× I cookies sono disabilitati! Questo sito richiede i cookies abilitati per funzionare correttamente
SHA256: 9ce06bd5e0403289097d36a4f050dd9b2bed5b32892df3068cc2c9c410603f6c
Nome del file: clicador_2.1.0.4 2-120408.bin
Rapporto rilevamento: 1 / 68
Data analisi: 2018-06-28 07:21:32 UTC ( 10 mesi, 4 settimane fa ) Leggli gli ultimi
Antivirus Risultato Aggiornamento
Rising Malware.Heuristic!ET#82% (RDM+:cmRtazoLZp5AeC9R/s9UP+RFJuBA) 20180628
Ad-Aware 20180628
AegisLab 20180628
AhnLab-V3 20180627
Alibaba 20180628
ALYac 20180628
Antiy-AVL 20180628
Arcabit 20180628
Avast 20180628
Avast-Mobile 20180627
AVG 20180628
Avira (no cloud) 20180628
AVware 20180628
Babable 20180406
Baidu 20180628
BitDefender 20180628
Bkav 20180627
CAT-QuickHeal 20180628
ClamAV 20180628
CMC 20180628
Comodo 20180628
CrowdStrike Falcon (ML) 20180530
Cybereason 20180225
Cylance 20180628
Cyren 20180628
DrWeb 20180628
eGambit 20180628
Emsisoft 20180628
Endgame 20180612
ESET-NOD32 20180628
F-Prot 20180628
F-Secure 20180628
Fortinet 20180628
GData 20180628
Ikarus 20180627
Sophos ML 20180601
Jiangmin 20180628
K7AntiVirus 20180628
K7GW 20180628
Kaspersky 20180628
Kingsoft 20180628
Malwarebytes 20180628
MAX 20180628
McAfee 20180628
McAfee-GW-Edition 20180628
Microsoft 20180628
eScan 20180628
NANO-Antivirus 20180628
Palo Alto Networks (Known Signatures) 20180628
Panda 20180626
Qihoo-360 20180628
SentinelOne (Static ML) 20180618
Sophos AV 20180628
SUPERAntiSpyware 20180628
Symantec 20180628
Symantec Mobile Insight 20180626
TACHYON 20180628
Tencent 20180628
TheHacker 20180628
TotalDefense 20180628
TrendMicro 20180628
TrendMicro-HouseCall 20180628
Trustlook 20180628
VBA32 20180627
VIPRE 20180628
ViRobot 20180628
Webroot 20180628
Yandex 20180627
Zillya 20180627
ZoneAlarm by Check Point 20180628
Zoner 20180627
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (c) 1999-2015 Igor Pavlov

