× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: a308fcbb10c2adcce242eef23460c24e4a4d32660186336a24b67297fdaff9a7
File name: Packer-example-1.exe
Detection ratio: 0 / 53
Analysis date: 2015-12-29 17:39:07 UTC ( 3 years, 2 months ago )
Antivirus Result Update
Ad-Aware 20151224
AegisLab 20151229
Yandex 20151229
AhnLab-V3 20151229
Alibaba 20151208
ALYac 20160106
Antiy-AVL 20151229
Arcabit 20151229
Avast 20151229
AVG 20151229
AVware 20151229
Baidu-International 20151229
BitDefender 20151229
Bkav 20151229
ByteHero 20151229
CAT-QuickHeal 20151229
ClamAV 20151229
CMC 20151228
Comodo 20151229
Cyren 20151229
DrWeb 20151229
Emsisoft 20151229
ESET-NOD32 20151229
F-Prot 20151229
F-Secure 20151229
Fortinet 20151229
GData 20151229
Ikarus 20151229
Jiangmin 20151229
K7AntiVirus 20151229
K7GW 20151229
Kaspersky 20151229
Malwarebytes 20151229
McAfee 20151229
McAfee-GW-Edition 20151229
Microsoft 20151229
eScan 20151229
NANO-Antivirus 20151229
nProtect 20151229
Panda 20151229
Qihoo-360 20151229
Rising 20151229
Sophos AV 20151229
SUPERAntiSpyware 20151229
Symantec 20151229
TheHacker 20151228
TrendMicro 20151229
TrendMicro-HouseCall 20151229
VBA32 20151229
VIPRE 20151229
ViRobot 20151229
Zillya 20151229
Zoner 20151229
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Authenticode signature block and FileVersionInfo properties
Copyright
Videopanoramas.com

