× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: c181762a2f4daa32479fe2f85613e71e92d32a1026adab03db85b337fca47a45
File name: SeaToolsforWindowsSetup.exe
Detection ratio: 0 / 64
Analysis date: 2018-11-14 06:25:25 UTC ( 2 months, 1 week ago ) View latest
Antivirus Result Update
Ad-Aware 20181112
AegisLab 20181114
AhnLab-V3 20181114
Alibaba 20180921
ALYac 20181114
Antiy-AVL 20181114
Arcabit 20181114
Avast 20181114
Avast-Mobile 20181113
AVG 20181114
Avira (no cloud) 20181114
Babable 20180918
Baidu 20181114
BitDefender 20181114
Bkav 20181113
CAT-QuickHeal 20181113
CMC 20181114
CrowdStrike Falcon (ML) 20181022
Cybereason 20180225
Cylance 20181114
Cyren 20181114
DrWeb 20181114
eGambit 20181114
Emsisoft 20181114
Endgame 20181108
ESET-NOD32 20181114
F-Prot 20181114
F-Secure 20181114
Fortinet 20181114
GData 20181114
Sophos ML 20181108
Jiangmin 20181114
K7AntiVirus 20181113
K7GW 20181114
Kaspersky 20181114
Kingsoft 20181114
Malwarebytes 20181114
MAX 20181114
McAfee 20181114
McAfee-GW-Edition 20181114
Microsoft 20181114
eScan 20181114
NANO-Antivirus 20181114
Palo Alto Networks (Known Signatures) 20181114
Panda 20181113
Qihoo-360 20181114
Rising 20181114
SentinelOne (Static ML) 20181011
Sophos AV 20181114
SUPERAntiSpyware 20181114
Symantec 20181114
Symantec Mobile Insight 20181108
TACHYON 20181114
Tencent 20181114
TheHacker 20181113
TrendMicro-HouseCall 20181114
Trustlook 20181114
VBA32 20181113
VIPRE 20181113
ViRobot 20181114
Webroot 20181114
Yandex 20181113
Zillya 20181113
ZoneAlarm by Check Point 20181114
Zoner 20181114
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Authenticode signature block and FileVersionInfo properties
Copyright
2017 - Seagate Technology LLC

