× Obsługa plików cookie w przeglądarce jest wyłączona! Ta strona wymaga włączonej obsługi plików cookie, aby działać poprawnie
SHA256: 48af5303e216e2367d621a31a4850c60983061336312bbb7ee43c327ee69cfb7
Nazwa pliku: carpg.exe
Współczynnik wykrycia: 0 / 57
Data analizy: 2015-01-18 19:43:42 UTC ( 4 lata, 2 miesiące temu ) Zobacz najnowsze
Antywirus Wynik Uaktualnij
Ad-Aware 20150118
AegisLab 20150118
Yandex 20150117
AhnLab-V3 20150118
Alibaba 20150117
ALYac 20150118
Antiy-AVL 20150118
Avast 20150118
AVG 20150118
Avira (no cloud) 20150118
AVware 20150118
Baidu-International 20150118
BitDefender 20150118
Bkav 20150117
ByteHero 20150118
CAT-QuickHeal 20150117
ClamAV 20150118
CMC 20150116
Comodo 20150118
Cyren 20150118
DrWeb 20150118
Emsisoft 20150118
ESET-NOD32 20150118
F-Prot 20150118
F-Secure 20150118
Fortinet 20150118
GData 20150118
Ikarus 20150118
Jiangmin 20150116
K7AntiVirus 20150118
K7GW 20150117
Kaspersky 20150118
Kingsoft 20150118
Malwarebytes 20150118
McAfee 20150118
McAfee-GW-Edition 20150118
Microsoft 20150118
eScan 20150118
NANO-Antivirus 20150118
Norman 20150118
nProtect 20150116
Panda 20150118
Qihoo-360 20150118
Rising 20150118
Sophos AV 20150118
SUPERAntiSpyware 20150118
Symantec 20150118
Tencent 20150118
TheHacker 20150118
TotalDefense 20150118
TrendMicro 20150118
TrendMicro-HouseCall 20150118
VBA32 20150116
VIPRE 20150118
ViRobot 20150118
Zillya 20150117
Zoner 20150116
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
File version 0.2.22
Description Role Playing Simulation
Comments http://carpg.pl
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2015-01-18 17:17:26
Entry Point 0x00199155
Number of sections 5
PE sections
PE imports
AddFontResourceExA
SelectObject
CreateFontA
GetStockObject
GetTextMetricsA
GetCharABCWidthsA
GetCharWidth32A
DeleteObject
GetStdHandle
GetConsoleOutputCP
ReleaseMutex
GetFileAttributesA
WaitForSingleObject
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
GetLocaleInfoA
FreeEnvironmentStringsW
GetLocaleInfoW
SetStdHandle
WideCharToMultiByte
GetStringTypeA
SetConsoleCP
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
GetFullPathNameA
SetEvent
LocalFree
MoveFileA
InitializeCriticalSection
FindClose
InterlockedDecrement
FormatMessageA
SetLastError
CopyFileA
HeapAlloc
GetModuleFileNameA
SetConsoleOutputCP
QueryPerformanceFrequency
EnumSystemLocalesA
SetConsoleCtrlHandler
AllocConsole
UnhandledExceptionFilter
TlsGetValue
MultiByteToWideChar
CreateMutexA
GetModuleHandleA
CreateThread
SetUnhandledExceptionFilter
MulDiv
ExitThread
SetEnvironmentVariableA
TerminateProcess
WriteConsoleA
SetEndOfFile
GetCurrentThreadId
LeaveCriticalSection
WriteConsoleW
InitializeCriticalSectionAndSpinCount
HeapFree
EnterCriticalSection
SetHandleCount
TerminateThread
GetOEMCP
QueryPerformanceCounter
GetTickCount
TlsAlloc
FlushFileBuffers
LoadLibraryA
RtlUnwind
GetStartupInfoA
GetFileSize
CreateDirectoryA
DeleteFileA
GetUserDefaultLCID
GetProcessHeap
CompareStringW
FindFirstFileA
CompareStringA
FindNextFileA
IsValidLocale
GetProcAddress
GetTimeZoneInformation
CreateFileW
GetConsoleWindow
CreateEventA
IsDebuggerPresent
GetFileType
TlsSetValue
CreateFileA
ExitProcess
InterlockedIncrement
GetLastError
LCMapStringW
GetConsoleCP
LCMapStringA
GetEnvironmentStringsW
WaitForSingleObjectEx
GetEnvironmentStrings
GetCurrentProcessId
GetCPInfo
HeapSize
GetCommandLineA
RaiseException
TlsFree
SetFilePointer
ReadFile
SetConsoleTitleA
CloseHandle
GetACP
GetModuleHandleW
CreateProcessA
IsValidCodePage
HeapCreate
VirtualFree
Sleep
SetThreadPriority
VirtualAlloc
ShellExecuteA
GetMessageA
ShowCursor
GetForegroundWindow
GetCursorInfo
IntersectRect
DefWindowProcA
ShowWindow
SetWindowPos
GetSystemMetrics
GetWindowRect
DispatchMessageA
ClientToScreen
MoveWindow
MessageBoxA
PeekMessageA
SetWindowLongA
TranslateMessage
GetDC
RegisterClassExA
GetCursorPos
ReleaseDC
SetWindowTextA
SendMessageA
GetClientRect
SetCursorPos
CreateDialogParamA
ScreenToClient
CreateWindowExA
LoadCursorA
LoadIconA
AdjustWindowRect
GetDlgItem
IsDialogMessageA
DestroyWindow
InternetReadFile
InternetOpenUrlA
InternetCloseHandle
InternetOpenA
htonl
shutdown
accept
ioctlsocket
WSAStartup
connect
getsockname
htons
select
gethostname
getsockopt
recv
inet_addr
send
ntohs
listen
__WSAFDIsSet
WSACleanup
gethostbyname
inet_ntoa
closesocket
WSAIoctl
setsockopt
socket
bind
recvfrom
sendto
Direct3DCreate9
D3DXCreateTextureFromFileA
D3DXMatrixRotationQuaternion
D3DXMatrixPerspectiveFovLH
D3DXVec2TransformCoord
D3DXCreateMeshFVF
D3DXMatrixTransformation2D
D3DXMatrixInverse
D3DXCreateSprite
D3DXVec2Normalize
D3DXMatrixRotationY
D3DXMatrixRotationX
D3DXMatrixRotationZ
D3DXLoadSurfaceFromSurface
D3DXSaveSurfaceToFileA
D3DXMatrixTranslation
D3DXVec3TransformNormal
D3DXQuaternionSlerp
D3DXCreateEffectFromFileA
D3DXVec3TransformCoord
D3DXCreateTexture
D3DXCreateFontA
D3DXCreateTextureFromFileInMemory
D3DXMatrixMultiply
D3DXIntersect
D3DXMatrixScaling
D3DXMatrixRotationYawPitchRoll
D3DXVec3Transform
D3DXPlaneNormalize
D3DXMatrixLookAtLH
D3DXQuaternionRotationMatrix
D3DXVec3Normalize
MiniDumpWriteDump
?createSound@System@FMOD@@QAG?AW4FMOD_RESULT@@PBDIPAUFMOD_CREATESOUNDEXINFO@@PAPAVSound@2@@Z
?set3DListenerAttributes@System@FMOD@@QAG?AW4FMOD_RESULT@@HPBUFMOD_VECTOR@@000@Z
?createChannelGroup@System@FMOD@@QAG?AW4FMOD_RESULT@@PBDPAPAVChannelGroup@2@@Z
?playSound@System@FMOD@@QAG?AW4FMOD_RESULT@@W4FMOD_CHANNELINDEX@@PAVSound@2@_NPAPAVChannel@2@@Z
?update@System@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?set3DMinMaxDistance@Channel@FMOD@@QAG?AW4FMOD_RESULT@@MM@Z
?setPaused@Channel@FMOD@@QAG?AW4FMOD_RESULT@@_N@Z
?set3DAttributes@Channel@FMOD@@QAG?AW4FMOD_RESULT@@PBUFMOD_VECTOR@@0@Z
?getVolume@Channel@FMOD@@QAG?AW4FMOD_RESULT@@PAM@Z
?setVolume@Channel@FMOD@@QAG?AW4FMOD_RESULT@@M@Z
FMOD_System_Create
?release@System@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?init@System@FMOD@@QAG?AW4FMOD_RESULT@@HIPAX@Z
?stop@Channel@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?getCurrentSound@Channel@FMOD@@QAG?AW4FMOD_RESULT@@PAPAVSound@2@@Z
?createStream@System@FMOD@@QAG?AW4FMOD_RESULT@@PBDIPAUFMOD_CREATESOUNDEXINFO@@PAPAVSound@2@@Z
?isPlaying@Channel@FMOD@@QAG?AW4FMOD_RESULT@@PA_N@Z
Number of PE resources by type
RT_ICON 2
RT_MANIFEST 1
RT_DIALOG 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 5
POLISH DEFAULT 1
PE resources
ExifTool file metadata
SubsystemVersion
5.0

