× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: e902a22fefcd378945ec3314b4f18fee43eecdb8b5873ab383c17e872ab35595
File name: free3dvideomaker_1.1.58.823_o.exe
Detection ratio: 2 / 70
Analysis date: 2019-04-07 09:50:13 UTC ( 1 month, 2 weeks ago )
Antivirus Result Update
DrWeb Program.Freemake.3 20190407
eGambit Unsafe.AI_Score_84% 20190407
Acronis 20190330
Ad-Aware 20190407
AegisLab 20190407
AhnLab-V3 20190406
Alibaba 20190402
ALYac 20190407
Antiy-AVL 20190407
Arcabit 20190406
Avast 20190407
Avast-Mobile 20190407
AVG 20190407
Avira (no cloud) 20190407
Babable 20180918
Baidu 20190318
BitDefender 20190407
Bkav 20190405
CAT-QuickHeal 20190406
ClamAV 20190407
CMC 20190321
Comodo 20190407
CrowdStrike Falcon (ML) 20190212
Cybereason 20190403
Cylance 20190407
Cyren 20190407
Emsisoft 20190407
Endgame 20190403
ESET-NOD32 20190407
F-Prot 20190407
F-Secure 20190406
FireEye 20190407
Fortinet 20190407
GData 20190407
Ikarus 20190407
Sophos ML 20190313
Jiangmin 20190407
K7AntiVirus 20190407
K7GW 20190407
Kaspersky 20190407
Kingsoft 20190407
Malwarebytes 20190407
MAX 20190407
McAfee 20190407
McAfee-GW-Edition 20190407
Microsoft 20190407
eScan 20190407
NANO-Antivirus 20190407
Palo Alto Networks (Known Signatures) 20190407
Panda 20190407
Qihoo-360 20190407
Rising 20190407
SentinelOne (Static ML) 20190317
Sophos AV 20190407
SUPERAntiSpyware 20190404
Symantec Mobile Insight 20190325
TACHYON 20190407
Tencent 20190407
TheHacker 20190405
TotalDefense 20190407
Trapmine 20190325
TrendMicro 20190407
TrendMicro-HouseCall 20190407
Trustlook 20190407
VBA32 20190405
VIPRE 20190407
ViRobot 20190406
Yandex 20190404
Zillya 20190405
ZoneAlarm by Check Point 20190407
Zoner 20190406
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Authenticode signature block and FileVersionInfo properties
Copyright

