× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: dbf1a2b64486ab00baa73ceba863fe9869defd9a11ffc4c0a5a4ffb59bc39fe6
File name: Mail.exe
Detection ratio: 0 / 41
Analysis date: 2010-10-27 14:35:38 UTC ( 3 years, 8 months ago )
Antivirus Result Update
AVG 20101027
AhnLab-V3 20101027
AntiVir 20101027
Antiy-AVL 20101027
Authentium 20101027
Avast 20101027
Avast5 20101027
BitDefender 20101027
CAT-QuickHeal 20101026
ClamAV 20101027
Comodo 20101027
Emsisoft 20101027
F-Prot 20101026
Fortinet 20101027
GData 20101027
Ikarus 20101027
Jiangmin 20101027
K7AntiVirus 20101026
Kaspersky 20101027
McAfee 20101027
McAfee-GW-Edition 20101027
Microsoft 20101027
NOD32 20101027
Norman 20101027
PCTools 20101027
Panda 20101027
Prevx 20101027
Rising 20101027
SUPERAntiSpyware 20101027
Sophos 20101027
Sunbelt 20101027
Symantec 20101027
TheHacker 20101027
TrendMicro 20101027
TrendMicro-HouseCall 20101027
VBA32 20101027
ViRobot 20101027
VirusBuster 20101027
eSafe 20101026
eTrust-Vet 20101027
nProtect 20101027
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Authenticode signature block
Publisher www.lesnikowski.com
Product Mail.dll
Description Mail.dll Setup
Comments This installation was built with Inno Setup.
PE header basic information
Number of sections 8
PE sections
PE imports
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
InitCommonControls
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
VirtualFree
VirtualAlloc
LocalFree
LocalAlloc
WideCharToMultiByte
TlsSetValue
TlsGetValue
MultiByteToWideChar
GetModuleHandleA
GetLastError
GetCommandLineA
WriteFile
SetFilePointer
SetEndOfFile
RtlUnwind
ReadFile
RaiseException
GetStdHandle
GetFileSize
GetSystemTime
GetFileType
ExitProcess
CreateFileA
CloseHandle
WriteFile
VirtualQuery
VirtualProtect
VirtualFree
VirtualAlloc
Sleep
SizeofResource
SetLastError
SetFilePointer
SetErrorMode
SetEndOfFile
RemoveDirectoryA
ReadFile
LockResource
LoadResource
LoadLibraryA
IsDBCSLeadByte
GetWindowsDirectoryA
GetVersionExA
GetUserDefaultLangID
GetSystemInfo
GetSystemDefaultLCID
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetLocaleInfoA
GetLastError
GetFullPathNameA
GetFileSize
GetFileAttributesA
GetExitCodeProcess
GetEnvironmentVariableA
GetCurrentProcess
GetCommandLineA
GetACP
InterlockedExchange
FormatMessageA
FindResourceA
DeleteFileA
CreateProcessA
CreateFileA
CreateDirectoryA
CloseHandle
VariantChangeTypeEx
VariantCopyInd
VariantClear
SysStringLen
SysAllocStringLen
MessageBoxA
TranslateMessage
SetWindowLongA
PeekMessageA
MsgWaitForMultipleObjects
MessageBoxA
LoadStringA
ExitWindowsEx
DispatchMessageA
DestroyWindow
CreateWindowExA
CallWindowProcA
CharPrevA
ExifTool file metadata
SubsystemVersion
4.0

Comments
This installation was built with Inno Setup.

InitializedDataSize
17920

ImageVersion
6.0

ProductName
Mail.dll

FileVersionNumber
0.0.0.0

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

LinkerVersion
2.25

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion

TimeStamp
1992:06:20 00:22:17+02:00

FileType
Win32 EXE

PEType
PE32

ProductVersion

FileDescription
Mail.dll Setup

OSVersion
1.0

FileOS
Win32

LegalCopyright

MachineType
Intel 386 or later, and compatibles

CompanyName
www.lesnikowski.com

CodeSize
37888

FileSubtype
0

ProductVersionNumber
0.0.0.0

EntryPoint
0x9b24

ObjectFileType
Executable application

File identification
MD5 28786f4762dcc3135bc8798ff8826a5b
SHA1 760f347a3809e57d461996756524ba676a56d090
SHA256 dbf1a2b64486ab00baa73ceba863fe9869defd9a11ffc4c0a5a4ffb59bc39fe6
ssdeep
49152:/2yRuUWHkYRV0ZCC4bkTw10xdPnTAwJpGGWr6axRD6DAXM:eyRuvdVrCekXPnT5PWrHxB68c

File size 2.1 MB ( 2248203 bytes )
File type Win32 EXE
Magic literal

TrID Win32 Executable Generic (38.4%)
Win32 Dynamic Link Library (generic) (34.1%)
Win16/32 Executable Delphi generic (9.3%)
Generic Win/DOS Executable (9.0%)
DOS Executable Generic (9.0%)
VirusTotal metadata
First submission 2010-10-27 14:35:38 UTC ( 3 years, 8 months ago )
Last submission 2010-10-27 14:35:38 UTC ( 3 years, 8 months ago )
File names
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!