile
GetCurrentThreadId
InterlockedIncrement
SleepEx
EnterCriticalSection
FreeLibrary
QueryPerformanceCounter
GetTickCount
VirtualProtect
GetVersionExA
LoadLibraryA
RtlUnwind
GetSystemDirectoryA
GlobalSize
GetStartupInfoA
GetDateFormatA
GetFileSize
CreateDirectoryA
DeleteFileA
GetWindowsDirectoryA
GetCPInfo
GetProcAddress
CompareStringW
GlobalReAlloc
lstrcmpA
FindFirstFileA
lstrcpyA
GetProfileStringA
ResetEvent
GetTempFileNameA
GetComputerNameA
FindNextFileA
IsValidLocale
GlobalLock
GetProcessAffinityMask
GetTimeZoneInformation
CreateEventA
CopyFileA
GetFileType
TlsSetValue
CreateFileA
LeaveCriticalSection
GetLastError
SystemTimeToFileTime
GlobalDeleteAtom
GetSystemInfo
lstrlenA
GlobalFree
GetEnvironmentStringsA
GetThreadLocale
GlobalUnlock
GlobalAlloc
lstrlenW
WinExec
FileTimeToLocalFileTime
SizeofResource
WritePrivateProfileStringA
GetCurrentProcessId
LockResource
GetCurrentDirectoryA
GetCommandLineA
InterlockedCompareExchange
GetCurrentThread
SuspendThread
QueryPerformanceFrequency
MapViewOfFile
SetFilePointer
ReadFile
CloseHandle
lstrcpynA
GetACP
GetVersion
FreeResource
UnmapViewOfFile
SetCurrentDirectoryA
VirtualFree
Sleep
IsBadReadPtr
FindResourceA
VirtualAlloc
GetOEMCP
CompareStringA
CreateStreamOnHGlobal
OleUninitialize
CoTaskMemFree
CreateDataAdviseHolder
OleInitialize
RevokeDragDrop
ReleaseStgMedium
RegisterDragDrop
CoCreateInstance
DoDragDrop
StringFromCLSID
CoUninitialize
OleGetClipboard
IsEqualGUID
CoInitialize
OleSetClipboard
ProgIDFromCLSID
CoTaskMemAlloc
VariantChangeType
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayGetElement
SafeArrayPtrOfIndex
SysAllocStringLen
SafeArrayUnaccessData
VariantCopyInd
VariantClear
GetActiveObject
SafeArrayCreate
SysReAllocStringLen
SafeArrayGetUBound
VariantCopy
GetErrorInfo
SysFreeString
SafeArrayPutElement
VariantInit
SHGetFileInfoA
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHGetPathFromIDListA
SHGetMalloc
ShellExecuteA
Shell_NotifyIconA
RedrawWindow
GetMessagePos
SetWindowRgn
CharLowerBuffA
EnableScrollBar
DestroyMenu
PostQuitMessage
GetForegroundWindow
LoadBitmapA
SetWindowPos
IsWindow
DispatchMessageA
EndPaint
SetMenuItemInfoA
CharUpperBuffA
WindowFromPoint
DrawIcon
SetCaretBlinkTime
ChildWindowFromPoint
CopyImage
SetActiveWindow
GetMenuItemID
GetCursorPos
ReleaseDC
GetClassInfoA
GetMenu
UnregisterClassA
SendMessageA
GetClientRect
ToAscii
DrawTextW
SetScrollPos
EnumDisplaySettingsA
GetKeyboardState
ClientToScreen
GetTopWindow
ShowCursor
EnumClipboardFormats
LockWindowUpdate
MsgWaitForMultipleObjects
ScrollWindow
GetWindowTextA
InvalidateRgn
GetKeyState
PtInRect
DrawEdge
GetParent
UpdateWindow
SetPropA
EqualRect
EnumWindows
DefMDIChildProcA
CreateCaret
ShowWindow
SetClassLongA
GetPropA
GetMenuState
GetClipboardFormatNameA
TranslateMDISysAccel
EnableWindow
CallNextHookEx
SetWindowPlacement
PeekMessageA
ScrollDC
IsCharAlphaA
TranslateMessage
IsWindowEnabled
GetWindow
DestroyCaret
ActivateKeyboardLayout
InsertMenuItemA
CreatePopupMenu
GetIconInfo
LoadStringA
SetParent
SetClipboardData
GetSystemMetrics
IsZoomed
GetWindowPlacement
GetKeyboardLayoutList
DrawMenuBar
CharLowerA
IsIconic
RegisterClassA
GetMenuItemCount
GetWindowLongA
SetTimer
OemToCharA
GetActiveWindow
ShowOwnedPopups
FillRect
EnumThreadWindows
CharNextA
GetSysColorBrush
GetDialogBaseUnits
CreateMenu
GetUpdateRect
DestroyWindow
IsChild
IsDialogMessageA
SetFocus
MapVirtualKeyA
GetKeyboardLayoutNameA
SetCapture
BeginPaint
OffsetRect
SetCaretPos
GetScrollPos
CopyIcon
KillTimer
RegisterWindowMessageA
DefWindowProcA
DrawFocusRect
MapWindowPoints
IsCharAlphaNumericA
EnableMenuItem
SetScrollRange
GetWindowRect
InflateRect
PostMessageA
ReleaseCapture
GetScrollRange
SetWindowLongA
SetKeyboardState
WaitMessage
SetWindowTextA
ShowCaret
GetSubMenu
GetLastActivePopup
DrawIconEx
CreateWindowExA
GetClipboardData
ScreenToClient
InsertMenuA
LoadCursorA
LoadIconA
TrackPopupMenu
SetWindowsHookExA
GetMenuStringA
BeginDeferWindowPos
ValidateRect
GetKeyboardLayout
GetSystemMenu
GetDC
CheckMenuItem
SetForegroundWindow
OpenClipboard
GetAsyncKeyState
GetCaretBlinkTime
DrawTextA
IntersectRect
GetScrollInfo
HideCaret
GetCapture
RemovePropA
FindWindowA
MessageBeep
GetCaretPos
RemoveMenu
GetWindowThreadProcessId
DeferWindowPos
ShowScrollBar
DrawFrameControl
UnhookWindowsHookEx
RegisterClipboardFormatA
CallWindowProcA
MessageBoxA
GetClassNameA
GetWindowDC
DestroyCursor
AdjustWindowRectEx
LoadKeyboardLayoutA
GetSysColor
SetScrollInfo
GetMenuItemInfoA
EndDeferWindowPos
SystemParametersInfoA
SetSysColors
GetDoubleClickTime
DestroyIcon
GetKeyNameTextA
IsWindowVisible
EmptyClipboard
GetDesktopWindow
SubtractRect
CharToOemA
SetCursorPos
GetDCEx
WinHelpA
UnionRect
FrameRect
SetRect
DeleteMenu
InvalidateRect
DefFrameProcA
IsCharUpperA
CreateIcon
IsRectEmpty
GetCursor
GetFocus
CloseClipboard
GetKeyboardType
SetMenu
ChangeDisplaySettingsA
SetCursor
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
timeEndPeriod
joyGetPos
timeGetTime
timeBeginPeriod
EnumPrintersA
OpenPrinterA
DocumentPropertiesA
ClosePrinter
WSAStartup
gethostbyname
inet_ntoa
gethostname
WSACleanup
Number of PE resources by type
RT_BITMAP 58
RT_STRING 44
RT_RCDATA 33
RT_GROUP_CURSOR 23
RT_CURSOR 23
UNICODEDATA 6
RT_ICON 3
RT_DIALOG 1
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 147
GERMAN 34
FRENCH 6
ITALIAN 6
ENGLISH UK 1
PE resources
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
2.25

