× Les cookies sont désactivés ! Ce site exige que les cookies soient activés pour fonctionner correctement
SHA256: 428e6808d3686d1a847f3cf7f46b7545316c48541af0a0ca26a31f76580986a2
Nom du fichier : DirLister.exe
Ratio de détection : 0 / 56
Date d'analyse : 2014-11-30 13:49:17 UTC (il y a 4 ans, 3 mois) Voir les derniers
Antivirus Résultat Mise à jour
Ad-Aware 20141130
AegisLab 20141130
Yandex 20141129
AhnLab-V3 20141130
ALYac 20141130
Antiy-AVL 20141130
Avast 20141130
AVG 20141130
Avira (no cloud) 20141130
AVware 20141121
Baidu-International 20141130
BitDefender 20141130
Bkav 20141127
ByteHero 20141130
CAT-QuickHeal 20141129
ClamAV 20141130
CMC 20141127
Comodo 20141130
Cyren 20141130
DrWeb 20141130
Emsisoft 20141130
ESET-NOD32 20141130
F-Prot 20141130
F-Secure 20141130
Fortinet 20141129
GData 20141130
Ikarus 20141130
Jiangmin 20141129
K7AntiVirus 20141128
K7GW 20141129
Kaspersky 20141130
Kingsoft 20141130
Malwarebytes 20141130
McAfee 20141130
McAfee-GW-Edition 20141130
Microsoft 20141130
eScan 20141130
NANO-Antivirus 20141130
Norman 20141130
nProtect 20141128
Panda 20141130
Qihoo-360 20141130
Rising 20141129
Sophos AV 20141130
SUPERAntiSpyware 20141130
Symantec 20141130
Tencent 20141130
TheHacker 20141130
TotalDefense 20141129
TrendMicro 20141130
TrendMicro-HouseCall 20141130
VBA32 20141128
VIPRE 20141130
ViRobot 20141130
Zillya 20141127
Zoner 20141127
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright

File version 0.9.0.0
Description Directory Lister Setup
Comments This installation was built with Inno Setup: http://www.innosetup.com
Packers identified
F-PROT INNO, appended, Unicode, UPX
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 1992-06-19 22:22:17
Entry Point 0x000097F0
Number of sections 8
PE sections
Overlays
MD5 07a34ecf49afe2b53b4756e5514ffe53
File type data
Offset 52224
Size 520500
Entropy 8.00
PE imports
LookupPrivilegeValueA
RegCloseKey
OpenProcessToken
RegQueryValueExA
AdjustTokenPrivileges
RegOpenKeyExA
InitCommonControls
GetSystemTime
GetLastError
GetEnvironmentVariableA
GetStdHandle
EnterCriticalSection
GetUserDefaultLangID
GetSystemInfo
GetFileAttributesA
GetExitCodeProcess
ExitProcess
CreateDirectoryA
VirtualProtect
GetVersionExA
RemoveDirectoryA
RtlUnwind
LoadLibraryA
DeleteCriticalSection
GetCurrentProcess
SizeofResource
GetLocaleInfoA
LocalAlloc
LockResource
IsDBCSLeadByte
DeleteFileA
GetWindowsDirectoryA
GetSystemDefaultLCID
SetErrorMode
MultiByteToWideChar
GetCommandLineA
GetProcAddress
FormatMessageA
SetFilePointer
RaiseException
WideCharToMultiByte
GetModuleHandleA
ReadFile
InterlockedExchange
WriteFile
CloseHandle
GetFullPathNameA
LocalFree
CreateProcessA
GetModuleFileNameA
InitializeCriticalSection
LoadResource
VirtualQuery
VirtualFree
TlsGetValue
Sleep
GetFileType
SetEndOfFile
TlsSetValue
CreateFileA
FindResourceA
VirtualAlloc
GetFileSize
SetLastError
LeaveCriticalSection
SysStringLen
SysAllocStringLen
VariantCopyInd
VariantClear
VariantChangeTypeEx
CharPrevA
CreateWindowExA
LoadStringA
DispatchMessageA
CallWindowProcA
MessageBoxA
PeekMessageA
SetWindowLongA
MsgWaitForMultipleObjects
TranslateMessage
ExitWindowsEx
DestroyWindow
Number of PE resources by type
RT_STRING 6
RT_ICON 4
RT_MANIFEST 1
RT_RCDATA 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 7
DUTCH 4
ENGLISH US 3
PE resources
ExifTool file metadata
SubsystemVersion
4.0

Comments
This installation was built with Inno Setup: http://www.innosetup.com

InitializedDataSize
16896

ImageVersion
0.0

FileVersionNumber
0.9.0.0

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Windows, Latin1

LinkerVersion
2.25

FileTypeExtension
exe

MIMEType
application/octet-stream

FileVersion
0.9.0.0

TimeStamp
1992:06:19 23:22:17+01:00

FileType
Win32 EXE

PEType
PE32

FileDescription
Directory Lister Setup

OSVersion
1.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
KRKSoft

CodeSize
36864

FileSubtype
0

ProductVersionNumber
0.0.0.0

EntryPoint
0x97f0

ObjectFileType
Executable application

File identification
MD5 319b97fc9fa583403d9453f11b9702cb
SHA1 a51ef5791e4b39e0ad66cd08ce832295dd861212
SHA256 428e6808d3686d1a847f3cf7f46b7545316c48541af0a0ca26a31f76580986a2
ssdeep
12288:7mz39dIJrRmb9acMYKqfeDfcYWDN3iFSI/uNU/Fq3Hz+lO+XUP:7I39dOgbjKYDNyFV/uN4vo+XUP

authentihash 80f12f808df20191b41f84c408bbf2aab98dbc25df17c00b30e81ee9f8422c97
imphash 80417b621299e3e1de617305557a3c68
File size 559.3 KB ( 572724 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable PowerBASIC/Win 9.x (51.2%)
Inno Setup installer (37.9%)
Win32 Executable Delphi generic (4.9%)
Win32 Dynamic Link Library (generic) (2.2%)
Win32 Executable (generic) (1.5%)
Tags
peexe upx overlay

VirusTotal metadata
First submission 2009-05-07 17:10:24 UTC (il y a 9 ans, 10 mois)
Last submission 2017-10-13 09:48:11 UTC (il y a 1 an, 5 mois)
Noms du fichier DirLister.exe
Directory Lister 0.9 DirLister.exe
DirLister 0.9.exe
DirLister 0_9 de Pcastuces 190612.exe
file-4439077_exe
filename
DirLister 0.9.0.1.exe
DirectoryListerPortable_0.9.exe
DirLister.exe
DirLister09.exe
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
Aucun commentaire. Aucun membre de la communauté VirusTotal n'a encore commenté cet élément, soyez le premier à le faire !

Laissez votre commentaire...

?
Poster un commentaire

Vous n'êtes pas connecté. Seuls les utilisateurs enregistrés peuvent laisser des commentaires, connectez-vous pour commenter !

Aucun vote. Personne n'a encore voté pour cet élément, soyez le premier à le faire !