× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: b0256ed7a727aee6ea05b9dc457cf9c5df639e7171530408ce2652d224bfe68f
File name: Quick_Any2Ico.exe
Detection ratio: 0 / 69
Analysis date: 2018-12-11 18:25:41 UTC ( 1 month, 1 week ago ) View latest
Antivirus Result Update
Ad-Aware 20181211
AegisLab 20181211
AhnLab-V3 20181211
Alibaba 20180921
ALYac 20181211
Antiy-AVL 20181211
Arcabit 20181211
Avast 20181211
Avast-Mobile 20181211
AVG 20181211
Avira (no cloud) 20181211
Babable 20180918
Baidu 20181207
BitDefender 20181211
Bkav 20181211
CAT-QuickHeal 20181210
ClamAV 20181211
CMC 20181210
Comodo 20181211
CrowdStrike Falcon (ML) 20181022
Cybereason 20180225
Cylance 20181211
Cyren 20181211
DrWeb 20181211
eGambit 20181211
Emsisoft 20181211
Endgame 20181108
ESET-NOD32 20181211
F-Prot 20181211
F-Secure 20181211
Fortinet 20181211
GData 20181211
Ikarus 20181211
Sophos ML 20181128
Jiangmin 20181211
K7AntiVirus 20181211
K7GW 20181211
Kaspersky 20181211
Kingsoft 20181211
Malwarebytes 20181211
MAX 20181211
McAfee 20181211
McAfee-GW-Edition 20181211
Microsoft 20181211
eScan 20181211
NANO-Antivirus 20181211
Palo Alto Networks (Known Signatures) 20181211
Panda 20181211
Qihoo-360 20181211
Rising 20181211
SentinelOne (Static ML) 20181011
Sophos AV 20181211
SUPERAntiSpyware 20181205
Symantec 20181211
Symantec Mobile Insight 20181207
TACHYON 20181211
Tencent 20181211
TheHacker 20181210
TotalDefense 20181211
Trapmine 20181205
TrendMicro 20181211
TrendMicro-HouseCall 20181211
Trustlook 20181211
VBA32 20181211
ViRobot 20181211
Webroot 20181211
Yandex 20181211
Zillya 20181211
ZoneAlarm by Check Point 20181211
Zoner 20181211
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Authenticode signature block and FileVersionInfo properties
Copyright
Carifred © 2010 - 2019

