× ¡Las cookies están desactivadas! Esta página requiere que las cookies estén activadas para funcionar correctamente
SHA256: 5e0ebbb2646e00e236b891c32208da84c79a17864d4678ea53c678f4604b9ede
Nombre: w7ddpatcher.exe
Detecciones: 12 / 68
Fecha de análisis: 2019-01-23 01:53:30 UTC ( hace 1 mes, 3 semanas )
Antivirus Resultado Actualización
AhnLab-V3 Unwanted/Win32.HackTool.C1337307 20190122
Fortinet Riskware/Patch 20190123
Kingsoft Win32.Malware.Heur_Generic.B.(kcloud) 20190123
Malwarebytes HackTool.FilePatch 20190123
MAX malware (ai score=99) 20190123
McAfee RDN/Generic PUP.z 20190122
McAfee-GW-Edition RDN/Generic PUP.z 20190123
Panda Trj/OCJ.A 20190122
Rising Trojan.Win32.Generic.12C94609 (C64:YzY0OkpxrRMNfx2+) 20190123
Trapmine malicious.moderate.ml.score 20190103
TrendMicro-HouseCall HKTL_PATCH 20190123
Webroot W32.Hacktool.Gen 20190123
Acronis 20190119
Ad-Aware 20190122
AegisLab 20190123
Alibaba 20180921
ALYac 20190122
Antiy-AVL 20190123
Arcabit 20190122
Avast 20190123
Avast-Mobile 20190122
AVG 20190122
Avira (no cloud) 20190122
Babable 20180918
Baidu 20190122
BitDefender 20190122
Bkav 20190122
CAT-QuickHeal 20190122
ClamAV 20190122
CMC 20190122
Comodo 20190122
CrowdStrike Falcon (ML) 20181023
Cybereason 20190109
Cyren 20190122
DrWeb 20190122
eGambit 20190123
Emsisoft 20190122
Endgame 20181108
ESET-NOD32 20190123
F-Prot 20190122
F-Secure 20190122
GData 20190122
Ikarus 20190122
Sophos ML 20181128
Jiangmin 20190123
K7AntiVirus 20190122
K7GW 20190122
Kaspersky 20190122
Microsoft 20190123
eScan 20190122
NANO-Antivirus 20190122
Palo Alto Networks (Known Signatures) 20190123
Qihoo-360 20190123
SentinelOne (Static ML) 20190118
Sophos AV 20190123
SUPERAntiSpyware 20190116
Symantec 20190122
TACHYON 20190123
Tencent 20190123
TheHacker 20190118
Trustlook 20190123
VBA32 20190122
VIPRE 20190122
ViRobot 20190122
Yandex 20190122
Zillya 20190122
ZoneAlarm by Check Point 20190123
Zoner 20190123
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2010-07-29 03:46:29
Entry Point 0x00001700
Number of sections 4
PE sections
PE imports
RegOpenKeyExA
RegCreateKeyA
RegQueryValueExA
RegCloseKey
RegSetValueExA
InitCommonControlsEx
CreateToolhelp32Snapshot
HeapFree
GetStdHandle
Process32First
WaitForSingleObject
HeapDestroy
HeapAlloc
GetModuleFileNameA
RtlUnwind
Process32Next
FreeEnvironmentStringsA
GetCurrentProcess
GetEnvironmentStrings
SetConsoleCtrlHandler
OpenProcess
WideCharToMultiByte
UnhandledExceptionFilter
MultiByteToWideChar
HeapSize
SetHandleCount
GetCommandLineA
GetProcAddress
CreateThread
GetModuleHandleA
GetStartupInfoA
HeapValidate
CloseHandle
GetSystemTimeAsFileTime
DuplicateHandle
HeapReAlloc
TerminateProcess
CreateProcessA
HeapCreate
VirtualQuery
Sleep
GetFileType
ExitProcess
VirtualAlloc
PathFindFileNameA
GetWindowThreadProcessId
GetForegroundWindow
LoadIconA
EndDialog
SendMessageA
GetClassNameA
GetClassInfoExA
DialogBoxParamA
GetDlgItem
RegisterClassExA
GetOpenFileNameA
Number of PE resources by type
RT_ICON 7
RT_DIALOG 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 9
PE resources
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

FileTypeExtension
exe

TimeStamp
2010:07:29 04:46:29+01:00

FileType
Win32 EXE

PEType
PE32

CodeSize
19456

LinkerVersion
2.5

ImageFileCharacteristics
No relocs, Executable, No line numbers, No symbols, 32-bit

EntryPoint
0x1700

InitializedDataSize
27648

SubsystemVersion
4.0

ImageVersion
0.0

OSVersion
4.0

UninitializedDataSize
0

Compressed bundles
File identification
MD5 3f710cebf1d828eb2e8514ea5b4f423a
SHA1 832fa5333f8a7a3a9edbfc005e58260f23cb9deb
SHA256 5e0ebbb2646e00e236b891c32208da84c79a17864d4678ea53c678f4604b9ede
ssdeep
768:ZNErAJHk1kuGJ5cXbLZikhOfF0/q3U3xjABTdEZAaxwxt:ZLkUu73VaWZA3x

authentihash befbc807fe33ce6bcd38e9b115fead5118b2e78f1a026364d81553b48547731b
imphash 42375381e3a3bed6d7a1ba8b250fa9e9
Tamaño del fichero 46.5 KB ( 47616 bytes )
Tipo Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ 4.x (63.3%)
Win32 Executable MS Visual C++ (generic) (14.6%)
Win64 Executable (generic) (12.9%)
Win32 Dynamic Link Library (generic) (3.0%)
Win32 Executable (generic) (2.1%)
Tags
peexe

VirusTotal metadata
First submission 2010-08-10 19:34:40 UTC ( hace 8 años, 7 meses )
Last submission 2019-01-23 01:53:30 UTC ( hace 1 mes, 3 semanas )
Nombres smona132785376994815395558
file-2149330_exe
w7DDpatcher.exe
w7ddpatcher.exe
smona_5e0ebbb2646e00e236b891c32208da84c79a17864d4678ea53c678f4604b9ede.bin
3f710cebf1d828eb2e8514ea5b4f423a.ex
3f710cebf1d828eb2e8514ea5b4f423a.47616
832fa5333f8a7a3a9edbfc005e58260f23cb9deb.bin
filename
file-3374975_exe
W7DDPatcher.exe
empires 2 w7ddpatcher.exe
832fa5333f8a7a3a9edbfc005e58260f23cb9deb
w7ddpatcher.exe1
1309804809.w7ddpatcher.exe
smona131264838931219823183
smona132316733384203094284
Win7 DirectDraw fix for 256color games.exe
smona130805401786169018721
3f710cebf1d828eb2e8514ea5b4f423a
AgeManiaW7.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No hay comentarios. Ningún usuario ha comentado aún. ¡Sea el primero en hacerlo!

Deje su comentario...

?
Enviar comentario

No ha iniciado sesión. Solo los usuarios registrados pueden escribir comentarios.

No hay votos. Nadie ha votado aún. ¡Sea el primero!