× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: f1fb3af17e818682c435399c69f715a4e733d6ff39a3c0a7237ed7afed339e1f
File name: feewhee.exe
Detection ratio: 2 / 52
Analysis date: 2014-05-21 09:00:47 UTC ( 1 year ago ) View latest
Probably harmless! There are strong indicators suggesting that this file is safe to use.
Antivirus Result Update
Fortinet W32/Zbot.gen!tr 20140521
Kingsoft Win32.Malware.Heur_Generic.A.(kcloud) 20140521
AVG 20140521
Ad-Aware 20140521
AegisLab 20140521
Agnitum 20140520
AhnLab-V3 20140520
AntiVir 20140521
Antiy-AVL 20140521
Avast 20140521
Baidu-International 20140520
BitDefender 20140521
Bkav 20140520
ByteHero 20140521
CAT-QuickHeal 20140520
CMC 20140520
ClamAV 20140521
Commtouch 20140521
Comodo 20140520
DrWeb 20140521
ESET-NOD32 20140521
Emsisoft 20140521
F-Prot 20140521
F-Secure 20140521
GData 20140521
Ikarus 20140521
Jiangmin 20140521
K7AntiVirus 20140520
K7GW 20140520
Kaspersky 20140521
Malwarebytes 20140521
McAfee 20140521
McAfee-GW-Edition 20140520
MicroWorld-eScan 20140521
Microsoft 20140521
NANO-Antivirus 20140521
Norman 20140520
Panda 20140520
Qihoo-360 20140521
Rising 20140520
SUPERAntiSpyware 20140520
Sophos 20140521
Symantec 20140521
Tencent 20140515
TheHacker 20140520
TotalDefense 20140520
TrendMicro 20140521
TrendMicro-HouseCall 20140521
VBA32 20140520
VIPRE 20140521
ViRobot 20140521
Zillya 20140520
nProtect 20140520
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2009-02-08 12:06:08
Link date 1:06 PM 2/8/2009
Entry Point 0x000013D0
Number of sections 3
PE sections
PE imports
ExitProcess
GetCurrentProcess
TerminateProcess
GetModuleHandleA
Beep
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetStartupInfoA
HeapAlloc
IsDebuggerPresent
GetCommandLineA
RtlUnwind
GetProcessHeap
GetMessageA
SetLayeredWindowAttributes
PostQuitMessage
DefWindowProcA
FindWindowA
SetWindowPos
GetWindowRect
DispatchMessageA
UnhookWindowsHookEx
WindowFromPoint
SetWindowLongA
TranslateMessage
RegisterClassExA
GetAsyncKeyState
SystemParametersInfoA
ShowWindow
SendMessageA
CallNextHookEx
GetWindowLongA
CreateWindowExA
GetLayeredWindowAttributes
SetWindowsHookExA
DestroyWindow
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

FileTypeExtension
exe

TimeStamp
2009:02:08 13:06:08+01:00

FileType
Win32 EXE

PEType
PE32

CodeSize
3584

LinkerVersion
8.0

EntryPoint
0x13d0

InitializedDataSize
2560

SubsystemVersion
4.0

ImageVersion
0.0

OSVersion
4.0

UninitializedDataSize
0

Compressed bundles
File identification
MD5 c908272103f0110f2c872b4a0f5f6ac2
SHA1 3e4dd1e896cf8866b308662e77f27098ca0fc939
SHA256 f1fb3af17e818682c435399c69f715a4e733d6ff39a3c0a7237ed7afed339e1f
ssdeep
96:N805jY1OFACnnqP5HrrkMliJiMGyeDgKCkEmkm2Qt8Cw16kk:N8QjY1OFAP5Hjcp5TZkf/2QaCw16kk

authentihash dc82ccbb03572c3096f799a2fbf4f990e96fe62121fa5de203fd66040009735a
imphash ce05ffc9841b8282054b9b4638000a6d
File size 6.5 KB ( 6656 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Dynamic Link Library (generic) (43.5%)
Win32 Executable (generic) (29.8%)
Generic Win/DOS Executable (13.2%)
DOS Executable Generic (13.2%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
Tags
peexe

VirusTotal metadata
First submission 2009-06-28 20:14:23 UTC ( 5 years, 11 months ago )
Last submission 2015-05-16 02:26:49 UTC ( 1 week, 2 days ago )
File names Feewhee (Zoom & transparence window).exe
feewhee.exe
Feel the Wheel 1.3.exe
feewhee.exe
Feel the Wheel.exe
smona_f1fb3af17e818682c435399c69f715a4e733d6ff39a3c0a7237ed7afed339e1f.bin
feewhee.exe
feewhee.exe
feewhee.exe
file-4028882_exe
FeelTheWheel.1.3.exe
feewhee.exe
feewhee.exe
feewhee.exe
FeeWhee-v1_3.exe
5D19761B0044C0171A1F00E194C63A00AAEE990C.exe
c908272103f0110f2c872b4a0f5f6ac2.3e4dd1e896cf8866b308662e77f27098ca0fc939
141495539120074-feewhee.exe
file-1308915_exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!