× I cookies sono disabilitati! Questo sito richiede i cookies abilitati per funzionare correttamente
SHA256: 511979544c045df64fb3935893a791dee3592a9356bc74c1113c6e2f76a4eb27
Nome del file: SetAppAsDefaultAll.exe
Rapporto rilevamento: 0 / 47
Data analisi: 2013-07-15 12:29:22 UTC ( 9 mesi fa )
Antivirus Risultato Aggiornamento
AVG 20130710
Agnitum 20130710
AhnLab-V3 20130710
AntiVir 20130710
Antiy-AVL 20130710
Avast 20130710
BitDefender 20130710
ByteHero 20130613
CAT-QuickHeal 20130708
ClamAV 20130710
Commtouch 20130710
Comodo 20130709
DrWeb 20130710
ESET-NOD32 20130710
Emsisoft 20130710
F-Prot 20130710
F-Secure 20130710
Fortinet 20130710
GData 20130710
Ikarus 20130710
Jiangmin 20130710
K7AntiVirus 20130709
K7GW 20130709
Kaspersky 20130710
Kingsoft 20130708
Malwarebytes 20130710
McAfee 20130710
McAfee-GW-Edition 20130710
MicroWorld-eScan 20130710
Microsoft 20130710
NANO-Antivirus 20130710
Norman 20130708
PCTools 20130710
Panda 20130710
Rising 20130709
SUPERAntiSpyware 20130710
Sophos 20130710
Symantec 20130710
TheHacker 20130710
TotalDefense 20130710
TrendMicro 20130710
TrendMicro-HouseCall 20130710
VBA32 20130710
VIPRE 20130710
ViRobot 20130710
eSafe 20130709
nProtect 20130710
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2013-07-15 06:27:53
Link date 7:27 AM 7/15/2013
Entry Point 0x000014B4
Number of sections 5
PE sections
PE imports
GetLastError
InitializeCriticalSectionAndSpinCount
HeapFree
GetStdHandle
EnterCriticalSection
LCMapStringW
GetModuleFileNameW
GetConsoleCP
GetOEMCP
QueryPerformanceCounter
IsDebuggerPresent
EncodePointer
TlsAlloc
GetEnvironmentStringsW
FlushFileBuffers
GetModuleHandleW
RtlUnwind
IsProcessorFeaturePresent
HeapAlloc
GetCurrentProcess
GetStartupInfoW
GetFileType
GetConsoleMode
GetStringTypeW
GetCurrentProcessId
GetCommandLineW
LoadLibraryExW
UnhandledExceptionFilter
TlsGetValue
MultiByteToWideChar
HeapSize
SetFilePointerEx
FreeEnvironmentStringsW
GetProcAddress
GetProcessHeap
SetStdHandle
GetCPInfo
LoadLibraryW
TlsFree
DeleteCriticalSection
SetUnhandledExceptionFilter
WriteFile
CloseHandle
GetSystemTimeAsFileTime
GetACP
HeapReAlloc
DecodePointer
GetVersion
TerminateProcess
WideCharToMultiByte
GetModuleHandleExW
IsValidCodePage
OutputDebugStringW
CreateFileW
InterlockedDecrement
Sleep
WriteConsoleW
TlsSetValue
ExitProcess
GetCurrentThreadId
LeaveCriticalSection
SetLastError
InterlockedIncrement
CommandLineToArgvW
MessageBoxW
SendMessageW
FindWindowW
CoInitializeEx
CoCreateInstance
Number of PE resources by type
RT_ICON 4
RT_GROUP_ICON 2
RT_STRING 1
RT_MANIFEST 1
Number of PE resources by language
ITALIAN 7
ENGLISH US 1
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

TimeStamp
2013:07:15 07:27:53+01:00

FileType
Win32 EXE

PEType
PE32

CodeSize
27648

LinkerVersion
11.0

EntryPoint
0x14b4

InitializedDataSize
47616

SubsystemVersion
5.1

ImageVersion
0.0

OSVersion
5.1

UninitializedDataSize
0

File identification
MD5 567ae6467bc436cdf9aa866e0aa457fc
SHA1 4c956fd8157fec68f9c7c0718f676e6c5a69e6fb
SHA256 511979544c045df64fb3935893a791dee3592a9356bc74c1113c6e2f76a4eb27
ssdeep
768:NJ410bUxcbMA4qLCbKmMVOKYl+/RmSDBBRYNKscDWTqdsWjcdgMBvk:NK2PqbBMVOKYsRQcDVdsWjcdDc

File size 66.5 KB ( 68096 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (78.5%)
Win32 Executable (generic) (11.3%)
Generic Win/DOS Executable (5.0%)
DOS Executable Generic (5.0%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
Tags
peexe

VirusTotal metadata
First submission 2013-07-15 12:29:22 UTC ( 9 mesi fa )
Last submission 2013-07-15 12:29:22 UTC ( 9 mesi fa )
Nomi dei files SetAppAsDefaultAll.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
Nessun commento. Nessun membro della Comunità di VirusTotal ha commentato questo item, sii il primo a farlo!

Lascia il tuo commento...

?
Posta commento

Non ti sei ancora collegato. Solo gli utenti registrati possono commentare, collegati ed esprimi il tuo giudizio!

Nessun voto. Nessuno ha ancora votato questo item, sii il primo a farlo!