× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: c701469297a311c47564e7f230569b50689f0e7be1b80ec8bd61cceaac002738
File name: ja2_2.exe
Detection ratio: 0 / 43
Analysis date: 2012-09-29 04:45:11 UTC ( 6 years, 5 months ago ) View latest
Antivirus Result Update
Yandex 20120928
AhnLab-V3 20120928
AntiVir 20120928
Antiy-AVL 20120928
Avast 20120928
AVG 20120928
BitDefender 20120928
ByteHero 20120918
CAT-QuickHeal 20120927
ClamAV 20120928
Commtouch 20120928
Comodo 20120928
DrWeb 20120927
Emsisoft 20120919
eSafe 20120927
ESET-NOD32 20120928
F-Prot 20120926
F-Secure 20120927
Fortinet 20120928
GData 20120928
Ikarus 20120928
Jiangmin 20120928
K7AntiVirus 20120928
Kaspersky 20120928
Kingsoft 20120925
McAfee 20120927
McAfee-GW-Edition 20120928
Microsoft 20120926
Norman 20120928
nProtect 20120927
Panda 20120928
PCTools 20120928
Rising 20120928
Sophos AV 20120928
SUPERAntiSpyware 20120911
Symantec 20120928
TheHacker 20120928
TotalDefense 20120928
TrendMicro 20120928
TrendMicro-HouseCall 20120926
VBA32 20120927
VIPRE 20120928
ViRobot 20120928
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 1998

Publisher Sir-Tech Canada Ltd.
Product Jagged Alliance 2 Gold
Original name Ja2.exe
Internal name Jagged Alliance 2
File version 1, 0, 0, 6
Description Jagged Alliance 2 Gold
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2011-12-28 08:41:32
Entry Point 0x003D2388
Number of sections 4
PE sections
PE imports
DirectDrawCreate
DirectDrawCreateClipper
GetStdHandle
FileTimeToDosDateTime
GetConsoleOutputCP
GetFileAttributesA
WaitForSingleObject
FindFirstFileW
HeapDestroy
GetFileAttributesW
GetLocalTime
FreeEnvironmentStringsA
CreatePipe
GetCurrentProcess
GetConsoleMode
GetLocaleInfoA
FreeEnvironmentStringsW
GetLocaleInfoW
SetStdHandle
GetFileTime
GetCPInfo
GetProcAddress
GetStringTypeA
InterlockedExchange
WriteFile
GetSystemTimeAsFileTime
SetThreadAffinityMask
HeapReAlloc
GetStringTypeW
GetExitCodeProcess
LocalFree
MoveFileA
InitializeCriticalSection
FindClose
InterlockedDecrement
FormatMessageA
OutputDebugStringA
SetLastError
GetModuleFileNameW
IsDebuggerPresent
ExitProcess
GetVersionExA
GetModuleFileNameA
RaiseException
EnumSystemLocalesA
GetPrivateProfileStringA
UnhandledExceptionFilter
TlsGetValue
MultiByteToWideChar
SetFilePointerEx
SetFilePointer
GlobalMemoryStatus
CreateThread
DeleteCriticalSection
SetUnhandledExceptionFilter
ExitThread
SetEnvironmentVariableA
TerminateProcess
WriteConsoleA
VirtualQuery
SetEndOfFile
GetCurrentThreadId
InterlockedIncrement
WriteConsoleW
HeapFree
EnterCriticalSection
SetHandleCount
GetOEMCP
QueryPerformanceCounter
GetTickCount
TlsAlloc
FlushFileBuffers
LoadLibraryA
RtlUnwind
FreeLibrary
GetStartupInfoA
GetDateFormatA
GetFileSize
CreateDirectoryA
DeleteFileA
CreateDirectoryW
DeleteFileW
GetUserDefaultLCID
GetProcessHeap
CompareStringW
GetFileSizeEx
FindFirstFileA
CompareStringA
FreeConsole
FindNextFileA
IsValidLocale
DuplicateHandle
GlobalLock
GetProcessAffinityMask
GetTimeZoneInformation
CreateFileW
CreateEventA
GetFileType
TlsSetValue
CreateFileA
HeapAlloc
LeaveCriticalSection
GetLastError
LCMapStringW
GetSystemInfo
lstrlenA
GetConsoleCP
LCMapStringA
FindNextFileW
GetEnvironmentStringsW
GlobalUnlock
GlobalAlloc
FileTimeToLocalFileTime
GetEnvironmentStrings
CompareFileTime
GetCurrentProcessId
WideCharToMultiByte
HeapSize
GetCommandLineA
InterlockedCompareExchange
GetCurrentThread
QueryPerformanceFrequency
TlsFree
GetModuleHandleA
ReadFile
CloseHandle
GetACP
CreateProcessA
IsValidCodePage
HeapCreate
VirtualFree
Sleep
VirtualAlloc
GetTimeFormatA
SetFocus
GetMessageA
UpdateWindow
RegisterWindowMessageA
OffsetRect
KillTimer
ClipCursor
PostQuitMessage
DefWindowProcA
ShowWindow
SetWindowPos
GetClipCursor
MessageBoxW
DispatchMessageA
ClientToScreen
UnhookWindowsHookEx
ScreenToClient
MessageBoxA
PeekMessageA
GetClipboardData
AdjustWindowRectEx
TranslateMessage
GetCursorPos
wvsprintfA
SetClipboardData
IsWindowVisible
EmptyClipboard
CloseClipboard
GetClientRect
SetTimer
SetCursorPos
IsClipboardFormatAvailable
RegisterClassA
CallNextHookEx
wsprintfA
FindWindowExA
CreateWindowExA
LoadIconA
SetWindowsHookExA
SetForegroundWindow
OpenClipboard
SetCursor
timeKillEvent
timeSetEvent
timeGetDevCaps
setsockopt
htonl
socket
bind
WSAStartup
WSACleanup
inet_addr
WSAWaitForMultipleEvents
WSAEventSelect
ioctlsocket
gethostbyname
ntohs
getsockname
sendto
gethostname
recvfrom
htons
closesocket
inet_ntoa
WSAGetLastError
getsockopt
_BinkNextFrame@4
_BinkOpen@8
_BinkDoFrame@4
_BinkWait@4
_BinkOpenDirectSound@4
_BinkCopyToBuffer@28
_BinkGoto@12
_BinkSetSoundSystem@8
_BinkClose@4
SymSetOptions
SymInitialize
SymGetLineFromAddr64
SymFromAddr
_FSOUND_GetVolume@4
_FSOUND_IsPlaying@4
_FSOUND_Stream_SetBufferSize@4
_FSOUND_SetPaused@8
_FSOUND_GetDriver@0
_FSOUND_GetOutputRate@0
_FSOUND_Stream_Open@16
_FSOUND_GetOutputHandle@0
_FSOUND_Close@0
_FSOUND_GetError@0
_FSOUND_Stream_PlayEx@16
_FSOUND_Stream_Stop@4
_FSOUND_GetDriverName@4
_FSOUND_Stream_SetLoopCount@8
_FSOUND_Init@12
_FSOUND_Stream_Close@4
_FSOUND_SetVolume@8
_FSOUND_SetPan@8
_FSOUND_GetDriverCaps@8
_FSOUND_SetBufferSize@4
_FSOUND_SetOutput@4
_FSOUND_File_SetCallbacks@20
_SmackSoundUseDirectSound@4
_SmackNextFrame@4
_SmackWait@4
_SmackBufferOpen@24
_SmackOpen@12
_SmackClose@4
_SmackUseMMX@4
_SmackToBuffer@28
_SmackBufferClose@4
_SmackGoto@8
_SmackDoFrame@4
Number of PE resources by type
RT_VERSION 2
RT_DIALOG 1
RT_ICON 1
RT_MANIFEST 1
RT_MENU 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 4
SERBIAN DEFAULT 1
NEUTRAL 1
NEUTRAL DEFAULT 1
PE resources
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
8.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.0.0.1