Comments
http://carpg.pl

LinkerVersion
9.0

ImageVersion
0.0

FileVersionNumber
0.2.22.0

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Windows, Latin1

InitializedDataSize
407040

MIMEType
application/octet-stream

FileVersion
0.2.22

TimeStamp
2015:01:18 18:17:26+01:00

FileType
Win32 EXE

PEType
PE32

FileAccessDate
2015:02:12 00:38:25+01:00

ProductVersion
0.2.22

FileDescription
Role Playing Simulation

OSVersion
5.0

FileCreateDate
2015:02:12 00:38:25+01:00

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CodeSize
1815552

FileSubtype
0

ProductVersionNumber
0.2.22.0

EntryPoint
0x199155

ObjectFileType
Executable application

File identification
MD5 313f85c92a7e57c63772cc3f82a2377c
SHA1 014f5597e4622a26a3a2b5d583367f4f720f7477
SHA256 48af5303e216e2367d621a31a4850c60983061336312bbb7ee43c327ee69cfb7
ssdeep
49152:chhS0QJR8Qif3INSXDAYTc5Bq0n5Dz1Gr9Qj/p:chhS0QkfYNSXDjTc5BNnVz9j

authentihash 0b6ecb0b3b87f2c778d8d3596a45bda7fc3d62c2de1fc1128f971f30a74f2c00
imphash eb0f4ada046f0a98ebb4826fa9817c4c
File size 2.1 MB ( 2223616 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (67.3%)
Win32 Dynamic Link Library (generic) (14.2%)
Win32 Executable (generic) (9.7%)
Generic Win/DOS Executable (4.3%)
DOS Executable Generic (4.3%)
Tags
peexe

VirusTotal metadata
First submission 2015-01-18 19:43:42 UTC ( 4 lata, 2 miesiące temu )
Last submission 2015-01-18 19:43:42 UTC ( 4 lata, 2 miesiące temu )
Nazwy plików carpg.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
Brak komentarzy. Żaden z członków społeczności VirusTotal nie skomentował tego. Bądź pierwszy, by to zrobić!

Skomentuj

?
Dodaj komentarz

Nie jesteś zalogowany. Tylko zarejestrowani użytkownicy mogą dodawać komentarze, zalogować się i mieć swój głos!

Brak ocen. Nikt jeszcze nie oddał swojego głosu, bądź pierwszy!