Product 7-Zip
Original name 7z.sfx.exe
Internal name 7z.sfx
File version 15.14
Description 7z SFX
Packers identified
F-PROT 7Z
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2015-12-31 14:25:58
Entry Point 0x000245CA
Number of sections 5
PE sections
Overlays
MD5 0f5c27570d4e109bfcac6751420e2ad6
File type data
Offset 190976
Size 489178
Entropy 8.00
PE imports
GetLastError
GetStdHandle
EnterCriticalSection
FileTimeToSystemTime
RemoveDirectoryW
WaitForSingleObject
GetVersionExW
SetEvent
FindNextFileW
GetFileAttributesW
DeleteCriticalSection
GetStartupInfoA
FileTimeToLocalFileTime
CompareFileTime
GetFileSize
SetFileTime
GetCommandLineW
MultiByteToWideChar
GetFileInformationByHandle
CreateDirectoryW
DeleteFileW
WaitForMultipleObjects
GetModuleHandleA
SetFileAttributesW
GetModuleFileNameW
SetFilePointer
ReadFile
WriteFile
GetCurrentProcess
ResetEvent
FindFirstFileW
GetProcAddress
SetPriorityClass
FreeLibrary
LocalFree
FormatMessageW
GetCurrentDirectoryW
LoadLibraryW
CreateEventW
InitializeCriticalSection
CreateFileW
VirtualFree
GetLogicalDriveStringsW
FindClose
Sleep
MoveFileW
SetEndOfFile
CloseHandle
GetTickCount
VirtualAlloc
SetLastError
LeaveCriticalSection
_purecall
__p__fmode
malloc
__CxxFrameHandler
??1type_info@@UAE@XZ
memset
__dllonexit
_controlfp
_except_handler3
?terminate@@YAXXZ
_onexit
wcslen
wcscmp
exit
_XcptFilter
memcmp
__setusermatherr
__p__commode
_acmdln
_CxxThrowException
_adjust_fdiv
free
wcscat
__getmainargs
_exit
memmove
memcpy
_beginthreadex
wcsstr
_initterm
__set_app_type
SysAllocString
SysFreeString
SysStringLen
VariantClear
SysAllocStringLen
SHGetMalloc
SHGetPathFromIDListW
SHBrowseForFolderW
SHGetFileInfoW
SetFocus
GetParent
EndDialog
CharUpperW
KillTimer
ShowWindow
SetWindowLongW
MessageBoxW
GetWindowRect
EnableWindow
MoveWindow
DialogBoxParamW
GetWindowTextLengthW
PostMessageW
SetDlgItemTextW
GetKeyState
MapDialogRect
SendMessageW
LoadStringW
SetWindowTextW
GetDlgItem
SystemParametersInfoW
ScreenToClient
InvalidateRect
SetTimer
IsDlgButtonChecked
GetWindowTextW
CheckDlgButton
LoadCursorW
LoadIconW
GetFocus
GetWindowLongW
SetCursor
CoUninitialize
CoCreateInstance
CoInitialize
OleInitialize
Number of PE resources by type
RT_STRING 16
RT_DIALOG 4
RT_ICON 2
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 24
PE resources
ExifTool file metadata
UninitializedDataSize
0

LinkerVersion
6.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
15.14.0.0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
7z SFX

ImageFileCharacteristics
No relocs, Executable, No line numbers, No symbols, Large address aware, 32-bit

CharacterSet
Unicode

InitializedDataSize
51712

EntryPoint
0x245ca

OriginalFileName
7z.sfx.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright (c) 1999-2015 Igor Pavlov

FileVersion
15.14

TimeStamp
2015:12:31 15:25:58+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
7z.sfx

ProductVersion
15.14

SubsystemVersion
4.0

OSVersion
4.0

FileOS
Windows NT 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Igor Pavlov

CodeSize
155648

ProductName
7-Zip

ProductVersionNumber
15.14.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 c996e5f2e6e616843453b24966acb5b4
SHA1 d63e2e8320815c7aaa6aec3c5d9c4d75eeac4a67
SHA256 9ce06bd5e0403289097d36a4f050dd9b2bed5b32892df3068cc2c9c410603f6c
ssdeep
12288:mrlMKUAbpMopS5fO39k2Tbdw/EcKZoQFavEvGg8g8It54gAMC5QBl:mRM0bpMopM4kZ8rFME+Fgv+T2Bl

authentihash 3c994127ecffd6f323291ff328aa25e2f0d7b0d30411cdcbe9db89e40188a968
imphash e6f39b3587ab9278fb99290006fa6b09
File size 664.2 KB ( 680154 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (33.7%)
Win64 Executable (generic) (29.8%)
Microsoft Visual C++ compiled executable (generic) (17.8%)
Win32 Dynamic Link Library (generic) (7.1%)
Win32 Executable (generic) (4.8%)
Tags
peexe overlay

VirusTotal metadata
First submission 2018-05-01 10:05:26 UTC ( 1 anno fa )
Last submission 2018-10-25 16:01:19 UTC ( 6 mesi, 4 settimane fa )
Nomi dei files 7z.sfx.exe
893480805257b5a195fdfb1828dad5ff119dc6bd
c996e5f2e6e616843453b24966acb5b4.vir
clicador_2.1.0.4.exe
7z.sfx
clicador_2.1.0.4 2-120408.bin
Nessun commento. Nessun membro della Comunità di VirusTotal ha commentato questo item, sii il primo a farlo!

Lascia il tuo commento...

?
Posta commento

Non ti sei ancora collegato. Solo gli utenti registrati possono commentare, collegati ed esprimi il tuo giudizio!

Nessun voto. Nessuno ha ancora votato questo item, sii il primo a farlo!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Runtime DLLs