Publisher Phoscode SL
Product VideoPanoramas 3D Plugin
Original name npvideopanoramas.dll
Internal name VideoPanoramasVRX
File version 0.9.2.2
Description VideoPanoramas 3D Plugin 0,9,2,2
Signature verification Signed file, verified signature
Signing date 6:35 PM 12/29/2015
Signers
[+] Phoscode SL
Status Valid
Issuer None
Valid from 1:00 AM 1/17/2013
Valid to 12:59 AM 1/18/2018
Valid usage Code Signing
Algorithm SHA1
Thumbprint CEA92D4292FB7C62CB7A21E08D695529B1646D06
Serial number 00 B2 5A 4B 27 51 60 0A 88 98 64 61 D3 A9 C2 DC 58
[+] COMODO Code Signing CA 2
Status Valid
Issuer None
Valid from 1:00 AM 8/24/2011
Valid to 11:48 AM 5/30/2020
Valid usage Code Signing
Algorithm SHA1
Thumbprint B64771392538D1EB7A9281998791C14AFD0C5035
Serial number 10 70 9D 4F F5 54 08 D7 30 60 01 D8 EA 91 75 BB
[+] UTN-USERFirst-Object
Status Valid
Issuer None
Valid from 9:09 AM 6/7/2005
Valid to 11:48 AM 5/30/2020
Valid usage All
Algorithm SHA1
Thumbprint 8AD5C9987E6F190BD6F5416E2DE44CCD641D8CDA
Serial number 42 1A F2 94 09 84 19 1F 52 0A 4B C6 24 26 A7 4B
[+] The USERTrust Network?
Status Valid
Issuer None
Valid from 11:48 AM 5/30/2000
Valid to 11:48 AM 5/30/2020
Valid usage Server Auth, Client Auth, Email Protection, Code Signing, Timestamp Signing, EFS, IPSEC Tunnel, IPSEC User
Algorithm SHA1
Thumbprint 02FAF3E291435468607857694DF5E45B68851868
Serial number 01
Counter signers
[+] COMODO Time Stamping Signer
Status Valid
Issuer None
Valid from 1:00 AM 5/5/2015
Valid to 12:59 AM 1/1/2016
Valid usage Timestamp Signing
Algorithm SHA1
Thumbrint DF946A5E503015777FD22F46B5624ECD27BEE376
Serial number 00 9F EA C8 11 B0 F1 62 47 A5 FC 20 D8 05 23 AC E6
[+] UTN-USERFirst-Object
Status Valid
Issuer None
Valid from 9:09 AM 6/7/2005
Valid to 11:48 AM 5/30/2020
Valid usage All
Algorithm SHA1
Thumbrint 8AD5C9987E6F190BD6F5416E2DE44CCD641D8CDA
Serial number 42 1A F2 94 09 84 19 1F 52 0A 4B C6 24 26 A7 4B
[+] The USERTrust Network?
Status Valid
Issuer None
Valid from 11:48 AM 5/30/2000
Valid to 11:48 AM 5/30/2020
Valid usage Server Auth, Client Auth, Email Protection, Code Signing, Timestamp Signing, EFS, IPSEC Tunnel, IPSEC User
Algorithm SHA1
Thumbrint 02FAF3E291435468607857694DF5E45B68851868
Serial number 01
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2015-09-26 22:57:16
Entry Point 0x000D8598
Number of sections 5
PE sections
Overlays
MD5 1dd145c2d0ae1df04cf592b0d2876c96
File type data
Offset 1975296
Size 5034784
Entropy 8.00
PE imports
CryptDestroyKey
RegCreateKeyExW
RegDeleteValueW
CryptReleaseContext
RegCloseKey
OpenProcessToken
RegSetValueExW
RegOpenKeyExW
RegEnumValueW
RegEnumKeyW
CryptAcquireContextW
AdjustTokenPrivileges
LookupPrivilegeValueW
CryptImportKey
RegDeleteKeyW
RegQueryValueExW
RegQueryValueW
GetSaveFileNameW
GetOpenFileNameW
GetWindowExtEx
SetMapMode
TextOutW
CreateFontIndirectW
OffsetRgn
CreatePen
GetRgnBox
SaveDC
SetTextAlign
CreateRectRgnIndirect
LPtoDP
CombineRgn
GetClipBox
GetPixel
SetRectRgn
GetDeviceCaps
OffsetViewportOrgEx
DeleteDC
RestoreDC
GetMapMode
CreateSolidBrush
GetRegionData
GetObjectW
BitBlt
CreateDIBSection
SetTextColor
ChoosePixelFormat
CreatePatternBrush
SelectObject
ExtTextOutW
CreateEllipticRgn
CreateBitmap
RectVisible
GetStockObject
SetViewportOrgEx
ScaleWindowExtEx
SetBkColor
PtVisible
SetPixelFormat
ExtSelectClipRgn
SelectClipRgn
CreateCompatibleDC
GetTextExtentPoint32W
Escape
SwapBuffers
ScaleViewportExtEx
CreateRectRgn
GetBkColor
DeleteObject
Ellipse
SetWindowExtEx
GetTextColor
SetWindowOrgEx
DPtoLP
SetBkMode
GetViewportExtEx
SetViewportExtEx
CreateCompatibleBitmap
GetStdHandle
GetDriveTypeW
FileTimeToSystemTime
GetOverlappedResult
SetEvent
SetEndOfFile
EncodePointer
GetFileAttributesW
lstrcmpW
GetLocalTime
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
LocalAlloc
EnumSystemLocalesW
SetErrorMode
FreeEnvironmentStringsW
GetLocaleInfoW
WaitCommEvent
