× ¡Las cookies están desactivadas! Esta página requiere que las cookies estén activadas para funcionar correctamente
SHA256: af845e782bad64bfaebd42d6fb198fdb356ff2524c0c0cb5c9ac36fe5bc16048
Nombre: GlassWireFull.exe
Detecciones: 0 / 67
Fecha de análisis: 2018-09-02 11:46:49 UTC ( hace 2 meses, 2 semanas ) Ver el más reciente
Antivirus Resultado Actualización
Ad-Aware 20180902
AegisLab 20180902
AhnLab-V3 20180902
Alibaba 20180713
ALYac 20180902
Antiy-AVL 20180902
Arcabit 20180902
Avast 20180902
Avast-Mobile 20180902
AVG 20180902
Avira (no cloud) 20180902
AVware 20180823
Babable 20180902
Baidu 20180830
BitDefender 20180902
Bkav 20180831
CAT-QuickHeal 20180901
ClamAV 20180902
CMC 20180902
Comodo 20180902
CrowdStrike Falcon (ML) 20180723
Cybereason 20180225
Cylance 20180902
Cyren 20180902
DrWeb 20180902
eGambit 20180902
Emsisoft 20180902
Endgame 20180730
ESET-NOD32 20180902
F-Prot 20180902
F-Secure 20180902
Fortinet 20180902
GData 20180902
Ikarus 20180902
Sophos ML 20180717
Jiangmin 20180902
K7AntiVirus 20180902
K7GW 20180902
Kaspersky 20180902
Kingsoft 20180902
Malwarebytes 20180902
MAX 20180902
McAfee 20180902
McAfee-GW-Edition 20180902
Microsoft 20180902
eScan 20180902
NANO-Antivirus 20180902
Palo Alto Networks (Known Signatures) 20180902
Panda 20180902
Qihoo-360 20180902
Rising 20180902
SentinelOne (Static ML) 20180830
Sophos AV 20180902
SUPERAntiSpyware 20180902
Symantec 20180901
Symantec Mobile Insight 20180831
TACHYON 20180902
Tencent 20180902
TheHacker 20180902
TrendMicro 20180902
TrendMicro-HouseCall 20180902
Trustlook 20180902
VBA32 20180831
VIPRE 20180902
ViRobot 20180901
Webroot 20180902
Yandex 20180831
ZoneAlarm by Check Point 20180902
Zoner 20180901
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Authenticode signature block and FileVersionInfo properties
Copyright
(c) 2018 SecureMix LLC

