× Les cookies sont désactivés ! Ce site exige que les cookies soient activés pour fonctionner correctement
SHA256: 968874ae2afed7f1d2824435dfce202570021c1cace5fc66650723df2d6f6d1b
Nom du fichier : FlowRebuilder.exe
Ratio de détection : 1 / 67
Date d'analyse : 2018-11-07 09:24:44 UTC (il y a 1 mois)
Antivirus Résultat Mise à jour
Symantec ML.Attribute.HighConfidence 20181107
Ad-Aware 20181107
AegisLab 20181107
AhnLab-V3 20181106
Alibaba 20180921
ALYac 20181107
Antiy-AVL 20181106
Arcabit 20181107
Avast 20181107
Avast-Mobile 20181107
AVG 20181107
Avira (no cloud) 20181107
Babable 20180918
Baidu 20181107
BitDefender 20181107
Bkav 20181107
CAT-QuickHeal 20181105
ClamAV 20181107
CMC 20181107
CrowdStrike Falcon (ML) 20181022
Cybereason 20180225
Cylance 20181107
Cyren 20181107
DrWeb 20181107
eGambit 20181107
Emsisoft 20181107
Endgame 20180730
ESET-NOD32 20181107
F-Prot 20181107
F-Secure 20181107
Fortinet 20181107
GData 20181107
Ikarus 20181107
Sophos ML 20180717
Jiangmin 20181107
K7AntiVirus 20181107
K7GW 20181107
Kaspersky 20181107
Kingsoft 20181107
Malwarebytes 20181107
MAX 20181107
McAfee 20181107
McAfee-GW-Edition 20181107
Microsoft 20181107
eScan 20181107
NANO-Antivirus 20181107
Palo Alto Networks (Known Signatures) 20181107
Panda 20181106
Qihoo-360 20181107
Rising 20181107
SentinelOne (Static ML) 20181011
Sophos AV 20181107
SUPERAntiSpyware 20181107
Symantec Mobile Insight 20181105
TACHYON 20181107
Tencent 20181107
TheHacker 20181107
TotalDefense 20181107
TrendMicro 20181107
TrendMicro-HouseCall 20181107
Trustlook 20181107
VBA32 20181106
VIPRE 20181107
ViRobot 20181107
Webroot 20181107
Yandex 20181106
Zillya 20181106
ZoneAlarm by Check Point 20181107
Zoner 20181107
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © NDT 2011 / judges 2016

Product FlowRebuilder
Original name FlowRebuilder.exe
Internal name FlowRebuilder.exe
File version 5.2.0.0
Description FlowRebuilder
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-03-16 07:44:25
Entry Point 0x0006403E
Number of sections 3
.NET details
Module Version ID bedc0b5a-2c83-4355-8d01-4a39912f85a4
TypeLib ID 8acf2bc8-717a-47d0-8896-6d8014aa7f16
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_MANIFEST 1
RT_VERSION 1
Number of PE resources by language
NEUTRAL 2
PE resources
ExifTool file metadata
UninitializedDataSize
0

InitializedDataSize
2048

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
5.2.0.0

LanguageCode
Neutral

FileFlagsMask
0x003f

FileDescription
FlowRebuilder

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Unicode

LinkerVersion
11.0

EntryPoint
0x6403e

OriginalFileName
FlowRebuilder.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright NDT 2011 / judges 2016

FileVersion
5.2.0.0

TimeStamp
2016:03:16 08:44:25+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
FlowRebuilder.exe

ProductVersion
5.2.0.0

SubsystemVersion
4.0

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
NDT

CodeSize
401920

ProductName
FlowRebuilder

ProductVersionNumber
5.2.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

AssemblyVersion
0.0.0.0

File identification
MD5 56f1163dd695e694cf98d563db170634
SHA1 02de99340c6d9f686b1cdedbf64962f7d40301b6
SHA256 968874ae2afed7f1d2824435dfce202570021c1cace5fc66650723df2d6f6d1b
ssdeep
6144:zGwt9r7EI7VVBawvThNysSOEFdEhqeiEBiT:zGwnZ7V3XbhNweiEB

authentihash e2d33a04dc5ad06b3f907e8e7ec4e102a6d037c96d21d615995dcf00aaa3679e
imphash f34d5f2d4577ed6d9ceec516c1f5a744
File size 395.0 KB ( 404480 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (70.8%)
Windows screen saver (12.6%)
Win32 Dynamic Link Library (generic) (6.3%)
Win32 Executable (generic) (4.3%)
OS/2 Executable (generic) (1.9%)
Tags
peexe assembly

VirusTotal metadata
First submission 2016-03-16 23:00:45 UTC (il y a 2 ans, 8 mois)
Last submission 2018-10-23 14:44:57 UTC (il y a 1 mois, 2 semaines)
Noms du fichier FlowRebuilder.exe
FlowRebuilder v5.2.exe
FlowRebuilder.exe
Aucun commentaire. Aucun membre de la communauté VirusTotal n'a encore commenté cet élément, soyez le premier à le faire !

Laissez votre commentaire...

?
Poster un commentaire

Vous n'êtes pas connecté. Seuls les utilisateurs enregistrés peuvent laisser des commentaires, connectez-vous pour commenter !

Aucun vote. Personne n'a encore voté pour cet élément, soyez le premier à le faire !
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
DNS requests
UDP communications