× Les cookies sont désactivés ! Ce site exige que les cookies soient activés pour fonctionner correctement
SHA256: 6631c7e76c7e98efc4c5fecd765f595bf8753eba750266abde0bc8463df3bcff
Nom du fichier : Popcorn-Time-0.3.8-5-Setup.exe
Ratio de détection : 3 / 56
Date d'analyse : 2015-09-19 21:06:31 UTC (il y a 3 ans, 2 mois) Voir les derniers
Antivirus Résultat Mise à jour
Jiangmin Trojan/Vobfus.aelt 20150916
McAfee Artemis!F471955FDA84 20150919
McAfee-GW-Edition Artemis 20150919
Ad-Aware 20150919
AegisLab 20150919
Yandex 20150917
AhnLab-V3 20150919
Alibaba 20150918
ALYac 20150919
Antiy-AVL 20150919
Arcabit 20150919
Avast 20150919
AVG 20150919
Avira (no cloud) 20150919
AVware 20150919
Baidu-International 20150919
BitDefender 20150919
Bkav 20150919
ByteHero 20150919
CAT-QuickHeal 20150919
ClamAV 20150918
CMC 20150916
Comodo 20150919
Cyren 20150919
DrWeb 20150919
Emsisoft 20150919
ESET-NOD32 20150919
F-Prot 20150919
F-Secure 20150919
Fortinet 20150919
GData 20150919
Ikarus 20150919
K7AntiVirus 20150919
K7GW 20150919
Kaspersky 20150919
Kingsoft 20150919
Malwarebytes 20150919
Microsoft 20150919
eScan 20150919
NANO-Antivirus 20150919
nProtect 20150918
Panda 20150919
Qihoo-360 20150919
Rising 20150919
Sophos AV 20150919
SUPERAntiSpyware 20150919
Symantec 20150919
Tencent 20150919
TheHacker 20150919
TrendMicro 20150919
TrendMicro-HouseCall 20150919
VBA32 20150918
VIPRE 20150919
ViRobot 20150919
Zillya 20150919
Zoner 20150919
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Authenticode signature block and FileVersionInfo properties
Copyright
https://popcorntime.io

