× Obsługa plików cookie w przeglądarce jest wyłączona! Ta strona wymaga włączonej obsługi plików cookie, aby działać poprawnie
SHA256: 9c6cbb7913eee93011bf1caf8a1d76f39bf663f674cb20138010ab448717f74d
Nazwa pliku: wmc.exe
Współczynnik wykrycia: 0 / 53
Data analizy: 2014-09-05 14:09:26 UTC ( 4 lata, 8 miesięcy temu ) Zobacz najnowsze
Antywirus Wynik Uaktualnij
Ad-Aware 20140905
AegisLab 20140905
Yandex 20140905
AhnLab-V3 20140905
Antiy-AVL 20140905
Avast 20140905
AVG 20140905
Avira (no cloud) 20140905
AVware 20140905
Baidu-International 20140905
BitDefender 20140905
Bkav 20140904
ByteHero 20140905
CAT-QuickHeal 20140904
ClamAV 20140904
CMC 20140904
Comodo 20140905
Cyren 20140905
DrWeb 20140905
Emsisoft 20140905
ESET-NOD32 20140905
F-Prot 20140905
F-Secure 20140905
Fortinet 20140905
GData 20140905
Ikarus 20140905
Jiangmin 20140904
K7AntiVirus 20140905
K7GW 20140905
Kaspersky 20140905
Kingsoft 20140905
Malwarebytes 20140905
McAfee 20140905
McAfee-GW-Edition 20140904
Microsoft 20140905
eScan 20140905
NANO-Antivirus 20140905
Norman 20140905
nProtect 20140905
Panda 20140905
Qihoo-360 20140905
Rising 20140905
Sophos AV 20140905
SUPERAntiSpyware 20140905
Symantec 20140905
Tencent 20140905
TheHacker 20140904
TotalDefense 20140905
VBA32 20140905
VIPRE 20140905
ViRobot 20140905
Zillya 20140904
Zoner 20140905
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (C) 2013 Microsoft® Corporation

Product Windows Media Center
Original name wmc.exe
Internal name Windows® Media Center
File version 7.7.3.3
Description Microsoft® Windows® Media Center
Comments Microsoft® Windows® Media Center.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2014-08-05 15:38:05
Entry Point 0x000012A0
Number of sections 9
PE sections
Overlays
MD5 8ddb43da6276a451a8e156f205a89ff6
File type data
Offset 30720
Size 25
Entropy 4.10
PE imports
GetLastError
HeapFree
EnterCriticalSection
lstrlenA
GetModuleFileNameW
FreeLibrary
HeapAlloc
GetThreadLocale
VirtualProtect
LoadLibraryA
DeleteCriticalSection
GetProcAddress
GetProcessHeap
GetModuleHandleA
SetUnhandledExceptionFilter
InitializeCriticalSection
VirtualQuery
VirtualFree
TlsGetValue
Sleep
IsBadReadPtr
GetTickCount
ExitProcess
VirtualAlloc
SetLastError
LeaveCriticalSection
SHGetFolderPathW
ShellExecuteW
PathAppendW
strncmp
__p__fmode
malloc
__p__environ
realloc
fread
fclose
__getmainargs
_stricmp
atexit
abort
_setmode
_cexit
fwrite
fseek
_onexit
ftell
exit
memcmp
rand
strtol
srand
free
vfprintf
_wfopen
calloc
memcpy
signal
__set_app_type
wcstombs
_iob
Number of PE resources by type
RT_ICON 3
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 5
PE resources
ExifTool file metadata
CodeSize
7680

Support
Contact with Microsoft Corporation

SubsystemVersion
4.0

Comments
Microsoft Windows Media Center.

Build
December 2013

LinkerVersion
2.23

ImageVersion
1.0

ProductName
Windows Media Center

FileVersionNumber
7.7.3.3

UninitializedDataSize
512

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

Users
Unlimited.

CharacterSet
Windows, Latin1

InitializedDataSize
29696

FileTypeExtension
exe

OriginalFileName
wmc.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
7.7.3.3

TimeStamp
2014:08:05 16:38:05+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Windows Media Center

ProductVersion
7.7.3.3

FileDescription
Microsoft Windows Media Center

OSVersion
4.0

FileOS
Windows NT 32-bit

LegalCopyright
Copyright (C) 2013 Microsoft Corporation

MachineType
Intel 386 or later, and compatibles

CompanyName
Microsoft Corporation

LegalTrademarks
All rights reserved.

FileSubtype
0

ProductVersionNumber
7.7.3.3

EntryPoint
0x12a0

ObjectFileType
Executable application

Developer
Microsoft Corporation

Compressed bundles
File identification
MD5 21bad24394ebcb343a93a46474ef32a0
SHA1 a32bc092a5cebc7d159b07ea677170f74214d559
SHA256 9c6cbb7913eee93011bf1caf8a1d76f39bf663f674cb20138010ab448717f74d
ssdeep
384:z7JJJaV5Y4CnN2aNffPuA8p254jDKfURno9xxJu+r5h+RCE9V8yJdzWxxOK:XLJu51CNzN9sO4j+r5Ia5h+Rr9GEK

authentihash 52d2b6aa34f5468c7957b951a0d7bce120c9424e403cadd212c0e7e9f78537ec
imphash 7a618bb2e3f4c6a9e3b8b38f5831e1cd
File size 30.0 KB ( 30745 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Dynamic Link Library (generic) (43.5%)
Win32 Executable (generic) (29.8%)
Generic Win/DOS Executable (13.2%)
DOS Executable Generic (13.2%)
VXD Driver (0.2%)
Tags
peexe overlay

VirusTotal metadata
First submission 2014-09-05 14:09:26 UTC ( 4 lata, 8 miesięcy temu )
Last submission 2017-10-10 18:04:20 UTC ( 1 rok, 7 miesięcy temu )
Nazwy plików 9c6cbb7913eee93011bf1caf8a1d76f39bf663f674cb20138010ab448717f74d.exe
21bad24394ebcb343a93a46474ef32a0.virobj
virussign.com_21bad24394ebcb343a93a46474ef32a0.exe
file-7437625_
9c6cbb7913eee93011bf1caf8a1d76f39bf663f674cb20138010ab448717f74d
vti-rescan
wmc.exe
wmc.exe
5
Windows® Media Center
drmfNI.mht
wmc.exe
9c6cbb7913eee93011bf1caf8a1d76f39bf663f674cb20138010ab448717f74d.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
Brak komentarzy. Żaden z członków społeczności VirusTotal nie skomentował tego. Bądź pierwszy, by to zrobić!

Skomentuj

?
Dodaj komentarz

Nie jesteś zalogowany. Tylko zarejestrowani użytkownicy mogą dodawać komentarze, zalogować się i mieć swój głos!

Brak ocen. Nikt jeszcze nie oddał swojego głosu, bądź pierwszy!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files