Product GlassWire Setup
Original name glasswire-setup-2.0.123.exe
File version 2,0,123,0
Description GlassWire Setup
Signature verification Signed file, verified signature
Signing date 7:51 AM 6/22/2018
Signers
[+] GlassWire
Status This certificate or one of the certificates in the certificate chain is not time valid.
Issuer Symantec Class 3 SHA256 Code Signing CA
Valid from 1:00 AM 4/28/2016
Valid to 12:59 AM 6/28/2018
Valid usage Code Signing
Algorithm sha256RSA
Thumbprint 426B6D39601F1C78ECF529F3A96BCB016513F2DB
Serial number 13 A9 8B 3B 6D 5E 49 D3 AA 96 70 AC 1C 0F 63 4A
[+] Symantec Class 3 SHA256 Code Signing CA
Status Valid
Issuer VeriSign Class 3 Public Primary Certification Authority - G5
Valid from 1:00 AM 12/10/2013
Valid to 12:59 AM 12/10/2023
Valid usage Client Auth, Code Signing
Algorithm sha256RSA
Thumbprint 007790F6561DAD89B0BCD85585762495E358F8A5
Serial number 3D 78 D7 F9 76 49 60 B2 61 7D F4 F0 1E CA 86 2A
[+] VeriSign
Status Valid
Issuer VeriSign Class 3 Public Primary Certification Authority - G5
Valid from 1:00 AM 11/8/2006
Valid to 12:59 AM 7/17/2036
Valid usage Server Auth, Client Auth, Email Protection, Code Signing
Algorithm sha1RSA
Thumbprint 4EB6D578499B1CCF5F581EAD56BE3D9B6744A5E5
Serial number 18 DA D1 9E 26 7D E8 BB 4A 21 58 CD CC 6B 3B 4A
Counter signers
[+] Symantec Time Stamping Services Signer - G4
Status Valid
Issuer Symantec Time Stamping Services CA - G2
Valid from 1:00 AM 10/18/2012
Valid to 12:59 AM 12/30/2020
Valid usage Timestamp Signing
Algorithm sha1RSA
Thumbrint 65439929B67973EB192D6FF243E6767ADF0834E4
Serial number 0E CF F4 38 C8 FE BF 35 6E 04 D8 6A 98 1B 1A 50
[+] Symantec Time Stamping Services CA - G2
Status Valid
Issuer Thawte Timestamping CA
Valid from 1:00 AM 12/21/2012
Valid to 12:59 AM 12/31/2020
Valid usage Timestamp Signing
Algorithm sha1RSA
Thumbrint 6C07453FFDDA08B83707C09B82FB3D15F35336B1
Serial number 7E 93 EB FB 7C C6 4E 59 EA 4B 9A 77 D4 06 FC 3B
[+] Thawte Timestamping CA
Status Valid
Issuer Thawte Timestamping CA
Valid from 1:00 AM 1/1/1997
Valid to 12:59 AM 1/1/2021
Valid usage Timestamp Signing
Algorithm md5RSA
Thumbrint BE36A4562FB2EE05DBB3D32323ADF445084ED656
Serial number 00
Packers identified
F-PROT NSIS, appended, UTF-8, Unicode, CAB
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-08-16 04:09:47
Entry Point 0x000032B5
Number of sections 5
PE sections
Overlays
MD5 9158d2244f38dba2e7fe460cf1c37261
File type font/x-snf
Offset 82432
Size 35053328
Entropy 8.00
PE imports
RegDeleteKeyA
LookupPrivilegeValueA
RegCloseKey
RegDeleteValueA
OpenProcessToken
AdjustTokenPrivileges
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegEnumValueA
RegCreateKeyExA
RegEnumKeyA
SetFileSecurityA
ImageList_Create
Ord(17)
ImageList_Destroy
ImageList_AddMasked
GetDeviceCaps
SelectObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetBkColor
DeleteObject
SetTextColor
GetLastError
lstrlenA
lstrcmpiA
GlobalFree
WaitForSingleObject
FreeLibrary
CopyFileA
ExitProcess
SetFileTime
GlobalUnlock
GetModuleFileNameA
DeleteFileA
RemoveDirectoryA
GetShortPathNameA
GetCurrentProcess
LoadLibraryExA
CompareFileTime
GetPrivateProfileStringA
WritePrivateProfileStringA
GetFileSize
lstrcatA
CreateDirectoryA
ExpandEnvironmentStringsA
GetWindowsDirectoryA
SetErrorMode
MultiByteToWideChar
GetCommandLineA
GlobalLock
GetFullPathNameA
SetFilePointer
GetTempPathA
CloseHandle
CreateThread
GetFileAttributesA
GetModuleHandleA
lstrcmpA
SetDllDirectoryA
WriteFile
FindFirstFileA
ReadFile
GetTempFileNameA
lstrcpynA
FindNextFileA
GetSystemDirectoryA
GetDiskFreeSpaceA
MoveFileExA
GetProcAddress
SetEnvironmentVariableA
SetFileAttributesA
GetExitCodeProcess
MoveFileA
CreateProcessA
lstrcpyA
GlobalAlloc
SearchPathA
FindClose
Sleep
CreateFileA
GetTickCount
GetVersion
SetCurrentDirectoryA
MulDiv
SHGetFileInfoA
SHGetSpecialFolderLocation
SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteA
SHFileOperationA
EmptyClipboard
GetMessagePos
EndPaint
CharPrevA
EndDialog
DestroyWindow
DefWindowProcA
ShowWindow
PostQuitMessage
SetWindowTextA
SetClassLongA
LoadBitmapA
SetWindowPos
GetSystemMetrics
IsWindow
AppendMenuA
GetWindowRect
DispatchMessageA
RegisterClassA
SetDlgItemTextA
MessageBoxIndirectA
CallWindowProcA
GetDlgItemTextA
PeekMessageA
SetWindowLongA
DialogBoxParamA
GetSysColor
CheckDlgButton
GetDC
SystemParametersInfoA
BeginPaint
CreatePopupMenu
wsprintfA
SetClipboardData
IsWindowVisible
GetClassInfoA
IsWindowEnabled
GetClientRect
CreateWindowExA
GetDlgItem
SetForegroundWindow
CreateDialogParamA
DrawTextA
EnableMenuItem
ScreenToClient
InvalidateRect
GetWindowLongA
FindWindowExA
SetTimer
LoadCursorA
TrackPopupMenu
SendMessageA
FillRect
SendMessageTimeoutA
CharNextA
LoadImageA
GetSystemMenu
ReleaseDC
EnableWindow
CloseClipboard
OpenClipboard
ExitWindowsEx
SetCursor
OleUninitialize
CoTaskMemFree
OleInitialize
CoCreateInstance
Number of PE resources by type
RT_DIALOG 7
RT_ICON 5
RT_MANIFEST 1
RT_BITMAP 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 16
PE resources
Debug information
ExifTool file metadata
UninitializedDataSize
1024