Product Popcorn Time
File version 0.3.8-5
Description Popcorn Time 0.3.8-5 Installer
Signature verification Certificate out of its validity period
Signers
[+] David Lemarier
Status This certificate or one of the certificates in the certificate chain is not time valid.
Issuer StartCom Class 2 Primary Intermediate Object CA
Valid from 9:29 AM 10/17/2014
Valid to 8:39 AM 10/17/2016
Valid usage Code Signing, Lifetime Signing
Algorithm sha1RSA
Thumbprint 81E790FD39699571CA52E6FBCB115E325838A9CE
Serial number 10 89
[+] StartCom Class 2 Primary Intermediate Object CA
Status Valid
Issuer StartCom Certification Authority
Valid from 11:01 PM 10/14/2007
Valid to 11:01 PM 10/14/2022
Valid usage All
Algorithm sha256RSA
Thumbprint C2624B5B53F73EC2911D4479072B9255BB85A2DF
Serial number 10 00 F5 EB E0 39 43
[+] StartCom Certification Authority
Status Valid
Issuer StartCom Certification Authority
Valid from 8:46 PM 9/17/2006
Valid to 8:46 PM 9/17/2036
Valid usage Server Auth, Client Auth, Email Protection, Code Signing, Timestamp Signing, EFS, IPSEC Tunnel, IPSEC User
Algorithm sha1RSA
Thumbprint 3E2BF7F2031B96F38CE6C4D8A85D3E2D58476A0F
Serial number 01
Packers identified
F-PROT NSIS, maxorder, appended, UTF-8, eval
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2014-11-08 01:18:25
Entry Point 0x00004452
Number of sections 7
PE sections
Overlays
MD5 a7f7cd5c449e7df42fe3869797cf8539
File type data
Offset 251392
Size 28140544
Entropy 8.00
PE imports
RegCreateKeyExW
RegDeleteValueW
RegCloseKey
RegSetValueExW
RegEnumValueW
RegEnumKeyW
RegOpenKeyExW
RegDeleteKeyW
RegQueryValueExW
ImageList_Create
InitCommonControls
ImageList_Destroy
ImageList_AddMasked
GetDeviceCaps
CreateFontIndirectW
SelectObject
CreateBrushIndirect
SetBkMode
SetBkColor
DeleteObject
SetTextColor
GetLastError
SetCurrentDirectoryW
CopyFileW
GetShortPathNameW
lstrlenA
GetModuleFileNameW
GlobalFree
WaitForSingleObject
FreeLibrary
ExitProcess
SetFileTime
GlobalUnlock
GetFileAttributesW
LoadLibraryA
GetCurrentProcess
CompareFileTime
GetFileSize
SetFilePointer
GetCommandLineW
SetErrorMode
LoadLibraryExW
MultiByteToWideChar
lstrlenW
SetEnvironmentVariableW
CreateDirectoryW
DeleteFileW
GetProcAddress
ReadFile
lstrcpyA
GetPrivateProfileStringW
WritePrivateProfileStringW
GetTempFileNameW
lstrcpynW
RemoveDirectoryW
GetModuleHandleA
lstrcpyW
SetFileAttributesW
lstrcmpiA
CreateThread
LoadLibraryW
ExpandEnvironmentStringsW
GetSystemDirectoryW
GetDiskFreeSpaceW
FindNextFileW
GetTempPathW
CloseHandle
FindFirstFileW
lstrcmpW
GlobalLock
GetModuleHandleW
GetExitCodeProcess
SearchPathW
WideCharToMultiByte
lstrcmpiW
GetWindowsDirectoryW
WriteFile
CreateFileW
GlobalAlloc
CreateProcessW
FindClose
lstrcatW
Sleep
MoveFileW
GetFullPathNameW
GetTickCount
GetVersion
MulDiv
SHBrowseForFolderW
SHFileOperationW
ShellExecuteW
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetFileInfoW
EmptyClipboard
GetMessagePos
wsprintfW
EndDialog
BeginPaint
SetClassLongW
DefWindowProcW
CharPrevW
PostQuitMessage
SendMessageTimeoutW
SetWindowPos
GetSystemMetrics
SetWindowLongW
IsWindow
PeekMessageW
GetWindowRect
EndPaint
GetDC
DialogBoxParamW
AppendMenuW
IsWindowEnabled
GetDlgItemTextW
MessageBoxIndirectW
GetSysColor
CheckDlgButton
DispatchMessageW
CreateDialogParamW
ReleaseDC
LoadBitmapW
CreatePopupMenu
SendMessageW
SetClipboardData
RegisterClassW
GetWindowLongW
IsWindowVisible
SetForegroundWindow
GetClassInfoW
SetTimer
GetDlgItem
SystemParametersInfoW
DrawTextW
LoadImageW
EnableMenuItem
ScreenToClient
InvalidateRect
wsprintfA
OpenClipboard
CallWindowProcW
TrackPopupMenu
SetWindowTextW
FillRect
ShowWindow
CharNextA
SetDlgItemTextW
LoadCursorW
GetSystemMenu
FindWindowExW
CreateWindowExW
EnableWindow
CloseClipboard
GetClientRect
CharNextW
SetCursor
ExitWindowsEx
DestroyWindow
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
CoTaskMemFree
OleUninitialize
CoCreateInstance
OleInitialize
Number of PE resources by type
RT_DIALOG 48
RT_ICON 6
RT_GROUP_ICON 1
RT_VERSION 1
RT_MANIFEST 1
Number of PE resources by language
ENGLISH US 57
PE resources
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
2.24

ImageVersion
6.0

FileSubtype
0

FileVersionNumber
0.3.8.5

UninitializedDataSize
131072

LanguageCode
English (U.S.)