SetStdHandle
GetFileTime
GetCPInfo
InterlockedExchange
WriteFile
WaitForSingleObject
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
ResumeThread
FreeLibrary
LocalFree
FormatMessageW
AddVectoredExceptionHandler
InitializeCriticalSection
OutputDebugStringW
GlobalHandle
FindClose
TlsGetValue
GetFullPathNameW
OutputDebugStringA
GetCurrentThread
SetLastError
GetUserDefaultUILanguage
GetSystemTime
InterlockedDecrement
GlobalFindAtomW
lstrcpynW
LoadResource
GetModuleFileNameW
Beep
IsDebuggerPresent
HeapAlloc
GetStringTypeExW
lstrcmpiW
QueryPerformanceFrequency
SetThreadPriority
ReleaseSemaphore
GetVolumeInformationW
LoadLibraryExW
MultiByteToWideChar
SetFilePointerEx
GetPrivateProfileStringW
SetFilePointer
SetFileAttributesW
GlobalAddAtomW
CreateThread
GetSystemDirectoryW
MoveFileExW
GetSystemDefaultUILanguage
SetUnhandledExceptionFilter
MulDiv
IsProcessorFeaturePresent
ExitThread
DecodePointer
SetEnvironmentVariableA
TerminateProcess
CreateSemaphoreW
GetModuleHandleExW
SetCurrentDirectoryW
VirtualQuery
GetDiskFreeSpaceExW
CreateEventW
ReadConsoleW
GetVersion
GetProcAddress
WriteConsoleW
InitializeCriticalSectionAndSpinCount
HeapFree
EnterCriticalSection
LoadLibraryW
GetLastError
GetVersionExW
GetOEMCP
QueryPerformanceCounter
GetTickCount
TlsAlloc
VirtualProtect
FlushFileBuffers
LoadLibraryA
RtlUnwind
SetLocalTime
CopyFileW
LeaveCriticalSection
UnlockFile
GetFileSize
GlobalDeleteAtom
GetModuleHandleW
GetDateFormatW
SetCommMask
GetStartupInfoW
CreateDirectoryW
DeleteFileW
GetUserDefaultLCID
GetPrivateProfileIntW
GetProcessHeap
GetTimeFormatW
lstrcpyW
GetFileSizeEx
GlobalReAlloc
ExpandEnvironmentStringsW
lstrcmpA
FindNextFileW
ResetEvent
FindFirstFileW
IsValidLocale
DuplicateHandle
WaitForMultipleObjects
GlobalLock
GlobalAlloc
GetTimeZoneInformation
SetCommState
CreateFileW
GetFileType
TlsSetValue
ExitProcess
InterlockedIncrement
GlobalGetAtomNameW
LocalReAlloc
LCMapStringW
GetSystemInfo
lstrlenA
GlobalFree
GetConsoleCP
GetThreadPriority
CompareStringW
GetThreadLocale
GetEnvironmentStringsW
GlobalUnlock
LockFile
lstrlenW
FileTimeToLocalFileTime
SizeofResource
GetCurrentDirectoryW
GetCurrentProcessId
LockResource
GetCommandLineW
HeapQueryInformation
WideCharToMultiByte
HeapSize
WritePrivateProfileStringW
SuspendThread
RaiseException
UnhandledExceptionFilter
TlsFree
GetModuleHandleA
ReadFile
GetCommState
GlobalFlags
CloseHandle
GetACP
GetCurrentThreadId
FreeResource
GetFileAttributesExW
IsValidCodePage
FindResourceW
VirtualFree
Sleep
VirtualAlloc
LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow
SysStringLen
SysStringByteLen
VariantChangeType
SysAllocString
SafeArrayCreate
VariantCopy
SafeArrayGetElemsize
VariantInit
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayUnaccessData
SafeArrayDestroy
SafeArrayGetUBound
SysFreeString
SysAllocStringByteLen
OleCreateFontIndirect
VariantTimeToSystemTime
SystemTimeToVariantTime
SysAllocStringLen
VariantClear
GetErrorInfo
SafeArrayGetDim
glTexCoord2f
glTexSubImage2D
glClearColor
glDisable
wglCreateContext
glEnd
glHint
glBegin
glColor4f
glBindTexture
glTexImage2D
glGetString
glEnable
glClear
glLoadIdentity
wglGetProcAddress
glBlendFunc
glDeleteTextures
glShadeModel
wglMakeCurrent
glVertex3f
glViewport
glClearDepth
wglDeleteContext
glTexParameterf
glGenTextures
glMatrixMode
glDepthFunc
glPixelStorei
glLoadMatrixf
AMGetErrorTextW
DragQueryFileW
SHAddToRecentDocs
DragFinish
DragAcceptFiles
ShellExecuteW
SHGetPathFromIDListW
FindExecutableW
SHGetFileInfoW
SHGetSpecialFolderPathW
SHGetMalloc
SHBrowseForFolderW
PathIsUNCW
PathStripToRootW
PathRemoveFileSpecW
PathFindExtensionW
PathFindFileNameW
SetFocus
ChangeDisplaySettingsW
GetMessagePos
SetWindowRgn
RedrawWindow
SetMenuItemBitmaps
LoadBitmapW
SetRectEmpty
DestroyMenu
PostQuitMessage
GetForegroundWindow
SetWindowPos
GetNextDlgTabItem
IsWindow
GrayStringW
EndPaint
WindowFromPoint
CopyRect
DrawIcon