LinkerVersion
14.0

ImageVersion
6.0

FileSubtype
0

FileVersionNumber
2.0.123.0

LanguageCode
English (U.S.)

FileFlagsMask
0x0000

FileDescription
GlassWire Setup

ImageFileCharacteristics
No relocs, Executable, 32-bit

CharacterSet
Windows, Latin1

InitializedDataSize
118784

EntryPoint
0x32b5

OriginalFileName
glasswire-setup-2.0.123.exe

MIMEType
application/octet-stream

LegalCopyright
(c) 2018 SecureMix LLC

FileVersion
2,0,123,0

TimeStamp
2016:08:16 05:09:47+01:00

FileType
Win32 EXE

PEType
PE32

ProductVersion
2,0,123,0

SubsystemVersion
5.1

OSVersion
5.1

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
SecureMix LLC

CodeSize
25600

ProductName
GlassWire Setup

ProductVersionNumber
2.0.123.0

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 fd54c1672e995117fbe4f1907c5e50b0
SHA1 31489987256425e007a75bcced166f37dc0929ea
SHA256 af845e782bad64bfaebd42d6fb198fdb356ff2524c0c0cb5c9ac36fe5bc16048
ssdeep
786432:SD1kS7249O3cDGvCln9ZWk9lzro8I76uzATq8qsCTnG3j:S9doONMwC8smqsCLqj

authentihash 8804a018ad465e3ec1960ef56496ccf2cc203d211cd416192029d2ef9fec3937
imphash bcaa45e5d90477da44dabbbb71003fc9
Tamaño del fichero 33.5 MB ( 35135760 bytes )
Tipo Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable (generic) (42.7%)
OS/2 Executable (generic) (19.2%)
Generic Win/DOS Executable (18.9%)
DOS Executable Generic (18.9%)
Tags
nsis peexe signed overlay

VirusTotal metadata
First submission 2018-06-22 14:01:51 UTC ( hace 4 meses, 4 semanas )
Last submission 2018-10-30 14:05:58 UTC ( hace 2 semanas, 4 días )
Nombres GlassWireFull.exe
GlassWireSetup.exe
GlassWireSetup 2.0.123.exe
glasswire-free-firewall_2.0.123.exe
GlassWireSetup.exe
GlassWireSetup (3).exe
GlassWire123Setup.exe
GlassWireSetup (1).exe
GlassWireSetup.exe
GlassWireSetup.exe
v2.0.123= GlassWireSetup.exe
GlassWireSetup.exe
GlassWireSetup (1).exe
GlassWireSetup.exe
GlassWireSetup.exe
GlassWireSetup(4).exe
glasswire-setup-2.0.123.exe
GlassWire 2.0.123.exe
GlassWireSetup_4.exe
glasswire_2-0-123-0_fr_432527 (1).exe
GlassWire_2.0.123_Setup.exe
1046347
No hay comentarios. Ningún usuario ha comentado aún. ¡Sea el primero en hacerlo!

Deje su comentario...

?
Enviar comentario

No ha iniciado sesión. Solo los usuarios registrados pueden escribir comentarios.

No hay votos. Nadie ha votado aún. ¡Sea el primero!