× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 8bf66e3bd0aec4ceee44e4553c20175c526bac884585839c3f6dc45a6073ef25
File name: 411669
Detection ratio: 0 / 57
Analysis date: 2016-03-17 01:53:46 UTC ( 3 years ago ) View latest
Antivirus Result Update
Ad-Aware 20160316
AegisLab 20160316
Yandex 20160316
AhnLab-V3 20160316
Alibaba 20160316
ALYac 20160316
Antiy-AVL 20160317
Arcabit 20160316
Avast 20160317
AVG 20160317
Avira (no cloud) 20160317
AVware 20160317
Baidu 20160315
Baidu-International 20160316
BitDefender 20160316
Bkav 20160316
ByteHero 20160317
CAT-QuickHeal 20160316
ClamAV 20160311
CMC 20160316
Comodo 20160317
Cyren 20160317
DrWeb 20160317
Emsisoft 20160317
ESET-NOD32 20160317
F-Prot 20160317
F-Secure 20160317
Fortinet 20160317
GData 20160316
Ikarus 20160316
Jiangmin 20160317
K7AntiVirus 20160316
K7GW 20160317
Kaspersky 20160317
Malwarebytes 20160316
McAfee 20160317
McAfee-GW-Edition 20160317
Microsoft 20160316
eScan 20160316
NANO-Antivirus 20160317
nProtect 20160316
Panda 20160316
Qihoo-360 20160317
Rising 20160317
Sophos AV 20160317
SUPERAntiSpyware 20160317
Symantec 20160317
Tencent 20160317
TheHacker 20160315
TotalDefense 20160317
TrendMicro 20160316
TrendMicro-HouseCall 20160316
VBA32 20160316
VIPRE 20160316
ViRobot 20160316
Zillya 20160316
Zoner 20160316
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem that targets 64bit architectures.
FileVersionInfo properties
Copyright
Tibbo Technology Inc.

Product AggreGate
Original name aggregate_nm_5.01.00_windows-x64.exe
Internal name AggreGate
File version 5.01.00
Description AggreGate
PE header basic information
Target machine x64
Compilation timestamp 2012-12-13 23:22:29
Entry Point 0x0001E75C
Number of sections 6
PE sections
Overlays
MD5 f0005b208b37223334a08afaa2bf5b4e
File type data
Offset 423424
Size 124394496
Entropy 8.00
PE imports
LookupPrivilegeValueA
RegCloseKey
OpenProcessToken
RegSetValueExA
RegQueryValueExA
AdjustTokenPrivileges
RegDeleteValueA
RegCreateKeyExA
RegOpenKeyExA
RegEnumKeyExA
GetOpenFileNameA
GetStdHandle
GetConsoleOutputCP
GetFileAttributesA
WaitForSingleObject
GetDriveTypeA
DebugBreak
FlsGetValue
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
GetLocaleInfoA
RtlUnwindEx
FreeEnvironmentStringsW
SetStdHandle
GetTempPathA
WideCharToMultiByte
GetStringTypeA
FlsAlloc
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
GetFullPathNameA
GetExitCodeProcess
InitializeCriticalSection
LoadResource
AllocConsole
EncodePointer
SetLastError
GetEnvironmentVariableA
GetModuleFileNameW
IsDebuggerPresent
ExitProcess
FlushFileBuffers
RemoveDirectoryA
HeapSetInformation
SetThreadPriority
FindClose
RtlVirtualUnwind
UnhandledExceptionFilter
MultiByteToWideChar
GetModuleHandleA
CreateSemaphoreA
CreateThread
SetEnvironmentVariableW
SetUnhandledExceptionFilter
DecodePointer
SetEnvironmentVariableA
TerminateProcess
WriteConsoleA
SearchPathA
SetEndOfFile
RtlCaptureContext
GetCurrentThreadId
SetCurrentDirectoryA
WriteConsoleW
AreFileApisANSI
InitializeCriticalSectionAndSpinCount
HeapFree
EnterCriticalSection
SetHandleCount
LoadLibraryW
GetOEMCP
QueryPerformanceCounter
GetTickCount
FlsSetValue
LoadLibraryA
GetStartupInfoA
RtlPcToFileHeader
CreateDirectoryA
DeleteFileA
GetWindowsDirectoryA
GetCPInfo
GetProcAddress
GetProcessHeap
CompareStringW
FindFirstFileA
RtlLookupFunctionEntry
CompareStringA
GetTempFileNameA
FindNextFileA
DuplicateHandle
GetUserDefaultLCID
GetTimeZoneInformation
GetFileType
CreateFileA
HeapAlloc
LeaveCriticalSection
GetLastError
LCMapStringW
GetShortPathNameW
GetConsoleCP
LCMapStringA
GetEnvironmentStringsW
GetModuleFileNameA
GetShortPathNameA
SizeofResource
GetCurrentProcessId
LockResource
GetCommandLineW
GetCurrentDirectoryA
HeapSize
GetConsoleTitleA
GetCommandLineA
FlsFree
RaiseException
ReleaseSemaphore
SetFilePointer
ReadFile
SetConsoleTitleA
CloseHandle
GetACP
GetModuleHandleW
GetEnvironmentStrings
CreateProcessA
IsValidCodePage
HeapCreate
GetLongPathNameA
Sleep
FindResourceA
GetParent
EndDialog
EnumWindows
ShowWindow
FindWindowA
SetWindowPos
GetWindowThreadProcessId
SendDlgItemMessageA
MessageBoxW
GetWindowRect
SetDlgItemTextA
MessageBoxA
DialogBoxParamA
SetWindowTextA
GetLastActivePopup
IsWindowVisible
OffsetRect
GetDlgItem
IsIconic
RegisterClassA
LoadCursorA
LoadIconA
DefDlgProcA
CopyRect
GetDesktopWindow
SetForegroundWindow
ExitWindowsEx
Number of PE resources by type
RT_ICON 12
RT_DIALOG 3
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 15
ENGLISH US 3
PE resources
ExifTool file metadata
SubsystemVersion
5.2