GetMessageTime
SetMenuItemInfoW
SetActiveWindow
GetMenuItemID
GetAsyncKeyState
ReleaseDC
GetDlgCtrlID
SendMessageW
UnregisterClassW
GetClassInfoW
GetMenuItemInfoW
DrawTextW
SetScrollPos
CallNextHookEx
LoadImageW
GetActiveWindow
ShowCursor
GetWindowTextW
PostThreadMessageW
CopyAcceleratorTableW
GetWindowTextLengthW
MsgWaitForMultipleObjects
ScrollWindow
InvalidateRgn
DestroyWindow
GetClassInfoExW
UpdateWindow
GetPropW
EqualRect
GetMessageW
ShowWindow
GetQueueStatus
GetNextDlgGroupItem
SetPropW
GetDesktopWindow
PeekMessageW
EnableWindow
SetWindowPlacement
CharUpperW
LoadIconW
TranslateMessage
IsWindowEnabled
GetWindow
LoadAcceleratorsW
SetParent
RegisterClassW
GetWindowPlacement
DrawMenuBar
IsIconic
GetSubMenu
SetTimer
IsDialogMessageW
FillRect
SetWindowContextHelpId
DeferWindowPos
RealChildWindowFromPoint
CreateWindowExW
TabbedTextOutW
GetWindowLongW
GetMenuStringW
IsChild
MapWindowPoints
RegisterWindowMessageW
GetMonitorInfoW
BeginPaint
OffsetRect
DefWindowProcW
GetScrollPos
KillTimer
CheckMenuRadioItem
GetParent
SendDlgItemMessageA
GetSystemMetrics
SetWindowLongW
SetScrollRange
GetWindowRect
InflateRect
SetCapture
ReleaseCapture
EnumChildWindows
IntersectRect
ShowOwnedPopups
PostMessageW
EndDialog
DrawTextExW
CreatePopupMenu
CheckMenuItem
GetClassLongW
GetLastActivePopup
PtInRect
SetWindowTextW
GetDlgItem
GetMenuCheckMarkDimensions
SetCursor
BringWindowToTop
ClientToScreen
TrackPopupMenu
ReuseDDElParam
GetMenuItemCount
AttachThreadInput
ValidateRect
SetWindowsHookExW
LoadCursorW
EnumDisplaySettingsW
FindWindowExW
GetDC
InsertMenuW
SetForegroundWindow
ExitWindowsEx
WindowFromDC
GetCursorPos
CreateDialogIndirectParamW
MapDialogRect
GetScrollRange
GetScrollInfo
ModifyMenuW
FindWindowW
GetCapture
ScreenToClient
MessageBeep
LoadMenuW
RemoveMenu
GetWindowThreadProcessId
GetSysColorBrush
ShowScrollBar
MessageBoxW
GetMenu
UnhookWindowsHookEx
MoveWindow
AppendMenuW
GetWindowDC
AdjustWindowRectEx
GetSysColor
DispatchMessageW
RegisterClipboardFormatW
SetScrollInfo
GetKeyState
EndDeferWindowPos
EnableMenuItem
GetTopWindow
BeginDeferWindowPos
WinHelpW
UnpackDDElParam
SetCursorPos
SystemParametersInfoW
MonitorFromWindow
SetRect
DeleteMenu
InvalidateRect
CharNextW
CallWindowProcW
GetClassNameW
GetClientRect
IsRectEmpty
GetCursor
GetFocus
InsertMenuItemW
IsWindowVisible
TranslateAcceleratorW
SetMenu
RemovePropW
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
InternetSetOptionExW
HttpQueryInfoW
InternetGetLastResponseInfoW
InternetQueryDataAvailable
InternetConnectW
InternetWriteFile
InternetReadFile
InternetCloseHandle
InternetSetStatusCallbackW
HttpSendRequestW
InternetErrorDlg
InternetSetFilePointer
InternetOpenW
HttpOpenRequestW
HttpAddRequestHeadersW
timeKillEvent
mmioInstallIOProcW
PlaySoundW
mciGetErrorStringW
timeGetTime
mciSendStringW
timeEndPeriod
timeSetEvent
joyGetPosEx
joyGetDevCapsW
timeBeginPeriod
ClosePrinter
DocumentPropertiesW
OpenPrinterW
setsockopt
getaddrinfo
gethostname
socket
recv
WSACleanup
send
ioctlsocket
WSAStartup
gethostbyname
select
accept
connect
shutdown
bind
htons
closesocket
WSAGetLastError
listen
GdiplusShutdown
OleUninitialize
CoUninitialize
StgOpenStorageOnILockBytes
CreateStreamOnHGlobal
OleFlushClipboard
CoCreateGuid
CoRegisterMessageFilter
CLSIDFromString
CreateILockBytesOnHGlobal
CoGetClassObject
OleDraw
CoInitialize
OleInitialize
CoCreateInstance
CoTaskMemAlloc
CoInitializeEx
CoRevokeClassObject
StgCreateDocfileOnILockBytes
CLSIDFromProgID
CoFreeUnusedLibraries
OleIsCurrentClipboard
CoTaskMemFree
OleUIBusyW
Number of PE resources by type
RT_BITMAP 43
LOCALIZE 30
FST 24
RT_DIALOG 20
RT_GROUP_CURSOR 20
RT_CURSOR 20
RT_ICON 10
RT_MENU 6
RT_STRING 5
Struct(240) 4
RT_HTML 2
RT_GROUP_ICON 2
SCRIPTS 1
JPG 1
RT_MANIFEST 1
CAB 1
RT_VERSION 1
RGN 1
Number of PE resources by language
SPANISH MODERN 192
PE resources
ExifTool file metadata
UninitializedDataSize
0

