× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: abeafa4db059fc71950167cc15f1592f22953fa7186a88730a01f2c91a7f5168
File name: MCP-1-0-0-2.exe
Detection ratio: 0 / 43
Analysis date: 2012-09-20 21:24:19 UTC ( 6 years, 4 months ago )
Antivirus Result Update
Yandex 20120920
AhnLab-V3 20120920
AntiVir 20120920
Antiy-AVL 20120911
Avast 20120920
AVG 20120920
BitDefender 20120920
ByteHero 20120920
CAT-QuickHeal 20120920
ClamAV 20120920
Commtouch 20120920
Comodo 20120920
DrWeb 20120920
Emsisoft 20120919
eSafe 20120920
ESET-NOD32 20120920
F-Prot 20120920
F-Secure 20120920
Fortinet 20120920
GData 20120920
Ikarus 20120920
Jiangmin 20120920
K7AntiVirus 20120920
Kaspersky 20120920
Kingsoft 20120918
McAfee 20120920
McAfee-GW-Edition 20120920
Microsoft 20120920
Norman 20120920
nProtect 20120920
Panda 20120920
PCTools 20120920
Rising 20120920
Sophos AV 20120920
SUPERAntiSpyware 20120911
Symantec 20120920
TheHacker 20120920
TotalDefense 20120920
TrendMicro 20120920
TrendMicro-HouseCall 20120920
VBA32 20120920
VIPRE 20120920
ViRobot 20120920
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (c) 2012 PantherMan594

Publisher PantherMan594
Product MCPortable
Original name MCPortable.exe
Internal name MCP.exe
File version 1.0.0.1
Description MCPortable Installer
Packers identified
F-PROT 7Z
PEiD Armadillo v1.71
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2010-11-18 16:27:33
Entry Point 0x0001D262
Number of sections 5
PE sections
PE imports
AreFileApisANSI
GetLastError
GetStdHandle
EnterCriticalSection
FileTimeToSystemTime
lstrlenA
RemoveDirectoryW
WaitForSingleObject
SetEvent
GetCommandLineW
GetTickCount
SetFileTime
SetFileAttributesW
GetVersionExA
RemoveDirectoryA
DeleteFileA
GetModuleFileNameA
DeleteCriticalSection
GetStartupInfoA
SetFileAttributesA
FileTimeToLocalFileTime
GetCurrentDirectoryW
GetFileSize
lstrcatA
CreateDirectoryA
GetModuleHandleW
GetCurrentDirectoryA
FormatMessageW
MultiByteToWideChar
CreateDirectoryW
DeleteFileW
WaitForMultipleObjects
FormatMessageA
GetFullPathNameA
SetFilePointer
GetFullPathNameW
CloseHandle
WideCharToMultiByte
GetModuleFileNameW
GetModuleHandleA
ReadFile
WriteFile
GetCurrentProcess
FindFirstFileA
ResetEvent
FindFirstFileW
GetProcAddress
SetPriorityClass
LocalFree
MoveFileA
InitializeCriticalSection
CreateFileW
VirtualFree
CreateEventA
FindClose
Sleep
MoveFileW
SetEndOfFile
CreateFileA
VirtualAlloc
SetLastError
LeaveCriticalSection
_purecall
__p__fmode
malloc
__CxxFrameHandler
??1type_info@@UAE@XZ
memset
__dllonexit
_except_handler3
_onexit
wcslen
exit
_XcptFilter
memcmp
__setusermatherr
_controlfp
_adjust_fdiv
_acmdln
_CxxThrowException
__p__commode
free
__getmainargs
memcpy
memmove
_beginthreadex
_initterm
_exit
__set_app_type
Ord(6)
Ord(2)
Ord(9)
SHGetFileInfoA
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetMalloc
MapDialogRect
EndDialog
CharUpperW
KillTimer
ShowWindow
MessageBoxW
GetWindowRect
SetDlgItemTextA
PostMessageA
MoveWindow
DialogBoxParamW
SetWindowLongA
DialogBoxParamA
CharUpperA
LoadStringA
SystemParametersInfoA
SetWindowTextA
SendMessageW
GetWindowLongA
SendMessageA
LoadStringW
SetWindowTextW
GetDlgItem
ScreenToClient
InvalidateRect
wsprintfA
GetWindowTextLengthA
SetTimer
LoadCursorA
LoadIconA
IsDlgButtonChecked
GetWindowTextW
GetWindowTextLengthW
GetWindowTextA
SetCursor
CoUninitialize
CoInitialize
Number of PE resources by type
RT_ICON 15
RT_STRING 9
RT_DIALOG 4
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 30
ExifTool file metadata
UninitializedDataSize
0

InitializedDataSize
629248

ImageVersion
0.0

ProductName
MCPortable

FileVersionNumber
1.0.0.1

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
MCPortable Installer

CharacterSet
Unicode

LinkerVersion
6.0

FileOS
Windows NT 32-bit

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
1.0.0.1

TimeStamp
2010:11:18 17:27:33+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
MCP.exe

ProductVersion
1.0.0.1

SubsystemVersion
4.0

OSVersion
4.0

OriginalFilename
MCPortable.exe

LegalCopyright
Copyright (c) 2012 PantherMan594

MachineType
Intel 386 or later, and compatibles

CompanyName
PantherMan594

CodeSize
127488

FileSubtype
0

ProductVersionNumber
1.0.0.1

EntryPoint
0x1d262

ObjectFileType
Executable application

File identification
MD5 ae801b6952cfeef64f9d3ff6399f6096
SHA1 dfcdfc5e804c9c7d148f74a964c5dcbfe50014a5
SHA256 abeafa4db059fc71950167cc15f1592f22953fa7186a88730a01f2c91a7f5168
ssdeep
393216:uGcYKo0tOcEHWRwvBbuvA0ds/e09SubqVmlrhVn1w0KqF3iowtJbdHQ0myE:KYKo0QWavQrOevubzVRE8iow40e

File size 20.9 MB ( 21967258 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable Generic (68.0%)
Generic Win/DOS Executable (15.9%)
DOS Executable Generic (15.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
Tags
peexe armadillo

VirusTotal metadata
First submission 2012-09-20 21:24:19 UTC ( 6 years, 4 months ago )
Last submission 2012-09-20 21:24:19 UTC ( 6 years, 4 months ago )
File names MCP.exe
MCP-1-0-0-2.exe
MCPortable.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!