× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: ba0e55ca6d3a8e1f983c43c5c9f5a82c93ea86edbcad973a4d5d5bae64bc2e38
File name: WowMini.exe
Detection ratio: 1 / 56
Analysis date: 2016-11-30 23:00:42 UTC ( 11 months, 3 weeks ago ) View latest
Antivirus Result Update
Qihoo-360 HEUR/QVM10.1.0000.Malware.Gen 20161201
Ad-Aware 20161130
AegisLab 20161130
AhnLab-V3 20161130
Alibaba 20161130
ALYac 20161130
Antiy-AVL 20161130
Arcabit 20161130
Avast 20161130
AVG 20161130
Avira (no cloud) 20161130
AVware 20161130
Baidu 20161130
BitDefender 20161130
Bkav 20161130
CAT-QuickHeal 20161130
ClamAV 20161130
CMC 20161130
Comodo 20161130
CrowdStrike Falcon (ML) 20161024
Cyren 20161130
DrWeb 20161130
Emsisoft 20161130
ESET-NOD32 20161130
F-Prot 20161130
F-Secure 20161130
Fortinet 20161130
GData 20161130
Ikarus 20161130
Sophos ML 20161128
Jiangmin 20161130
K7AntiVirus 20161130
K7GW 20161130
Kaspersky 20161130
Kingsoft 20161201
Malwarebytes 20161130
McAfee 20161130
McAfee-GW-Edition 20161130
Microsoft 20161130
eScan 20161130
NANO-Antivirus 20161130
nProtect 20161130
Panda 20161130
Rising 20161130
Sophos AV 20161130
SUPERAntiSpyware 20161130
Symantec 20161130
Tencent 20161201
TheHacker 20161130
TrendMicro 20161130
TrendMicro-HouseCall 20161130
Trustlook 20161201
VBA32 20161130
VIPRE 20161130
ViRobot 20161130
WhiteArmor 20161125
Yandex 20161128
Zillya 20161130
Zoner 20161130
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Wow Mini

