× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: a08b83d5d90875e662f0704739218e3369a00fd460568382389bd25b2f8fab66
File name: veusz-3.0.1.1-windows-setup.exe
Detection ratio: 2 / 66
Analysis date: 2018-08-30 09:48:27 UTC ( 5 months, 3 weeks ago ) View latest
Antivirus Result Update
Baidu Win32.Trojan.WisdomEyes.16070401.9500.9996 20180830
Bkav HW32.Packed. 20180830
Ad-Aware 20180830
AegisLab 20180830
AhnLab-V3 20180830
Alibaba 20180713
ALYac 20180830
Antiy-AVL 20180830
Arcabit 20180830
Avast 20180830
Avast-Mobile 20180830
AVG 20180830
Avira (no cloud) 20180830
AVware 20180823
Babable 20180822
BitDefender 20180830
CAT-QuickHeal 20180829
ClamAV 20180830
CMC 20180830
Comodo 20180830
CrowdStrike Falcon (ML) 20180723
Cybereason 20180225
Cyren 20180830
DrWeb 20180830
eGambit 20180830
Emsisoft 20180830
Endgame 20180730
ESET-NOD32 20180830
F-Prot 20180830
F-Secure 20180830
Fortinet 20180830
GData 20180830
Sophos ML 20180717
Jiangmin 20180830
K7AntiVirus 20180829
K7GW 20180830
Kaspersky 20180830
Kingsoft 20180830
Malwarebytes 20180830
MAX 20180830
McAfee 20180830
McAfee-GW-Edition 20180830
Microsoft 20180830
eScan 20180830
NANO-Antivirus 20180830
Palo Alto Networks (Known Signatures) 20180830
Panda 20180829
Qihoo-360 20180830
Rising 20180830
SentinelOne (Static ML) 20180701
Sophos AV 20180830
SUPERAntiSpyware 20180830
Symantec 20180830
Symantec Mobile Insight 20180829
TACHYON 20180830
Tencent 20180830
TheHacker 20180829
TotalDefense 20180830
TrendMicro 20180830
TrendMicro-HouseCall 20180830
Trustlook 20180830
VBA32 20180829
VIPRE 20180830
ViRobot 20180830
Webroot 20180830
Yandex 20180830
Zillya 20180829
ZoneAlarm by Check Point 20180830
Zoner 20180830
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Packers identified
F-PROT NSIS, appended
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2017-08-01 00:33:55
Entry Point 0x0000330D
Number of sections 5
PE sections
Overlays
MD5 166892af4a7c5eac2190401c412b181a
File type data
Offset 49664
Size 22723367
Entropy 8.00
PE imports
RegDeleteKeyA
LookupPrivilegeValueA
RegCloseKey
RegDeleteValueA
OpenProcessToken
RegSetValueExA
RegQueryValueExA
AdjustTokenPrivileges
RegEnumKeyA
RegEnumValueA
RegCreateKeyExA
RegOpenKeyExA
SetFileSecurityA
ImageList_Create
Ord(17)
ImageList_Destroy
ImageList_AddMasked
GetDeviceCaps
SelectObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetBkColor
DeleteObject
SetTextColor
GetLastError
lstrlenA
GetFileAttributesA
GlobalFree
WaitForSingleObject
GetExitCodeProcess
CopyFileA
ExitProcess
SetFileTime
GlobalUnlock
GetModuleFileNameA
RemoveDirectoryA
GetShortPathNameA
GetCurrentProcess
LoadLibraryExA
CompareFileTime
GetPrivateProfileStringA
WritePrivateProfileStringA
GetFileSize
lstrcatA
CreateDirectoryA
DeleteFileA
GetWindowsDirectoryA
SetErrorMode
MultiByteToWideChar
ExpandEnvironmentStringsA
GetCommandLineA
GlobalLock
GetFullPathNameA
GetModuleHandleA
GetTempPathA
CreateThread
lstrcmpiA
SetFilePointer
lstrcmpA
ReadFile
WriteFile
FindFirstFileA
CloseHandle
GetTempFileNameA
lstrcpynA
FindNextFileA
GetSystemDirectoryA
GetDiskFreeSpaceA
MoveFileExA
GetProcAddress
SetEnvironmentVariableA
SetFileAttributesA
FreeLibrary
MoveFileA
CreateProcessA
lstrcpyA
GlobalAlloc
SearchPathA
FindClose
Sleep
CreateFileA
GetTickCount
GetVersion
SetCurrentDirectoryA
MulDiv
SHGetFileInfoA
ShellExecuteExA
SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHFileOperationA
EmptyClipboard
GetMessagePos
CharPrevA
EndDialog
BeginPaint
PostQuitMessage
DefWindowProcA
GetClassInfoA
SetClassLongA
LoadBitmapA
SetWindowPos
GetSystemMetrics
IsWindow
AppendMenuA
GetWindowRect
DispatchMessageA
EnableWindow
SetDlgItemTextA
MessageBoxIndirectA
LoadImageA
GetDlgItemTextA
PeekMessageA
SetWindowLongA
IsWindowEnabled
GetSysColor
CheckDlgButton
GetDC
FindWindowExA
ReleaseDC
SystemParametersInfoA
CreatePopupMenu
wsprintfA
ShowWindow
SetClipboardData
IsWindowVisible
SendMessageA
DialogBoxParamA
GetClientRect
SetTimer
GetDlgItem
SetForegroundWindow
CreateDialogParamA
SetWindowTextA
EnableMenuItem
ScreenToClient
InvalidateRect
GetWindowLongA
SendMessageTimeoutA
CreateWindowExA
LoadCursorA
TrackPopupMenu
DrawTextA
DestroyWindow
FillRect
RegisterClassA
CharNextA
CallWindowProcA
GetSystemMenu
EndPaint
CloseClipboard
OpenClipboard
ExitWindowsEx
SetCursor
OleUninitialize
CoTaskMemFree
OleInitialize
CoCreateInstance
Number of PE resources by type
RT_ICON 7
RT_DIALOG 5
RT_GROUP_ICON 1
RT_MANIFEST 1
Number of PE resources by language
ENGLISH US 14
PE resources
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