Product Free 3D Video Maker
File version 1.1.58.823
Description Free 3D Video Maker Setup
Comments This installation was built with Inno Setup.
Signature verification Signed file, verified signature
Signing date 1:46 PM 10/27/2016
Signers
[+] Digital Wave Ltd
Status This certificate or one of the certificates in the certificate chain is not time valid.
Issuer Symantec Class 3 Extended Validation Code Signing CA - G2
Valid from 12:00 AM 05/30/2016
Valid to 12:59 AM 03/29/2019
Valid usage Code Signing
Algorithm sha256RSA
Thumbprint 55833E878897E417BA9F3B90B8BBD2D1ECEEDF3D
Serial number 7C 94 72 12 04 73 41 71 25 1A 0E ED BF 49 9A 98
[+] Symantec Class 3 Extended Validation Code Signing CA - G2
Status Valid
Issuer VeriSign Class 3 Public Primary Certification Authority - G5
Valid from 01:00 AM 03/04/2014
Valid to 12:59 AM 03/04/2024
Valid usage Code Signing
Algorithm sha256RSA
Thumbprint 5B8F88C80A73D35F76CD412A9E74E916594DFA67
Serial number 19 1A 32 CB 75 9C 97 B8 CF AC 11 8D D5 12 7F 49
[+] VeriSign
Status Valid
Issuer VeriSign Class 3 Public Primary Certification Authority - G5
Valid from 01:00 AM 11/08/2006
Valid to 11:59 PM 07/16/2036
Valid usage Server Auth, Client Auth, Email Protection, Code Signing
Algorithm sha1RSA
Thumbprint 4EB6D578499B1CCF5F581EAD56BE3D9B6744A5E5
Serial number 18 DA D1 9E 26 7D E8 BB 4A 21 58 CD CC 6B 3B 4A
Counter signers
[+] Symantec SHA256 TimeStamping Signer - G1
Status Valid
Issuer Symantec SHA256 TimeStamping CA
Valid from 01:00 AM 01/12/2016
Valid to 11:59 PM 04/11/2027
Valid usage Timestamp Signing
Algorithm sha256RSA
Thumbrint 87CECC250809894434D4BE53CE840F6F9DBD4B06
Serial number 54 F3 7D A1 71 67 51 BC 6A 8D 0A D2 74 B2 8B 13
[+] Symantec SHA256 TimeStamping CA
Status Valid
Issuer VeriSign Universal Root Certification Authority
Valid from 01:00 AM 01/12/2016
Valid to 12:59 AM 01/12/2031
Valid usage Timestamp Signing
Algorithm sha256RSA
Thumbrint 6FC9EDB5E00AB64151C1CDFCAC74AD2C7B7E3BE4
Serial number 7B 05 B1 D4 49 68 51 44 F7 C9 89 D2 9C 19 9D 12
[+] VeriSign Universal Root Certification Authority
Status Valid
Issuer VeriSign Universal Root Certification Authority
Valid from 12:00 AM 04/02/2008
Valid to 12:59 AM 12/02/2037
Valid usage Server Auth, Client Auth, Email Protection, Code Signing, Timestamp Signing
Algorithm sha256RSA
Thumbrint 3679CA35668772304D30A5FB873B0FA77BB70D54
Serial number 40 1A C4 64 21 B3 13 21 03 0E BB E4 12 1A C5 1D
Packers identified
F-PROT INNO, appended
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-04-06 14:39:04
Entry Point 0x000117DC
Number of sections 8
PE sections
Overlays
MD5 2fc7546ff012b4fe91f467f1f3aee7aa
File type data
Offset 240640
Size 27903848
Entropy 8.00
PE imports
RegCloseKey
OpenProcessToken
RegOpenKeyExW
AdjustTokenPrivileges
LookupPrivilegeValueW
RegQueryValueExW
InitCommonControls
GetLastError
GetStdHandle
GetUserDefaultLangID
GetSystemInfo
GetModuleFileNameW
WaitForSingleObject
GetVersionExW
FreeLibrary
QueryPerformanceCounter
GetTickCount
GetThreadLocale
VirtualProtect
GetFileAttributesW
RtlUnwind
lstrlenW
GetExitCodeProcess
CreateProcessW
GetStartupInfoA
SizeofResource
GetWindowsDirectoryW
LocalAlloc
LockResource
GetDiskFreeSpaceW
GetCommandLineW
SetErrorMode
UnhandledExceptionFilter
LoadLibraryExW
MultiByteToWideChar
EnumCalendarInfoW
GetCPInfo
DeleteFileW
GetProcAddress
InterlockedCompareExchange
GetLocaleInfoW
lstrcpynW
RaiseException
WideCharToMultiByte
RemoveDirectoryW
SetFilePointer
GetSystemDirectoryW
GetFullPathNameW
ReadFile
GetEnvironmentVariableW
InterlockedExchange
CreateDirectoryW
WriteFile
GetCurrentProcess
CloseHandle
FindFirstFileW
GetACP
GetModuleHandleW
SignalObjectAndWait
SetEvent
FormatMessageW
LoadLibraryW
CreateEventW
GetVersion
LoadResource
FindResourceW
CreateFileW
VirtualQuery
VirtualFree
FindClose
TlsGetValue
Sleep
SetEndOfFile
TlsSetValue
ExitProcess
GetCurrentThreadId
VirtualAlloc
GetFileSize
SetLastError
ResetEvent
SysReAllocStringLen
SysFreeString
SysAllocStringLen
GetSystemMetrics
SetWindowLongW
MessageBoxW
PeekMessageW
LoadStringW
MessageBoxA
CreateWindowExW
MsgWaitForMultipleObjects
TranslateMessage
CharUpperBuffW
CallWindowProcW
CharNextW
GetKeyboardType
ExitWindowsEx
DispatchMessageW
DestroyWindow
Number of PE resources by type
RT_ICON 7
RT_STRING 6
RT_RCDATA 4
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 11
NEUTRAL 9
PE resources
ExifTool file metadata
SubsystemVersion
5.0

Comments
This installation was built with Inno Setup.

InitializedDataSize
173056

ImageVersion
6.0

ProductName
Free 3D Video Maker

FileVersionNumber
1.1.58.823

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x003f

ImageFileCharacteristics
No relocs, Executable, No line numbers, No symbols, Bytes reversed lo, 32-bit, Bytes reversed hi

CharacterSet
Unicode

LinkerVersion
2.25

FileTypeExtension
exe

MIMEType
application/octet-stream

FileVersion
1.1.58.823

TimeStamp
2016:04:06 16:39:04+02:00

FileType
Win32 EXE

PEType
PE32

ProductVersion
1.1.58.823

FileDescription
Free 3D Video Maker Setup

OSVersion
5.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Digital Wave Ltd

CodeSize
66560

FileSubtype
0

ProductVersionNumber
1.1.58.823

EntryPoint
0x117dc

ObjectFileType
Executable application

File identification
MD5 5d2400fb6f85934fa0bf968da3584b6e
SHA1 fdf621f4315840e7326d952b70fc784ed3524a59
SHA256 e902a22fefcd378945ec3314b4f18fee43eecdb8b5873ab383c17e872ab35595
ssdeep
393216:35okncWrftnYiBfOIMb3hSkWw5puZDwbr93SjbxUnot1oBaMMGt9tXizhwhuH0oJ:3B1fFYioIMbEC2C9CRoO1+7+hwYUjg

authentihash 5a91ade9f022110a92bfcb1495470166cc0efe6a30b88ea6672910a01b96ba9b
imphash 20dd26497880c05caed9305b3c8b9109
File size 26.8 MB ( 28144488 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable (generic) (35.7%)
Win16/32 Executable Delphi generic (16.4%)
OS/2 Executable (generic) (16.0%)
Generic Win/DOS Executable (15.8%)
DOS Executable Generic (15.8%)
Tags
peexe signed overlay

VirusTotal metadata
First submission 2017-05-07 05:17:16 UTC ( 2 years ago )
Last submission 2019-04-07 09:50:13 UTC ( 1 month, 2 weeks ago )
File names free3dvideomaker_1.1.58.823_o.exe
free3dvideomaker_1.1.58.823_d.exe
Free3DVideoMaker.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!