Product Wow Mini
Original name WowMini.exe
File version 1.1.3.15
Description Simple portable WoW client
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-11-30 21:41:18
Entry Point 0x00CFCA21
Number of sections 9
PE sections
PE imports
CryptDestroyKey
RegCreateKeyExW
RegCloseKey
RegDeleteKeyW
CopySid
CryptSetHashParam
RegDeleteValueW
RegNotifyChangeKeyValue
RegQueryValueExW
CryptCreateHash
RegFlushKey
OpenProcessToken
DeregisterEventSource
RegOpenKeyExW
RegisterEventSourceA
GetTokenInformation
CryptReleaseContext
CryptAcquireContextA
RegQueryInfoKeyW
RegEnumKeyExW
GetLengthSid
CryptDecrypt
CryptGetProvParam
CryptDestroyHash
CryptGetUserKey
RegEnumValueW
RegSetValueExW
FreeSid
CryptExportKey
CryptEnumProvidersA
ReportEventA
CryptSignHashA
CertEnumCertificatesInStore
CertCreateCertificateContext
CertFreeCertificateContext
CertCloseStore
CertOpenStore
CertFindCertificateInStore
CertDuplicateCertificateContext
CertGetCertificateContextProperty
CertFreeCertificateChain
CertGetCertificateChain
SetGraphicsMode
GetCharABCWidthsW
GetTextMetricsW
CombineRgn
CreateFontIndirectW
GetGlyphOutlineW
GdiFlush
RemoveFontMemResourceEx
GetCharABCWidthsFloatW
GetBitmapBits
GetCharABCWidthsI
BitBlt
GetDeviceCaps
DeleteDC
SetBkMode
SetWorldTransform
ChoosePixelFormat
GetObjectW
CreateBitmap
RemoveFontResourceExW
SetTextColor
GetRegionData
OffsetRgn
ExtTextOutW
GetTextFaceW
CreateDCW
GetStockObject
AddFontMemResourceEx
EnumFontFamiliesExW
GetOutlineTextMetricsW
GetDIBits
SetPixelFormat
SetTextAlign
SelectClipRgn
CreateCompatibleDC
CreateDIBSection
DeleteObject
CreateRectRgn
SelectObject
AddFontResourceExW
GetFontData
GetTextExtentPoint32W
CreateCompatibleBitmap
ImmGetVirtualKey
ImmSetCompositionWindow
ImmNotifyIME
ImmGetDefaultIMEWnd
ImmGetContext
ImmSetCandidateWindow
ImmReleaseContext
ImmGetCompositionStringW
ImmAssociateContext
GetAdaptersAddresses
GetAdaptersInfo
GetStdHandle
GetDriveTypeW
ReleaseMutex
FileTimeToSystemTime
GetFileAttributesA
WaitForSingleObject
FindNextFileA
HeapDestroy
EncodePointer
IsValidLocale
GetFileAttributesW
lstrcmpW
GetLocalTime
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
EnumSystemLocalesW
IsValidLanguageGroup
SetErrorMode
GetLogicalDrives
GetFileInformationByHandle
InitializeSListHead
GetLocaleInfoW
SetStdHandle
GetTempPathA
CheckRemoteDebuggerPresent
GetCPInfo
GetDiskFreeSpaceW
GetTempPathW
GetTimeZoneInformation
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
ResumeThread
GetFullPathNameA
GetOEMCP
LocalFree
FormatMessageW
GetThreadPriority
FreeLibraryAndExitThread
InitializeCriticalSection
OutputDebugStringW
FindClose
TlsGetValue
FindNextChangeNotification
SetFileAttributesW
OutputDebugStringA
SetLastError
GetUserDefaultUILanguage
PeekNamedPipe
DeviceIoControl
ReadConsoleInputA
CopyFileW
GetUserDefaultLangID
GetModuleFileNameW
TryEnterCriticalSection
IsDebuggerPresent
HeapAlloc
GetModuleFileNameA
FlushViewOfFile
LoadLibraryA
VerSetConditionMask
SetThreadPriority
UnhandledExceptionFilter
LoadLibraryExW
MultiByteToWideChar
VerifyVersionInfoW
SetFilePointerEx
MoveFileW
SetFilePointer
GetFullPathNameW
LockFileEx
CreateThread
SetEnvironmentVariableW
MoveFileExW
GetSystemDirectoryW
SetUnhandledExceptionFilter
CreateMutexW
IsProcessorFeaturePresent
ExitThread
SetHandleInformation
SetEnvironmentVariableA
GlobalMemoryStatus
FindCloseChangeNotification
GetModuleHandleExW
GlobalAlloc
ReadConsoleW
GetCurrentThreadId
GetProcAddress
HeapCreate
WriteConsoleW
AreFileApisANSI
InitializeCriticalSectionAndSpinCount
HeapFree
EnterCriticalSection
GetSystemTime
TerminateThread
LoadLibraryW
GetVersionExW
SetEvent
QueryPerformanceCounter
GetTickCount
TlsAlloc
VirtualProtect
FlushFileBuffers
GetModuleHandleW
RtlUnwind
FreeLibrary
GlobalSize
UnlockFile
SystemTimeToFileTime
DecodePointer
GetFileSize
OpenProcess
DeleteFileA
GetDateFormatW
GetStartupInfoW
CreateDirectoryW
DeleteFileW
GetUserDefaultLCID
GetProcessHeap
CreateFileMappingW
CompareStringW
RemoveDirectoryW
FreeEnvironmentStringsW
FindFirstFileExA
FindNextFileW
FormatMessageA
GetDiskFreeSpaceA
HeapValidate
ResetEvent
GetTempFileNameA
CreateFileMappingA
FindFirstFileW
TerminateProcess
DuplicateHandle
FindFirstFileExW
WaitForMultipleObjects
CreateEventW
CreateFileW
GetConsoleWindow
GetFileType
TlsSetValue
CreateFileA
ExitProcess
GetCurrencyFormatW
LeaveCriticalSection
GetNativeSystemInfo
GetLastError
FlushConsoleInputBuffer
LCMapStringW
UnmapViewOfFile
GetSystemInfo
GlobalFree
GetConsoleCP
GetTimeFormatW
GetVolumeInformationW
GetEnvironmentStringsW
GlobalUnlock
QueryPerformanceFrequency
GetUserGeoID
FindFirstChangeNotificationW
CreateProcessW
HeapCompact
WaitForSingleObjectEx
SwitchToThread
GetCurrentDirectoryW
GetCurrentProcessId
LockFile
GetCommandLineW
WideCharToMultiByte
HeapSize
GetCommandLineA
GetCurrentThread
ExpandEnvironmentStringsW
RaiseException
MapViewOfFile
TlsFree
GetModuleHandleA
ReadFile
SetEndOfFile
CloseHandle
UnlockFileEx
GetACP
GlobalLock
GetGeoInfoW
GetFileAttributesExW
GetLongPathNameW
IsValidCodePage
SetConsoleMode
WriteFile
VirtualFree
Sleep
SetConsoleCtrlHandler
SystemTimeToTzSpecificLocalTime
VirtualAlloc
VariantChangeType
SysStringLen
SystemTimeToVariantTime
SysAllocStringLen
SysAllocString
SysFreeString
VariantInit
SHBrowseForFolderW
Ord(155)
ShellExecuteW
SHGetPathFromIDListW
SHGetFileInfoW
SHParseDisplayName
SHGetSpecialFolderPathW
SHGetMalloc
CommandLineToArgvW
GetForegroundWindow
SetWindowRgn
SetWindowPos
IsWindow
EndPaint
SetMenuItemInfoW
GetDC
DestroyCursor
GetAsyncKeyState
ChildWindowFromPointEx
SendMessageW
UnregisterClassW
GetClassInfoW
ToAscii
DefWindowProcW
CallNextHookEx
MsgWaitForMultipleObjectsEx
LoadImageW
GetWindowTextW
DestroyWindow
GetUserObjectInformationW
GetParent
GetCursorInfo
GetPropW
EnumWindows
CreateCaret
ShowWindow
GetQueueStatus
FlashWindowEx
SetPropW
EnumDisplayMonitors
PeekMessageW
SetWindowPlacement
GetClipboardFormatNameW
LoadIconW
TranslateMessage
DestroyCaret
CreateCursor
CharNextExA
GetIconInfo
SetParent
RegisterClassW
IsZoomed
GetWindowPlacement
GetKeyboardLayoutList
EnableMenuItem
TrackPopupMenuEx
SetTimer
GetKeyboardLayout
GetSysColorBrush
CreateWindowExW
GetWindowLongW
GetUpdateRect
GetDoubleClickTime
IsChild
SetFocus
RegisterWindowMessageW
GetMonitorInfoW
IsIconic
BeginPaint
SetCaretPos
KillTimer
MapVirtualKeyW
SetClipboardViewer
GetSystemMetrics
SetWindowLongW
GetWindowRect
SetCapture
ReleaseCapture
GetMessageExtraInfo
PostMessageW
ToUnicode
DrawIconEx
SetWindowTextW
RemovePropW
ClientToScreen
GetProcessWindowStation
GetKeyboardState
GetDesktopWindow
SetWindowsHookExW
LoadCursorW
GetSystemMenu
DispatchMessageW
SetForegroundWindow
NotifyWinEvent
WindowFromDC
GetCursorPos
GetCaretBlinkTime
ReleaseDC
HideCaret
CreateIconIndirect
GetCapture
ScreenToClient
MessageBeep
GetWindowThreadProcessId
MessageBoxW
GetMenu
RegisterClassExW
UnhookWindowsHookEx
MoveWindow
MessageBoxA
ChangeClipboardChain
AdjustWindowRectEx
GetSysColor
RegisterClipboardFormatW
GetKeyState
TrackMouseEvent
DestroyIcon
RealGetWindowClassW
IsWindowVisible
SetCursorPos
SystemParametersInfoW
InvalidateRect
CallWindowProcW
GetClientRect
GetCursor
GetFocus
GetAncestor
SetCursor
PlaySoundW
htonl
getsockname
WSARecvFrom
WSARecv
WSAStartup
WSASocketW
shutdown
htons
getpeername
select
WSAConnect
gethostname
getsockopt
WSAAccept
closesocket
ntohl
inet_addr
send
WSASend
WSAHtonl
WSAGetLastError
gethostbyaddr
listen
WSANtohl
__WSAFDIsSet
WSACleanup
gethostbyname
WSASetLastError
WSAAsyncSelect
recv
WSAIoctl
WSANtohs
setsockopt
bind
WSASendTo
D3DPERF_BeginEvent
D3DPERF_EndEvent
Direct3DCreate9
D3DPERF_SetMarker
D3DPERF_GetStatus
OleUninitialize
CoUninitialize
CoInitialize
CoTaskMemAlloc
OleFlushClipboard
ReleaseStgMedium
CoCreateGuid
RegisterDragDrop
CoCreateInstance
CoLockObjectExternal
DoDragDrop
RevokeDragDrop
OleSetClipboard
CoGetMalloc
OleGetClipboard
OleIsCurrentClipboard
CoTaskMemFree
StringFromGUID2
OleInitialize
PE exports
Number of PE resources by type
RT_ICON 6
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 9
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
6.0