Product SeaTools for Windows
Signature verification Signed file, verified signature
Signing date 5:45 PM 11/1/2017
Signers
[+] Seagate Technology LLC
Status Valid
Issuer Symantec Class 3 SHA256 Code Signing CA
Valid from 1:00 AM 8/11/2016
Valid to 12:59 AM 9/11/2019
Valid usage Code Signing
Algorithm sha256RSA
Thumbprint 02C0BE81CDE29BFCCAD0F962C6A9D589F8DBE1E3
Serial number 5B 30 F3 FE 25 F6 7A D0 A6 C2 DF 7A BA 9B BB 89
[+] Symantec Class 3 SHA256 Code Signing CA
Status Valid
Issuer VeriSign Class 3 Public Primary Certification Authority - G5
Valid from 1:00 AM 12/10/2013
Valid to 12:59 AM 12/10/2023
Valid usage Client Auth, Code Signing
Algorithm sha256RSA
Thumbprint 007790F6561DAD89B0BCD85585762495E358F8A5
Serial number 3D 78 D7 F9 76 49 60 B2 61 7D F4 F0 1E CA 86 2A
[+] VeriSign
Status Valid
Issuer VeriSign Class 3 Public Primary Certification Authority - G5
Valid from 1:00 AM 11/8/2006
Valid to 12:59 AM 7/17/2036
Valid usage Server Auth, Client Auth, Email Protection, Code Signing
Algorithm sha1RSA
Thumbprint 4EB6D578499B1CCF5F581EAD56BE3D9B6744A5E5
Serial number 18 DA D1 9E 26 7D E8 BB 4A 21 58 CD CC 6B 3B 4A
Counter signers
[+] Symantec Time Stamping Services Signer - G4
Status Valid
Issuer Symantec Time Stamping Services CA - G2
Valid from 1:00 AM 10/18/2012
Valid to 12:59 AM 12/30/2020
Valid usage Timestamp Signing
Algorithm sha1RSA
Thumbrint 65439929B67973EB192D6FF243E6767ADF0834E4
Serial number 0E CF F4 38 C8 FE BF 35 6E 04 D8 6A 98 1B 1A 50
[+] Symantec Time Stamping Services CA - G2
Status Valid
Issuer Thawte Timestamping CA
Valid from 1:00 AM 12/21/2012
Valid to 12:59 AM 12/31/2020
Valid usage Timestamp Signing
Algorithm sha1RSA
Thumbrint 6C07453FFDDA08B83707C09B82FB3D15F35336B1
Serial number 7E 93 EB FB 7C C6 4E 59 EA 4B 9A 77 D4 06 FC 3B
[+] Thawte Timestamping CA
Status Valid
Issuer Thawte Timestamping CA
Valid from 1:00 AM 1/1/1997
Valid to 12:59 AM 1/1/2021
Valid usage Timestamp Signing
Algorithm md5RSA
Thumbrint BE36A4562FB2EE05DBB3D32323ADF445084ED656
Serial number 00
Packers identified
F-PROT NSIS, appended, UTF-8, Unicode, CAB
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2017-07-24 06:35:30
Entry Point 0x000031F1
Number of sections 5
PE sections
Overlays
MD5 f0f279e0279ae811c40bdff2a5363484
File type data
Offset 600576
Size 25442832
Entropy 8.00
PE imports
RegDeleteKeyA
LookupPrivilegeValueA
RegCloseKey
RegDeleteValueA
OpenProcessToken
RegSetValueExA
RegQueryValueExA
AdjustTokenPrivileges
RegEnumKeyA
RegEnumValueA
RegCreateKeyExA
RegOpenKeyExA
SetFileSecurityA
ImageList_Create
Ord(17)
ImageList_Destroy
ImageList_AddMasked
GetDeviceCaps
SelectObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetBkColor
DeleteObject
SetTextColor
GetLastError
lstrlenA
GetFileAttributesA
GlobalFree
WaitForSingleObject
GetExitCodeProcess
CopyFileA
ExitProcess
SetFileTime
GlobalUnlock
RemoveDirectoryA
GetModuleFileNameA
GetShortPathNameA
GetCurrentProcess
LoadLibraryExA
CompareFileTime
GetPrivateProfileStringA
WritePrivateProfileStringA
GetFileSize
lstrcatA
CreateDirectoryA
DeleteFileA
GetWindowsDirectoryA
SetErrorMode
MultiByteToWideChar
ExpandEnvironmentStringsA
GetCommandLineA
GetProcAddress
GetFullPathNameA
GetModuleHandleA
GetTempPathA
CreateThread
lstrcmpiA
SetFilePointer
lstrcmpA
ReadFile
WriteFile
FindFirstFileA
CloseHandle
GetTempFileNameA
lstrcpynA
FindNextFileA
GetSystemDirectoryA
GetDiskFreeSpaceA
MoveFileExA
GlobalLock
SetEnvironmentVariableA
SetFileAttributesA
FreeLibrary
MoveFileA
CreateProcessA
lstrcpyA
GlobalAlloc
SearchPathA
FindClose
Sleep
CreateFileA
GetTickCount
GetVersion
SetCurrentDirectoryA
MulDiv
SHGetFileInfoA
ShellExecuteExA
SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHFileOperationA
EmptyClipboard
GetMessagePos
CharPrevA
EndDialog
BeginPaint
PostQuitMessage
DefWindowProcA
GetClassInfoA
SetClassLongA
LoadBitmapA
SetWindowPos
GetSystemMetrics
IsWindow
AppendMenuA
GetWindowRect
DispatchMessageA
EnableWindow
SetDlgItemTextA
MessageBoxIndirectA
LoadImageA
GetDlgItemTextA
PeekMessageA
SetWindowLongA
IsWindowEnabled
GetSysColor
CheckDlgButton
GetDC
FindWindowExA
ReleaseDC
SystemParametersInfoA
CreatePopupMenu
wsprintfA
ShowWindow
SetClipboardData
IsWindowVisible
SendMessageA
DialogBoxParamA
GetClientRect
SetTimer
GetDlgItem
SetForegroundWindow
CreateDialogParamA
SetWindowTextA
EnableMenuItem
ScreenToClient
InvalidateRect
GetWindowLongA
SendMessageTimeoutA
CreateWindowExA
LoadCursorA
TrackPopupMenu
DrawTextA
DestroyWindow
FillRect
RegisterClassA
CharNextA
CallWindowProcA
GetSystemMenu
EndPaint
CloseClipboard
OpenClipboard
ExitWindowsEx
SetCursor
OleUninitialize
CoTaskMemFree
OleInitialize
CoCreateInstance
Number of PE resources by type
RT_ICON 9
RT_DIALOG 5
RT_GROUP_ICON 1
RT_VERSION 1
RT_MANIFEST 1
Number of PE resources by language
ENGLISH US 17
PE resources
ExifTool file metadata
UninitializedDataSize
1024