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
4.45.0.355

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Windows, Latin1

InitializedDataSize
1666560

EntryPoint
0x2d89a8

MIMEType
application/octet-stream

FileVersion
4.45.0.355

TimeStamp
1992:06:19 23:22:17+01:00

FileType
Win32 EXE

PEType
PE32

ProductVersion
4.45 Final

SubsystemVersion
4.0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Almico Software (www.almico.com)

CodeSize
2980864

ProductName
SpeedFan

ProductVersionNumber
4.45.0.355

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 a470cc40b031a0ee22017fba72898a12
SHA1 881ad3d509f4ee63d8b0062510d5e6566bd6a101
SHA256 8a93339d0d82ec5fc9a318a5f58b85439422ce58eeb39cb5d2400e9dcb16667e
ssdeep
49152:s6EVW/B+VchfCv3N9nT0HYWDWWXhgLvbjMsPQRR9ektXLooA264Ea6/S5eozbINw:s6wW/BKchqrT0HYJOMMfA2FlV8Z6

authentihash aa74229838e932b0f5a8938187f62585369058ecc940e7b24dfccbcbdc57d488
imphash d942bdcf1b6d2ccb910885c813c9a7dc
File size 4.4 MB ( 4657048 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Inno Setup installer (81.5%)
Win32 Executable Delphi generic (10.5%)
Win32 Executable (generic) (3.3%)
Win16/32 Executable Delphi generic (1.5%)
Generic Win/DOS Executable (1.4%)
Tags
bobsoft peexe signed overlay

VirusTotal metadata
First submission 2011-11-03 17:56:30 UTC ( 7 years, 6 months ago )
Last submission 2016-07-27 22:50:17 UTC ( 2 years, 9 months ago )
File names speedfan.exe
speedfan.exe
speedfan.exe
speedfan.exe
speedfan.exe
SpeedFan.exe
speedfan.exe
speedfan.exe
speedfan.exe
speedfan.exe
speedfan.exe
speedfan.exe
file-3062298_exe
speedfan.exe
speedfan.exe
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!