× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: f69e55a42ea13350d7911b96c466e2b2797db19a5af59a5ef70aa40363c98c6d
File name: 0000.LIB
Detection ratio: 0 / 57
Analysis date: 2015-04-04 08:23:28 UTC ( 2 years, 6 months ago ) View latest
Antivirus Result Update
Ad-Aware 20150404
AegisLab 20150404
Yandex 20150403
AhnLab-V3 20150403
Alibaba 20150404
ALYac 20150404
Antiy-AVL 20150404
Avast 20150404
AVG 20150404
Avira (no cloud) 20150404
AVware 20150404
Baidu-International 20150404
BitDefender 20150404
Bkav 20150403
ByteHero 20150404
CAT-QuickHeal 20150404
ClamAV 20150403
CMC 20150403
Comodo 20150404
Cyren 20150404
DrWeb 20150404
Emsisoft 20150404
ESET-NOD32 20150403
F-Prot 20150401
F-Secure 20150404
Fortinet 20150404
GData 20150404
Ikarus 20150404
Jiangmin 20150403
K7AntiVirus 20150404
K7GW 20150404
Kaspersky 20150404
Kingsoft 20150404
Malwarebytes 20150404
McAfee 20150404
McAfee-GW-Edition 20150403
Microsoft 20150404
eScan 20150404
NANO-Antivirus 20150404
Norman 20150404
nProtect 20150403
Panda 20150401
Qihoo-360 20150404
Rising 20150403
Sophos AV 20150404
SUPERAntiSpyware 20150403
Symantec 20150404
Tencent 20150404
TheHacker 20150403
TotalDefense 20150403
TrendMicro 20150404
TrendMicro-HouseCall 20150404
VBA32 20150403
VIPRE 20150404
ViRobot 20150404
Zillya 20150403
Zoner 20150403
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (C) 2012 Linder Software

Publisher Lindersoft
Product SetupBuilder
File version 8, 0, 0, 1
Description SetupBuilder
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2012-10-22 12:03:21
Entry Point 0x00001CE0
Number of sections 5
PE sections
PE imports
GetLastError
GetSystemTimeAsFileTime
WriteProcessMemory
LoadLibraryA
lstrlenA
GlobalFree
WaitForSingleObject
FreeLibrary
QueryPerformanceCounter
HeapAlloc
GlobalUnlock
RemoveDirectoryA
GlobalAlloc
GetModuleFileNameA
GetCurrentProcess
GetCurrentProcessId
DeleteFileA
UnhandledExceptionFilter
SetErrorMode
GetCommandLineA
GlobalLock
GetThreadContext
GetProcessHeap
FlushInstructionCache
GetModuleHandleA
GetTempPathA
SetFilePointer
ReadFile
SetUnhandledExceptionFilter
lstrcpyA
GetStartupInfoA
CloseHandle
GetTempFileNameA
lstrcpynA
DuplicateHandle
GetProcAddress
SetThreadContext
MoveFileA
TerminateProcess
ResumeThread
CreateProcessA
WriteFile
VirtualProtectEx
Sleep
GetTickCount
CreateFileA
ExitProcess
GetCurrentThreadId
LZCopy
LZClose
LZInit
wsprintfA
MessageBoxA
Number of PE resources by type
RT_ICON 4
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 7
PE resources
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
10.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
8.0.0.1

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x0017

CharacterSet
Unicode

InitializedDataSize
13824

EntryPoint
0x1ce0

MIMEType
application/octet-stream

LegalCopyright
Copyright (C) 2012 Linder Software

FileVersion
8, 0, 0, 1

TimeStamp
2012:10:22 13:03:21+01:00

FileType
Win32 EXE

PEType
PE32

ProductVersion
8, 0, 0, 1

FileDescription
SetupBuilder

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Lindersoft

CodeSize
4096

ProductName
SetupBuilder

ProductVersionNumber
8.0.0.1

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 c0c8b503cc0e1e222527e2d07cfd6aea
SHA1 83616ca06221d04d323cf1013d643430331c9663
SHA256 f69e55a42ea13350d7911b96c466e2b2797db19a5af59a5ef70aa40363c98c6d
ssdeep
192:AeX3nHW6P8TXB73si+9A7FD+u3+Om546u0NeTL3jNeTYGJF2KrR:A6x8ZnFDsOm5q0NebNeUGJFX

authentihash 96089d36feddc983bee6ebdb8eb4543b125f52dad154926353d8000390d03e42
imphash 68b403f689fde9a0f2cd2f7dd45eef2e
File size 16.5 KB ( 16896 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (42.2%)
Win64 Executable (generic) (37.3%)
Win32 Dynamic Link Library (generic) (8.8%)
Win32 Executable (generic) (6.0%)
Generic Win/DOS Executable (2.7%)
Tags
peexe

VirusTotal metadata
First submission 2015-04-04 08:23:28 UTC ( 2 years, 6 months ago )
Last submission 2015-04-04 08:23:28 UTC ( 2 years, 6 months ago )
File names 0000.LIB
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Runtime DLLs
UDP communications