LinkerVersion
6.0

ImageVersion
6.0

FileSubtype
0

FileVersionNumber
1.4.0.6

LanguageCode
English (U.S.)

FileFlagsMask
0x0000

ImageFileCharacteristics
No relocs, Executable, No line numbers, No symbols, 32-bit

CharacterSet
Windows, Latin1

InitializedDataSize
162816

EntryPoint
0x31f1

MIMEType
application/octet-stream

Subsystem
Windows GUI

TimeStamp
2017:07:24 07:35:30+01:00

FileType
Win32 EXE

PEType
PE32

ProductVersion
installer: NSIS v3.02

SubsystemVersion
4.0

OSVersion
4.0

FileOS
Win32

LegalCopyright
2017 - Seagate Technology LLC

MachineType
Intel 386 or later, and compatibles

CompanyName
Seagate Technology LLC

CodeSize
25600

ProductName
SeaTools for Windows

ProductVersionNumber
1.4.0.6

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 f313785e7726efd10c77559db8c6a127
SHA1 8fc48ffb52046e905ad4d3b1d8c0b355c962de1f
SHA256 c181762a2f4daa32479fe2f85613e71e92d32a1026adab03db85b337fca47a45
ssdeep
786432:MQR3aYhEAXvhij1Pxwh05wsG/MRtcwp3LxY:xVhEAXvAjnwh05uo9p31Y

authentihash 7a708d505dd7eed4bf9ae48798f84299b4dcdcda6c122857df008c3160ccb597
imphash 3abe302b6d9a1256e6a915429af4ffd2
File size 24.8 MB ( 26043408 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable (generic) (42.7%)
OS/2 Executable (generic) (19.2%)
Generic Win/DOS Executable (18.9%)
DOS Executable Generic (18.9%)
Tags
nsis peexe signed overlay

VirusTotal metadata
First submission 2017-11-08 20:15:09 UTC ( 1 year, 2 months ago )
Last submission 2018-12-22 08:54:35 UTC ( 4 weeks, 1 day ago )
File names SeaToolsforWindows6Setup.exe
SeaToolsforWindowsSetup.exe
SeaToolsforWindowsSetup.exe
SeaToolsforWindowsSetup VT, 1 su 66).exe
SeaToolsforWindowsSetup.exe
SeaToolsforWindowsSetup.exe
SeaTools 1.4.0.6.exe
SeaToolsforWindowsSetup-1406.exe
SeaToolsforWindowsSetup.exe
SeaToolsforWindowsSetup notrojan 031217.exe
C181762A2F4DAA32479FE2F85613E71E92D32A1026ADAB03DB85B337FCA47A45.exe
SeaToolsforWindows1.4.0.6Setup.exe
SeaToolsforWindowsSetup.exe
SeaToolsforWindows.exe
SeaTools-Win1406.exe
SeaToolsforWindowsSetup.exe
SeaToolsforWindows6Setup.exe
1026541
SeaToolsforWindowsSetup.exe
SeaToolsforWindowsSetup(1).exe
SeaToolsforWindowsSetup_1.4.0.6.exe
SeaToolsforWindowsSetup.exe
SeaToolsforWindows6Setup.exe
SeaToolsforWindowsSetup1.exe
SeaToolsforWindowsSetup.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!