FileFlagsMask
0x0000

CharacterSet
Unicode

InitializedDataSize
35328

EntryPoint
0x4452

MIMEType
application/octet-stream

LegalCopyright
https://popcorntime.io

FileVersion
0.3.8-5

TimeStamp
2014:11:08 02:18:25+01:00

FileType
Win32 EXE

PEType
PE32

ProductVersion
0.3.8-5

FileDescription
Popcorn Time 0.3.8-5 Installer

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Popcorn Official

CodeSize
36864

ProductName
Popcorn Time

ProductVersionNumber
0.3.8.5

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 6dfc433ea887f16d7d38cd5566888629
SHA1 634bc934996a360781db8fb0237172d542c91c1c
SHA256 6631c7e76c7e98efc4c5fecd765f595bf8753eba750266abde0bc8463df3bcff
ssdeep
393216:2edLjqZUwmdHuuGH8esUeagMRhg5ur+OytHOhP7jcxMVBJ+kB1lA/gx+yDjcaHV5:2edCZgE8GeagMi8PXbBDBDA/wc8V5

authentihash ea613c4cb6a4d3bf63ce95780506659b7baff7a5ef7b4dfa5cc90e432b814ff8
imphash 83a80227060862e9085a6a45ee76c070
File size 27.1 MB ( 28391936 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (41.0%)
Win64 Executable (generic) (36.3%)
Win32 Dynamic Link Library (generic) (8.6%)
Win32 Executable (generic) (5.9%)
OS/2 Executable (generic) (2.6%)
Tags
nsis peexe via-tor signed overlay

VirusTotal metadata
First submission 2015-09-07 19:38:37 UTC (il y a 3 ans, 3 mois)
Last submission 2018-03-06 15:36:21 UTC (il y a 9 mois, 1 semaine)
Noms du fichier popcorn-time-0-3-8-5-beta-multi-win.exe
Popcorn-Time-0.3.8-5-Setup.exe
Popcorn-Time-0.3.8-5-Setup.exe
Popcorn-Time-0.3.8-5-Setup.exe
Popcorn-Time-Windows(1).exe
Popcorn-Time-0.3.8-5-Setup (2).exe
Popcorn-Time-0.3.8-5-81914d001-Win-Signed-Setup.exe
Popcorn-Time-Windows (1).exe
Popcorn-Time-0.3.8-5-Setup.exe
Popcorn-Time-0.3.8-5-Setup_2.exe
popcorn-time-0-3-8-5-beta-multi-win_1.exe
Popcorn-Time-0.3.8-5-Setup.exe
popcorn-time-0-3-8-5-beta-multi-win.exe
Popcorn-Time-0.3.8-5-Setup.exe
Popcorn-Time-0.3.8-5-Setup(1).exe
Popcorn-Time-0.3.8-5-Setup.exe
filename
Popcorn-Time-0.3.8-5-Setup.exe
Popcorn-Time-0.3.8-5-Setup.exe
Popcorn-Time-0.3.8-5-Setup.exe
Popcorn Time v3.8.5 (IO).exe
b6d3900c31957fc112d881d0ba0b3e19d5ad1b7e18dbf640c93610e6df0696c32724cc5032545ebaa97f8f6899b5426d4a6ff41a35e9dbfe315461feacb4623b
ptws-official-Windows.exe
Popcorn-Time-0.3.8-5-Setup.exe
Popcorn-Time-0.3.8-5-Setup.exe
Aucun commentaire. Aucun membre de la communauté VirusTotal n'a encore commenté cet élément, soyez le premier à le faire !

Laissez votre commentaire...

?
Poster un commentaire

Vous n'êtes pas connecté. Seuls les utilisateurs enregistrés peuvent laisser des commentaires, connectez-vous pour commenter !

Aucun vote. Personne n'a encore voté pour cet élément, soyez le premier à le faire !