LinkerVersion
14.0

ImageVersion
1.1

FileSubtype
0

FileVersionNumber
1.1.3.15

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
11250688

EntryPoint
0xcfca21

OriginalFileName
WowMini.exe

MIMEType
application/octet-stream

LegalCopyright
Wow Mini

FileVersion
1.1.3.15

TimeStamp
2016:11:30 22:41:18+01:00

FileType
Win32 EXE

PEType
PE32

ProductVersion
1.1.3.15

FileDescription
Simple portable WoW client

OSVersion
6.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CodeSize
13996544

ProductName
Wow Mini

ProductVersionNumber
1.1.3.15

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 6a0d782e0dcb9ceca8cb1d2f0eb5ff0f
SHA1 4e3d0341fc14f7b2918e31c72c650933be2ec3dd
SHA256 ba0e55ca6d3a8e1f983c43c5c9f5a82c93ea86edbcad973a4d5d5bae64bc2e38
ssdeep
393216:uMMD9W2/95j6l16AVLl9HP62FCdPcSJsv6tWKFdu9C:uMMD9W2/HOlAoB9HPNCdP

authentihash 9370ed70e02b46775eef4ea4ff6c1148925bd170d4a5318534964030932cb9b4
imphash 4534c3e24dd68637f7af7a59425e9626
File size 24.0 MB ( 25175552 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 EXE PECompact compressed (generic) (53.4%)
Win64 Executable (generic) (35.5%)
Win32 Executable (generic) (5.8%)
Generic Win/DOS Executable (2.5%)
DOS Executable Generic (2.5%)
Tags
peexe

VirusTotal metadata
First submission 2016-11-30 23:00:42 UTC ( 11 months, 3 weeks ago )
Last submission 2017-04-13 11:53:01 UTC ( 7 months, 1 week ago )
File names WowMini.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!