InitializedDataSize
278528

ImageVersion
0.0

ProductName
AggreGate

FileVersionNumber
5.1.0.0

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x0017

ImageFileCharacteristics
Executable, Large address aware

CharacterSet
Unicode

LinkerVersion
9.0

FileTypeExtension
exe

OriginalFileName
aggregate_nm_5.01.00_windows-x64.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
5.01.00

TimeStamp
2012:12:13 23:22:29+00:00

FileType
Win64 EXE

PEType
PE32+

InternalName
AggreGate

ProductVersion
5.01.00

FileDescription
AggreGate

OSVersion
5.2

FileOS
Win32

LegalCopyright
Tibbo Technology Inc.

MachineType
AMD AMD64

CompanyName
Tibbo Technology Inc.

CodeSize
202240

FileSubtype
0

ProductVersionNumber
5.1.0.0

EntryPoint
0x1e75c

ObjectFileType
Unknown

File identification
MD5 07b03bddc6d2ced7970dfc130f678fb7
SHA1 6204b25e0dccb53dc93d2ba0a4c8380ddc58ad2b
SHA256 8bf66e3bd0aec4ceee44e4553c20175c526bac884585839c3f6dc45a6073ef25
ssdeep
3145728:zCs2KV/W0MoZbMP555RvNmQipENIboTgFlsq:zCs2Kw0M0YB5XNmVpENI0TuW

authentihash ec75351115d4ff813b3498b92a0068d99b62bbdd57981d0d9746f592b5c543af
imphash 0c701a6d20cd6a4c73fba957319f8333
File size 119.0 MB ( 124817920 bytes )
File type Win32 EXE
Magic literal
PE32+ executable for MS Windows (GUI) Mono/.Net assembly

TrID InstallShield setup (56.1%)
Win64 Executable (generic) (36.0%)
OS/2 Executable (generic) (2.6%)
Generic Win/DOS Executable (2.6%)
DOS Executable Generic (2.6%)
Tags
64bits peexe assembly overlay

VirusTotal metadata
First submission 2014-11-17 14:01:13 UTC ( 4 years, 4 months ago )
Last submission 2016-03-17 01:53:46 UTC ( 3 years ago )
File names AggreGate
411669
8bf66e3bd0aec4ceee44e4553c20175c526bac884585839c3f6dc45a6073ef25
aggregate_nm_5.01.00_windows-x64.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!