× ¡Las cookies están desactivadas! Esta página requiere que las cookies estén activadas para funcionar correctamente
SHA256: 5e0ebbb2646e00e236b891c32208da84c79a17864d4678ea53c678f4604b9ede
Nombre: AgeManiaW7.exe
Detecciones: 14 / 66
Fecha de análisis: 2018-08-21 23:50:12 UTC ( hace 4 meses, 4 semanas )
Antivirus Resultado Actualización
AegisLab Riskware.Win32.Generic.1!c 20180821
AhnLab-V3 Unwanted/Win32.HackTool.C1337307 20180821
AVware Riskware.Win32.DDPatcher 20180821
Cylance Unsafe 20180822
Fortinet Riskware/Patch 20180822
Malwarebytes HackTool.FilePatch 20180821
MAX malware (ai score=99) 20180822
McAfee-GW-Edition RDN/Generic PUP.z 20180821
Panda Generic Malware 20180820
Rising Trojan.Win32.Generic.12C94609 (C64:YzY0OkpxrRMNfx2+) 20180822
TrendMicro HKTL_PATCH 20180821
TrendMicro-HouseCall HKTL_PATCH 20180821
VIPRE Riskware.Win32.DDPatcher (not malicious) 20180821
Webroot W32.Hacktool.Gen 20180822
Ad-Aware 20180821
Alibaba 20180713
ALYac 20180821
Antiy-AVL 20180821
Arcabit 20180821
Avast 20180821
Avast-Mobile 20180820
AVG 20180821
Avira (no cloud) 20180821
Baidu 20180820
BitDefender 20180821
Bkav 20180821
CAT-QuickHeal 20180821
ClamAV 20180821
CMC 20180821
Comodo 20180822
CrowdStrike Falcon (ML) 20180723
Cybereason 20180225
Cyren 20180821
DrWeb 20180821
eGambit 20180822
Emsisoft 20180822
Endgame 20180730
ESET-NOD32 20180821
F-Prot 20180822
F-Secure 20180821
GData 20180821
Sophos ML 20180717
Jiangmin 20180822
K7AntiVirus 20180821
K7GW 20180822
Kaspersky 20180821
Kingsoft 20180822
McAfee 20180822
Microsoft 20180822
eScan 20180822
NANO-Antivirus 20180821
Palo Alto Networks (Known Signatures) 20180822
Qihoo-360 20180822
SentinelOne (Static ML) 20180701
Sophos AV 20180821
SUPERAntiSpyware 20180821
Symantec 20180821
Symantec Mobile Insight 20180814
TACHYON 20180821
Tencent 20180822
TheHacker 20180821
TotalDefense 20180821
Trustlook 20180822
VBA32 20180821
ViRobot 20180821
Yandex 20180820
Zillya 20180821
ZoneAlarm by Check Point 20180821
Zoner 20180821
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2010-07-29 03:46:29
Entry Point 0x00001700
Number of sections 4
PE sections
PE imports
RegOpenKeyExA
RegCreateKeyA
RegQueryValueExA
RegCloseKey
RegSetValueExA
InitCommonControlsEx
CreateToolhelp32Snapshot
HeapFree
GetStdHandle
Process32First
WaitForSingleObject
HeapDestroy
HeapAlloc
GetModuleFileNameA
RtlUnwind
Process32Next
FreeEnvironmentStringsA
GetCurrentProcess
GetEnvironmentStrings
SetConsoleCtrlHandler
OpenProcess
WideCharToMultiByte
UnhandledExceptionFilter
MultiByteToWideChar
HeapSize
SetHandleCount
GetCommandLineA
GetProcAddress
CreateThread
GetModuleHandleA
GetStartupInfoA
HeapValidate
CloseHandle
GetSystemTimeAsFileTime
DuplicateHandle
HeapReAlloc
TerminateProcess
CreateProcessA
HeapCreate
VirtualQuery
Sleep
GetFileType
ExitProcess
VirtualAlloc
PathFindFileNameA
GetWindowThreadProcessId
GetForegroundWindow
LoadIconA
EndDialog
SendMessageA
GetClassNameA
GetClassInfoExA
DialogBoxParamA
GetDlgItem
RegisterClassExA
GetOpenFileNameA
Number of PE resources by type
RT_ICON 7
RT_DIALOG 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 9
PE resources
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

SubsystemVersion
4.0

MachineType
Intel 386 or later, and compatibles

TimeStamp
2010:07:29 04:46:29+01:00

FileType
Win32 EXE

PEType
PE32

CodeSize
19456

LinkerVersion
2.5

FileTypeExtension
exe

InitializedDataSize
27648

ImageFileCharacteristics
No relocs, Executable, No line numbers, No symbols, 32-bit

EntryPoint
0x1700

OSVersion
4.0

ImageVersion
0.0

UninitializedDataSize
0

Compressed bundles
File identification
MD5 3f710cebf1d828eb2e8514ea5b4f423a
SHA1 832fa5333f8a7a3a9edbfc005e58260f23cb9deb
SHA256 5e0ebbb2646e00e236b891c32208da84c79a17864d4678ea53c678f4604b9ede
ssdeep
768:ZNErAJHk1kuGJ5cXbLZikhOfF0/q3U3xjABTdEZAaxwxt:ZLkUu73VaWZA3x

authentihash befbc807fe33ce6bcd38e9b115fead5118b2e78f1a026364d81553b48547731b
imphash 42375381e3a3bed6d7a1ba8b250fa9e9
Tamaño del fichero 46.5 KB ( 47616 bytes )
Tipo Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ 4.x (63.3%)
Win32 Executable MS Visual C++ (generic) (14.6%)
Win64 Executable (generic) (12.9%)
Win32 Dynamic Link Library (generic) (3.0%)
Win32 Executable (generic) (2.1%)
Tags
peexe

VirusTotal metadata
First submission 2010-08-10 19:34:40 UTC ( hace 8 años, 5 meses )
Last submission 2018-05-01 18:18:07 UTC ( hace 8 meses, 3 semanas )
Nombres smona132785376994815395558
file-2149330_exe
w7DDpatcher.exe
w7ddpatcher.exe
smona_5e0ebbb2646e00e236b891c32208da84c79a17864d4678ea53c678f4604b9ede.bin
3f710cebf1d828eb2e8514ea5b4f423a.ex
3f710cebf1d828eb2e8514ea5b4f423a.47616
832fa5333f8a7a3a9edbfc005e58260f23cb9deb.bin
filename
file-3374975_exe
W7DDPatcher.exe
empires 2 w7ddpatcher.exe
832fa5333f8a7a3a9edbfc005e58260f23cb9deb
w7ddpatcher.exe1
1309804809.w7ddpatcher.exe
smona131264838931219823183
smona132316733384203094284
Win7 DirectDraw fix for 256color games.exe
smona130805401786169018721
3f710cebf1d828eb2e8514ea5b4f423a
AgeManiaW7.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No hay comentarios. Ningún usuario ha comentado aún. ¡Sea el primero en hacerlo!

Deje su comentario...

?
Enviar comentario

No ha iniciado sesión. Solo los usuarios registrados pueden escribir comentarios.

No hay votos. Nadie ha votado aún. ¡Sea el primero!