InitializedDataSize
1098240

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
0.9.2.2

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
VideoPanoramas 3D Plugin 0,9,2,2

CharacterSet
Windows, Latin1

LinkerVersion
11.0

EntryPoint
0xd8598

OriginalFileName
npvideopanoramas.dll

MIMEType
application/x-devalvrx

LegalCopyright
Videopanoramas.com

FileExtents
dvl

FileOpenName
VideoPanoramas File (*.dvl)

FileVersion
0.9.2.2

TimeStamp
2015:09:26 23:57:16+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
VideoPanoramasVRX

ProductVersion
0.9.2.2

SubsystemVersion
5.1

OSVersion
5.1

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
www.videopanoramas.com

CodeSize
1122304

ProductName
VideoPanoramas 3D Plugin

ProductVersionNumber
0.9.2.2

FileTypeExtension
exe

ObjectFileType
Dynamic link library

File identification
MD5 2b90228a0b248c997659e95ba348633b
SHA1 17f15c8b98b71df80e1e6d32a0930af5a4e4e1d6
SHA256 a308fcbb10c2adcce242eef23460c24e4a4d32660186336a24b67297fdaff9a7
ssdeep
98304:bUjU0ZqxglsJfF4/yVwf0sxuLnvFTlx6b3TfdgiqCeXUTMuVukw/R:ojLJl/tf0sALtqb3bdJwSF8/R

authentihash 581c0ff2be52b0cec9264170070a6bf5a89a44bc4f09351c3006801245924152
imphash efae9adf43e00dfb16ef825b854d8393
File size 6.7 MB ( 7010080 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (67.4%)
Win32 Dynamic Link Library (generic) (14.2%)
Win32 Executable (generic) (9.7%)
Generic Win/DOS Executable (4.3%)
DOS Executable Generic (4.3%)
Tags
peexe signed overlay

VirusTotal metadata
First submission 2015-12-29 17:39:07 UTC ( 3 years, 2 months ago )
Last submission 2015-12-29 17:39:07 UTC ( 3 years, 2 months ago )
File names VideoPanoramasVRX
npvideopanoramas.dll
Packer-example-1.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Created processes
Created mutexes
Opened mutexes
Searched windows
Hooking activity
Runtime DLLs
Additional details
The file installs an application-defined hook procedure into a hook chain. You would install a hook procedure to monitor the system for certain types of events. These events are associated either with a specific thread or with all threads in the same desktop as the calling thread. This is done making use of the SetWindowsHook Windows API function.
UDP communications