FileTypeExtension
exe

TimeStamp
2017:08:01 01:33:55+01:00

FileType
Win32 EXE

PEType
PE32

CodeSize
25088

LinkerVersion
6.0

ImageFileCharacteristics
No relocs, Executable, No line numbers, No symbols, 32-bit

EntryPoint
0x330d

InitializedDataSize
118784

SubsystemVersion
4.0

ImageVersion
6.0

OSVersion
4.0

UninitializedDataSize
1024

File identification
MD5 c753ef0c243f76e4d04edc422508d2bd
SHA1 f8f5764f5628985b66460ff3072a3b51d6e15c4a
SHA256 a08b83d5d90875e662f0704739218e3369a00fd460568382389bd25b2f8fab66
ssdeep
393216:1ncre+SlsBdsoi9oWaGyHWE6vYDh6KGqXy/4l0XyUnR05zKCqEumYJw17XytxQzJ:9We+e4i96l6vYDh6rqXrlrUnR+kntSvJ

authentihash 364832894ee5a3540abc2d21a89f60f432eb6cba251f570a9d35b9cd95b14bad
imphash 57e98d9a5a72c8d7ad8fb7a6a58b3daf
File size 21.7 MB ( 22773031 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (64.5%)
Win32 Dynamic Link Library (generic) (13.6%)
Win32 Executable (generic) (9.3%)
OS/2 Executable (generic) (4.1%)
Generic Win/DOS Executable (4.1%)
Tags
nsis peexe overlay

VirusTotal metadata
First submission 2018-08-30 09:48:27 UTC ( 5 months, 3 weeks ago )
Last submission 2018-11-14 18:23:39 UTC ( 3 months, 1 week ago )
File names veusz-3.0.1.1-windows-setup.exe
veusz-3.0.1.1-windows-setup.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!