Product Quick Any2Ico
Original name Quick Any2Ico.exe
Internal name Quick Any2Ico
File version 2.4.0.0
Description Quick Any2Ico
Comments Quick Any2Ico creates high quality icons from almost anything, including converting from pictures, extracting from resources, extracting the icon associated with a file object or document, or extracting a window's icon.
Signature verification Signed file, verified signature
Signing date 9:51 AM 12/8/2018
Signers
[+] Da Silva Alfrédo
Status Valid
Issuer COMODO RSA Code Signing CA
Valid from 12:00 AM 12/07/2018
Valid to 11:59 PM 12/06/2021
Valid usage Code Signing
Algorithm sha256RSA
Thumbprint 425A8DA5EAF5F446779B2256A17E8D22C516FC35
Serial number 00 BC BD 6E A1 B1 70 A0 6B 88 55 BA 36 26 9C 8E 7E
[+] COMODO RSA Code Signing CA
Status Valid
Issuer COMODO RSA Certification Authority
Valid from 12:00 AM 05/09/2013
Valid to 11:59 PM 05/08/2028
Valid usage Code Signing
Algorithm sha384RSA
Thumbprint B69E752BBE88B4458200A7C0F4F5B3CCE6F35B47
Serial number 2E 7C 87 CC 0E 93 4A 52 FE 94 FD 1C B7 CD 34 AF
[+] COMODO SECURE™
Status Valid
Issuer COMODO RSA Certification Authority
Valid from 12:00 AM 01/19/2010
Valid to 11:59 PM 01/18/2038
Valid usage Server Auth, Client Auth, Email Protection, Code Signing, Timestamp Signing, EFS, IPSEC Tunnel, IPSEC User
Algorithm sha384RSA
Thumbprint AFE5D244A8D1194230FF479FE2F897BBCD7A8CB4
Serial number 4C AA F9 CA DB 63 6F E0 1F F7 4E D8 5B 03 86 9D
Counter signers
[+] COMODO SHA-1 Time Stamping Signer
Status Valid
Issuer UTN-USERFirst-Object
Valid from 12:00 AM 12/31/2015
Valid to 06:40 PM 07/09/2019
Valid usage Timestamp Signing
Algorithm sha1RSA
Thumbrint 03A5B14663EB12023091B84A6D6A68BC871DE66B
Serial number 16 88 F0 39 25 5E 63 8E 69 14 39 07 E6 33 0B
[+] USERTrust (Code Signing)
Status Valid
Issuer UTN-USERFirst-Object
Valid from 06:31 PM 07/09/1999
Valid to 06:40 PM 07/09/2019
Valid usage EFS, Timestamp Signing, Code Signing
Algorithm sha1RSA
Thumbrint E12DFB4B41D7D9C32B30514BAC1D81D8385E2D46
Serial number 44 BE 0C 8B 50 00 24 B4 11 D3 36 2D E0 B3 5F 1B
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2018-12-08 08:51:51
Entry Point 0x000118BB
Number of sections 5
PE sections
Overlays
MD5 3d2b70c072fdb6b3048bc863e44fc633
File type data
Offset 370176
Size 11128
Entropy 7.43
PE imports
RegCreateKeyExW
RegCloseKey
FreeSid
AllocateAndInitializeSid
CheckTokenMembership
RegOpenKeyExW
RegQueryValueExW
ImageList_GetImageCount
Ord(413)
ImageList_Destroy
Ord(410)
Ord(411)
ImageList_Replace
Ord(412)
ImageList_Create
ImageList_DrawEx
ImageList_ReplaceIcon
ImageList_Add
GetSaveFileNameW
GetOpenFileNameW
PatBlt
OffsetRgn
CombineRgn
SetStretchBltMode
ExcludeClipRect
DeleteDC
SetBkMode
StretchBlt
GetObjectW
BitBlt
CreateDIBSection
SetTextColor
CreatePatternBrush
FillRgn
GetStockObject
GetDIBits
ExtSelectClipRgn
SelectClipRgn
CreateCompatibleDC
CreateFontW
GetBkColor
SetBrushOrgEx
CreateRectRgn
GetTextExtentPoint32W
CreateSolidBrush
SelectObject
SetBkColor
DeleteObject
CreateCompatibleBitmap
GetLastError
InitializeCriticalSectionAndSpinCount
HeapFree
GetStdHandle
EnterCriticalSection
LCMapStringW
LoadLibraryW
GetConsoleCP
RaiseException
GetOEMCP
QueryPerformanceCounter
IsDebuggerPresent
HeapAlloc
TlsAlloc
GetEnvironmentStringsW
FlushFileBuffers
GetFileAttributesW
RtlUnwind
VerifyVersionInfoW
VerSetConditionMask
GetProcessId
DeleteCriticalSection
HeapReAlloc
SizeofResource
GetConsoleMode
HeapSize
GetCurrentProcessId
SetLastError
LockResource
GetCommandLineW
WideCharToMultiByte
UnhandledExceptionFilter
LoadLibraryExW
MultiByteToWideChar
GetStartupInfoW
SetFilePointerEx
FreeEnvironmentStringsW
GetCommandLineA
GetProcAddress
InitializeSListHead
MoveFileExW
GetProcessHeap
ExitProcess
GetModuleFileNameW
QueryPerformanceFrequency
GetCPInfo
GetSystemDirectoryW
TlsFree
ExpandEnvironmentStringsW
GetSystemTimeAsFileTime
FindNextFileW
SetUnhandledExceptionFilter
WriteFile
GetCurrentProcess
DecodePointer
CloseHandle
IsProcessorFeaturePresent
TerminateProcess
GetACP
FindFirstFileExW
GetStringTypeW
GetModuleHandleW
FreeLibrary
LocalFree
SetStdHandle
GetLongPathNameW
GetModuleHandleExW
IsValidCodePage
LoadResource
FindResourceW
CreateFileW
FindClose
TlsGetValue
Sleep
GetFileType
TlsSetValue
EncodePointer
GetCurrentThreadId
SleepEx
WriteConsoleW
LeaveCriticalSection
DragQueryFileW
Ord(62)
DragFinish
SHGetFolderPathW
Ord(190)
Shell_NotifyIconW
Ord(155)
DragQueryPoint
ExtractAssociatedIconW
SHChangeNotify
Ord(6)
FindExecutableW
ShellExecuteExW
SHGetDesktopFolder
CommandLineToArgvW
PathFileExistsW
PathFindOnPathW
PathParseIconLocationW
SetFocus
MapWindowPoints
GetForegroundWindow
SetWindowRgn
ReleaseDC
DestroyAcceleratorTable
SetMenuDefaultItem
BeginPaint
SetClassLongW
DefWindowProcW
CopyIcon
DestroyMenu
ShowWindowAsync
SetSystemCursor
GetMessageW
SetCursor
SetMenuInfo
SetWindowPos
GetParent
GetSysColorBrush
GetSystemMetrics
SetWindowLongW
GetCursorPos
PeekMessageW
UnregisterClassW
GetWindowRect
DestroyIcon
EndPaint
UpdateWindow
GetWindowDC
EnumChildWindows
WindowFromPoint
ChildWindowFromPoint
AdjustWindowRectEx
TranslateMessage
GetAsyncKeyState
GetWindow
PostMessageW
RemoveMenu
RedrawWindow
GetSysColor
GetMenuItemID
CopyImage
EndDeferWindowPos
GetWindowRgn
GetMenuStringW
GetIconInfo
RegisterClassExW
SendMessageW
GetTopWindow
GetClassLongW
TranslateAcceleratorW
PtInRect
DrawIconEx
IsWindowVisible
GetUpdateRect
GetClientRect
SystemParametersInfoW
BringWindowToTop
IsWindow
DispatchMessageW
DeleteMenu
InvalidateRect
CreateWindowExW
LoadImageW
GetClassNameW
GetWindowLongW
GetClassInfoExW
IsDialogMessageW
FillRect
ShowWindow
GetWindowTextW
BeginDeferWindowPos
DeferWindowPos
SetMenuItemInfoW
LoadCursorW
GetFocus
GetDC
EnableWindow
SetForegroundWindow
GetMenuItemInfoW
DefDlgProcW
DestroyWindow
GdipBitmapUnlockBits
GdipGetImageEncodersSize
GdipAddPathLine
GdipBitmapLockBits
GdipCreateBitmapFromFile
GdipImageRotateFlip
GdipSaveImageToFile
GdipCloneBrush
GdipCreateBitmapFromGraphics
GdipDeleteBrush
GdipGetRegionHRgn
GdipCreateSolidFill
GdipSetSmoothingMode
GdipDrawPath
GdipCreateBitmapFromScan0
GdiplusShutdown
GdipCreatePen1
GdipDisposeImage
GdipCreatePath
Ord(1)
GdipCreateHBITMAPFromBitmap
GdiplusStartup
GdipDeleteGraphics
GdipFillRectangleI
GdipFillPath
GdipCreateBitmapFromStream
GdipCreateFromHDC
GdipGetImageEncoders
GdipCreateRegionPath
GdipDrawLineI
GdipGetImageWidth
GdipCreateLineBrushFromRectI
GdipAlloc
GdipCreateFromHWND
GdipDrawImageI
GdipDrawImageRectI
GdipSetPixelOffsetMode
GdipDrawImageRectRectI
GdipDeletePath
GdipDeletePen
GdipDeleteRegion
GdipSetInterpolationMode
GdipSaveImageToStream
GdipClosePathFigure
GdipSetCompositingQuality
GdipGetImageHeight
GdipFree
GdipCloneImage
GdipGetImageGraphicsContext
CoTaskMemFree
CreateStreamOnHGlobal
CoCreateInstance
CoUninitialize
CoInitialize
Number of PE resources by type
RT_ICON 10
RT_GROUP_ICON 4
RT_VERSION 1
RT_RCDATA 1
RT_MANIFEST 1
Number of PE resources by language
ENGLISH US 17
PE resources
Debug information
ExifTool file metadata
CodeSize
144384

