× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: ed4d8ec6ccd8f200c6f425972eca2b6304ccbe2c5d0d2bf532cd18ce0c03e6c0
File name: ultradefrag-7.1.1.bin.ia64.exe
Detection ratio: 0 / 67
Analysis date: 2018-10-12 16:25:30 UTC ( 6 months, 2 weeks ago ) View latest
Antivirus Result Update
Ad-Aware 20181012
AegisLab 20181012
AhnLab-V3 20181012
Alibaba 20180921
ALYac 20181012
Antiy-AVL 20181012
Arcabit 20181012
Avast 20181012
Avast-Mobile 20181012
AVG 20181012
Avira (no cloud) 20181012
Babable 20180918
Baidu 20181012
BitDefender 20181012
Bkav 20181011
CAT-QuickHeal 20181011
ClamAV 20181012
CMC 20181012
Comodo 20181012
CrowdStrike Falcon (ML) 20180723
Cybereason 20180225
Cylance 20181012
Cyren 20181012
DrWeb 20181012
eGambit 20181012
Emsisoft 20181012
Endgame 20180730
ESET-NOD32 20181012
F-Prot 20181012
F-Secure 20181012
Fortinet 20181012
GData 20181012
Ikarus 20181012
Sophos ML 20180717
Jiangmin 20181012
K7AntiVirus 20181012
K7GW 20181012
Kaspersky 20181012
Kingsoft 20181012
Malwarebytes 20181012
MAX 20181012
McAfee 20181012
McAfee-GW-Edition 20181012
Microsoft 20181012
eScan 20181012
NANO-Antivirus 20181012
Palo Alto Networks (Known Signatures) 20181012
Panda 20181012
Qihoo-360 20181012
Rising 20181012
SentinelOne (Static ML) 20181011
Sophos AV 20181012
SUPERAntiSpyware 20181012
Symantec 20181012
Symantec Mobile Insight 20181001
TACHYON 20181012
Tencent 20181012
TheHacker 20181011
TrendMicro 20181010
TrendMicro-HouseCall 20181010
Trustlook 20181012
VBA32 20181012
VIPRE 20181012
ViRobot 20181012
Webroot 20181012
Yandex 20181011
Zillya 20181012
ZoneAlarm by Check Point 20181012
Zoner 20181011
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2007-2018 UltraDefrag Development Team

Product UltraDefrag
File version 7.1.1
Description UltraDefrag Setup
Packers identified
F-PROT UPX, NSIS, appended, UTF-8, Unicode
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2009-12-05 22:50:46
Entry Point 0x0004D610
Number of sections 3
PE sections
Overlays
MD5 0290d84eec5837793c1a5cfc51dbc0af
File type data
Offset 80896
Size 3218284
Entropy 8.00
PE imports
RegEnumKeyA
SetBkMode
VirtualFree
ExitProcess
VirtualProtect
LoadLibraryA
VirtualAlloc
GetProcAddress
ShellExecuteA
VerQueryValueA
CoTaskMemFree
Number of PE resources by type
RT_ICON 11
RT_DIALOG 7
RT_MANIFEST 1
RT_BITMAP 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 21
NEUTRAL 1
PE resources
ExifTool file metadata
UninitializedDataSize
294912

LinkerVersion
6.0

ImageVersion
6.0

FileSubtype
0

FileVersionNumber
7.1.1.0

LanguageCode
Neutral

FileFlagsMask
0x0000

FileDescription
UltraDefrag Setup

ImageFileCharacteristics
No relocs, Executable, No line numbers, No symbols, 32-bit

CharacterSet
Windows, Latin1

InitializedDataSize
61440

EntryPoint
0x4d610

MIMEType
application/octet-stream

LegalCopyright
Copyright 2007-2018 UltraDefrag Development Team

FileVersion
7.1.1

TimeStamp
2009:12:05 23:50:46+01:00

FileType
Win32 EXE

PEType
PE32

SubsystemVersion
4.0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
UltraDefrag Development Team

CodeSize
20480

ProductName
UltraDefrag

ProductVersionNumber
7.1.1.0

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 a77336a694d2ae8a3adcbc8d6bc4a34c
SHA1 86aafe049865c44cb473a19e8237b22ab92e3b79
SHA256 ed4d8ec6ccd8f200c6f425972eca2b6304ccbe2c5d0d2bf532cd18ce0c03e6c0
ssdeep
98304:KKkUh8VRnSPAL61/p+l45P8l6xl8dFdt5l/hAu+8Q2:KKkHVRn+X1R+l41rydITn2

authentihash e61e5529f4ba7c6577287867617661a52febc7b78fb087c25bc4cac97060012c
imphash 2134f794bcda54794e74b7208adb2204
File size 3.1 MB ( 3299180 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID UPX compressed Win32 Executable (38.2%)
Win32 EXE Yoda's Crypter (37.5%)
Win32 Dynamic Link Library (generic) (9.2%)
Win32 Executable (generic) (6.3%)
OS/2 Executable (generic) (2.8%)
Tags
nsis peexe upx overlay

VirusTotal metadata
First submission 2018-10-12 16:25:30 UTC ( 6 months, 2 weeks ago )
Last submission 2019-03-16 23:37:06 UTC ( 1 month, 1 week ago )
File names ultradefrag-7.1.1.bin.ia64.exe
ED4D8EC6CCD8F200C6F425972ECA2B6304CCBE2C5D0D2BF532CD18CE0C03E6C0.exe
ultradefrag-7.1.1.bin.ia64.exe
ultradefrag64_DOWNLOAD.ID.exe
ultradefrag-7.1.1.bin.ia64.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Deleted files
Runtime DLLs