× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: e529576e2000f720dc2c37d7b61bea961fa6fd0392da09209ea9868c645b462d
File name: dir2file.exe
Detection ratio: 4 / 42
Analysis date: 2011-04-17 22:20:12 UTC ( 3 years ago ) View latest
Antivirus Result Update
ClamAV PUA.Packed.TeLock 20110417
Rising Trojan.Win32.Generic.12527300 20110416
Sophos Sus/ComPack-C 20110417
TheHacker W32/Behav-Heuristic-066 20110417
AVG 20110417
AhnLab-V3 20110417
AntiVir 20110417
Antiy-AVL 20110417
Avast 20110417
Avast5 20110417
BitDefender 20110418
CAT-QuickHeal 20110417
Commtouch 20110417
Comodo 20110417
DrWeb 20110417
Emsisoft 20110417
F-Prot 20110417
F-Secure 20110417
Fortinet 20110417
GData 20110417
Ikarus 20110417
Jiangmin 20110416
K7AntiVirus 20110416
Kaspersky 20110418
McAfee 20110417
McAfee-GW-Edition 20110417
Microsoft 20110417
NOD32 20110417
Norman 20110417
PCTools 20110417
Panda 20110417
Prevx 20110418
SUPERAntiSpyware 20110416
Symantec 20110417
TrendMicro 20110417
TrendMicro-HouseCall 20110418
VBA32 20110415
VIPRE 20110417
ViRobot 20110417
VirusBuster 20110417
eSafe 20110417
eTrust-Vet 20110415
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Authenticode signature block
Copyright
Copyright (c) 2004-2005 Antonis Kaladis

Publisher Antonis Kaladis
Product Dir2File
Original name dir2file.exe
Internal name dir2file
File version 1.00
Packers identified
F-PROT TeLock
PEiD tElock v0.98
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2005-07-11 07:02:54
Link date 8:02 AM 7/11/2005
Entry Point 0x00017BD6
Number of sections 4
PE sections
PE imports
GetModuleHandleA
MessageBoxA
Number of PE resources by type
RT_ICON 11
RT_GROUP_ICON 1
RT_VERSION 1
RT_MANIFEST 1
Number of PE resources by language
NEUTRAL 12
ENGLISH US 2
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
6.0

ImageVersion
1.0

FileSubtype
0

FileVersionNumber
1.0.0.0

LanguageCode
English (U.S.)

FileFlagsMask
0x0000

CharacterSet
Unicode

InitializedDataSize
36864

FileOS
Win32

MIMEType
application/octet-stream

LegalCopyright
Copyright (c) 2004-2005 Antonis Kaladis

FileVersion
1.0

TimeStamp
2005:07:11 08:02:54+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
dir2file

FileAccessDate
2014:03:08 14:04:52+01:00

ProductVersion
1.0

SubsystemVersion
4.0

OSVersion
4.0

FileCreateDate
2014:03:08 14:04:52+01:00

OriginalFilename
dir2file.exe

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Antonis Kaladis

CodeSize
0

ProductName
Dir2File

ProductVersionNumber
1.0.0.0

EntryPoint
0x17bd6

ObjectFileType
Executable application

File identification
MD5 e8bf4f790ab6a3f46dee58747c2507be
SHA1 7a813e4c41663f848b41491f1a2a8fd146671a6d
SHA256 e529576e2000f720dc2c37d7b61bea961fa6fd0392da09209ea9868c645b462d
ssdeep
768:ZpQQF/sif2NKEnt0yE6VBhMzZMsS+fXZZZZZZZZZZZZZZZZQrhRyNHc2GpiS8:ZNEif2kEnt0MVBhMNMs3mrKHc2Gh

imphash 3c0e70bfa5f73f1f1cef484e2bcb5bf8
File size 59.5 KB ( 60928 bytes )
File type Win32 EXE
Magic literal
MS-DOS executable, MZ for MS-DOS

TrID Win32 Executable (generic) (52.9%)
Generic Win/DOS Executable (23.5%)
DOS Executable Generic (23.4%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
Tags
telock peexe

VirusTotal metadata
First submission 2007-05-17 04:21:40 UTC ( 6 years, 11 months ago )
Last submission 2012-11-25 09:39:05 UTC ( 1 year, 4 months ago )
File names dir2file.exe
dir2file.vxe
dir2file
smona_e529576e2000f720dc2c37d7b61bea961fa6fd0392da09209ea9868c645b462d.bin
DIR2FILE.EXE
Advanced heuristic and reputation engines
ClamAV PUA
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: http://www.clamav.net/index.php?s=pua&lang=en .

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!