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
1691648

FileOS
Windows NT 32-bit

MIMEType
application/octet-stream

LegalCopyright
Copyright 1998

FileVersion
1, 0, 0, 6

TimeStamp
2011:12:28 09:41:32+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Jagged Alliance 2

ProductVersion
1, 0, 0, 6

FileDescription
Jagged Alliance 2 Gold

OSVersion
4.0

OriginalFilename
Ja2.exe

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Sir-Tech Canada Ltd.

CodeSize
4239360

ProductName
Jagged Alliance 2 Gold

ProductVersionNumber
1.0.0.1

EntryPoint
0x3d2388

ObjectFileType
Static library

File identification
MD5 86ca805d36f548b63df09b21e681b776
SHA1 332ecb5ff1d537240a84b3b06ca6e3f1539d997f
SHA256 c701469297a311c47564e7f230569b50689f0e7be1b80ec8bd61cceaac002738
ssdeep
49152:Nhk8PEM+q8sr6/2D6OISrw9ELVYcI6YcGwOAyDbQZtnSS99WzqApX/0T0wIr5g6Y:I+EaR6OFrw9ELVYcINsOHQZgSDPAxY

authentihash 678351961aa54ad2c2c732103b31ac757838006735f2ed67fad17d24a60cc0d2
imphash 31b382dded455af78bf8ea9bd9fd3177
File size 5.7 MB ( 5935104 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable (generic) (52.9%)
Generic Win/DOS Executable (23.5%)
DOS Executable Generic (23.4%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
Tags
peexe

VirusTotal metadata
First submission 2012-09-29 04:45:11 UTC ( 6 years, 5 months ago )
Last submission 2012-09-29 04:45:11 UTC ( 6 years, 5 months ago )
File names Ja2.exe
Jagged Alliance 2
ja2_2.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!