× Les cookies sont désactivés ! Ce site exige que les cookies soient activés pour fonctionner correctement
SHA256: 113b1cb29a3bcc81f766c086a4a615fa390a6da52a50dd85c03a5a3a6726b19e
Nom du fichier : CL-ToTB_v0.01_Installer.exe
Ratio de détection : 0 / 56
Date d'analyse : 2015-10-04 21:49:58 UTC (il y a 2 ans, 7 mois)
Antivirus Résultat Mise à jour
Ad-Aware 20151004
AegisLab 20151004
Yandex 20151004
AhnLab-V3 20151004
Alibaba 20150927
ALYac 20151004
Antiy-AVL 20151004
Arcabit 20151004
Avast 20151004
AVG 20151004
Avira (no cloud) 20151004
AVware 20151004
Baidu-International 20151004
BitDefender 20151004
Bkav 20151003
ByteHero 20151004
CAT-QuickHeal 20151003
ClamAV 20151002
CMC 20151002
Comodo 20151004
Cyren 20151004
DrWeb 20151004
Emsisoft 20151004
ESET-NOD32 20151004
F-Prot 20150929
F-Secure 20151003
Fortinet 20151004
GData 20151004
Ikarus 20151004
Jiangmin 20151003
K7AntiVirus 20151004
K7GW 20151004
Kaspersky 20151004
Kingsoft 20151004
Malwarebytes 20151004
McAfee 20151004
McAfee-GW-Edition 20151004
Microsoft 20151004
eScan 20151004
NANO-Antivirus 20151004
nProtect 20151002
Panda 20151004
Qihoo-360 20151004
Rising 20151004
Sophos AV 20151004
SUPERAntiSpyware 20151003
Symantec 20151004
Tencent 20151004
TheHacker 20151002
TrendMicro 20151004
TrendMicro-HouseCall 20151004
VBA32 20151003
VIPRE 20151004
ViRobot 20151004
Zillya 20151004
Zoner 20151004
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2015 Time of The Battle, Virtual World

Publisher Alpha & Co
Product Code Lyoko - Time of The Battle
File version
Description Code Lyoko - Time of The Battle Setup
Comments This installation was built with Inno Setup.
Packers identified
F-PROT INNO, appended
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 1992-06-19 22:22:17
Entry Point 0x0000A5F8
Number of sections 8
PE sections
Overlays
MD5 147158a08f5d899cab2d25dcc196da7b
File type data
Offset 69120
Size 11564490
Entropy 8.00
PE imports
LookupPrivilegeValueA
RegCloseKey
OpenProcessToken
RegQueryValueExA
AdjustTokenPrivileges
RegOpenKeyExA
InitCommonControls
GetSystemTime
GetLastError
GetEnvironmentVariableA
GetStdHandle
EnterCriticalSection
GetUserDefaultLangID
GetSystemInfo
GetFileAttributesA
GetExitCodeProcess
ExitProcess
CreateDirectoryA
VirtualProtect
GetVersionExA
RemoveDirectoryA
RtlUnwind
LoadLibraryA
DeleteCriticalSection
GetCurrentProcess
SizeofResource
GetLocaleInfoA
LocalAlloc
LockResource
IsDBCSLeadByte
DeleteFileA
GetWindowsDirectoryA
GetSystemDefaultLCID
SetErrorMode
MultiByteToWideChar
GetCommandLineA
GetProcAddress
FormatMessageA
SetFilePointer
RaiseException
WideCharToMultiByte
GetModuleHandleA
ReadFile
InterlockedExchange
WriteFile
CloseHandle
GetACP
GetFullPathNameA
LocalFree
CreateProcessA
GetModuleFileNameA
InitializeCriticalSection
LoadResource
VirtualQuery
VirtualFree
TlsGetValue
Sleep
GetFileType
SetEndOfFile
TlsSetValue
CreateFileA
FindResourceA
VirtualAlloc
GetFileSize
SetLastError
LeaveCriticalSection
SysStringLen
SysAllocStringLen
VariantCopyInd
VariantClear
VariantChangeTypeEx
CharPrevA
CreateWindowExA
LoadStringA
DispatchMessageA
CallWindowProcA
MessageBoxA
PeekMessageA
SetWindowLongA
MsgWaitForMultipleObjects
TranslateMessage
ExitWindowsEx
DestroyWindow
Number of PE resources by type
RT_STRING 6
RT_ICON 1
RT_MANIFEST 1
RT_RCDATA 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 7
ENGLISH US 4
PE resources
ExifTool file metadata
SubsystemVersion
4.0

Comments
This installation was built with Inno Setup.

InitializedDataSize
27648

ImageVersion
6.0

ProductName
Code Lyoko - Time of The Battle

FileVersionNumber
0.0.0.0

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

LinkerVersion
2.25

FileTypeExtension
exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

TimeStamp
1992:06:19 23:22:17+01:00

FileType
Win32 EXE

PEType
PE32

ProductVersion
Prototype 1

FileDescription
Code Lyoko - Time of The Battle Setup

OSVersion
1.0

FileOS
Win32

LegalCopyright
Copyright 2015 Time of The Battle, Virtual World

MachineType
Intel 386 or later, and compatibles

CompanyName
Alpha & Co

CodeSize
40448

FileSubtype
0

ProductVersionNumber
0.0.0.0

EntryPoint
0xa5f8

ObjectFileType
Executable application

File identification
MD5 7a3e8c76c9b704abd399f2666964b461
SHA1 4a36e074ac09f1094a7bb48ed334aa085e239f03
SHA256 113b1cb29a3bcc81f766c086a4a615fa390a6da52a50dd85c03a5a3a6726b19e
ssdeep
196608:jRzO9aSoO//pNhabhOc4F/UYqDu423NSq8zKC6rwbfqhCufXD2cJxJ:jlSbHhabxYTpX3NSBz7rfmHZJ

authentihash b8ec931e7449709fb636a2d9b7625248fa576629606b1b11e592738e556397c3
imphash 884310b1928934402ea6fec1dbd3cf5e
File size 11.1 MB ( 11633610 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Inno Setup installer (71.1%)
Win32 Executable Delphi generic (9.1%)
Windows screen saver (8.4%)
Win32 Dynamic Link Library (generic) (4.2%)
Win32 Executable (generic) (2.9%)
Tags
peexe overlay

VirusTotal metadata
First submission 2015-10-04 21:49:58 UTC (il y a 2 ans, 7 mois)
Last submission 2015-10-04 21:49:58 UTC (il y a 2 ans, 7 mois)
Noms du fichier CL-ToTB_v0.01_Installer.exe
Aucun commentaire. Aucun membre de la communauté VirusTotal n'a encore commenté cet élément, soyez le premier à le faire !

Laissez votre commentaire...

?
Poster un commentaire

Vous n'êtes pas connecté. Seuls les utilisateurs enregistrés peuvent laisser des commentaires, connectez-vous pour commenter !

Aucun vote. Personne n'a encore voté pour cet élément, soyez le premier à le faire !
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Deleted files
Created processes
Runtime DLLs