SubsystemVersion
5.1

Comments
Quick Any2Ico creates high quality icons from almost anything, including converting from pictures, extracting from resources, extracting the icon associated with a file object or document, or extracting a window's icon.

LinkerVersion
14.16

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
2.4.0.0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
Quick Any2Ico

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Windows, Latin1

InitializedDataSize
227328

EntryPoint
0x118bb

OriginalFileName
Quick Any2Ico.exe

MIMEType
application/octet-stream

LegalCopyright
Carifred 2010 - 2019

FileVersion
2.4.0.0

TimeStamp
2018:12:08 09:51:51+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Quick Any2Ico

ProductVersion
2.4.0.0

UninitializedDataSize
0

OSVersion
5.1

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Carifred

LegalTrademarks
Carifred.com

ProductName
Quick Any2Ico

ProductVersionNumber
2.4.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 99863dde1854e491dd136905bcbcf47d
SHA1 035577762d07d9daf6e35394acfa61724a88bb22
SHA256 b0256ed7a727aee6ea05b9dc457cf9c5df639e7171530408ce2652d224bfe68f
ssdeep
6144:fvRZnEEbSwiu2OiUiid6idcTXAODm0SojSu3pl:fvRBEEbSwilUBdcDFSomi7

authentihash ff87ee51588d650d9533dce4ff666ff48dffc08beb3ecf5703e407409969f9ed
imphash c74865101072740f84200bdeb9ae2afe
File size 372.4 KB ( 381304 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win64 Executable (generic) (72.3%)
Win32 Executable (generic) (11.8%)
OS/2 Executable (generic) (5.3%)
Generic Win/DOS Executable (5.2%)
DOS Executable Generic (5.2%)
Tags
peexe signed overlay

VirusTotal metadata
First submission 2018-12-08 11:17:25 UTC ( 1 month, 1 week ago )
Last submission 2019-01-17 19:53:17 UTC ( 3 days, 13 hours ago )
File names Quick_Any2Ico v2.4.0.0.exe
Quick_Any2Ico.exe
Quick_Any2Ico.exe
Quick Any2Ico
Quick_Any2Ico.exe
Quick_Any2Ico v2.4.0.0.exe
Any2Ico.exe
Quick Any2Ico.exe
.
Quick_Any2Ico v2.4.0.0.exe
Quick_Any2Ico.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Opened mutexes
Runtime DLLs