× Cookies estão desativados! Este site requer que os cookies estejam habilitados para funcionar corretamente
SHA256: 109b18124a71e19c4f5122ae21f7776bda548c7e2974c838437e1e15b103066e
Nome do arquivo: Setup.CE.v6.5_32Bit.(x86).exe
Taxa de detecção: 2 / 54
Data da análise: 2016-01-15 02:19:32 UTC ( 2 anos, 11 meses atrás )
Antivírus Resultado Atualização
ClamAV Win.Trojan.Generickd-4331 20160114
ESET-NOD32 a variant of Win32/HackTool.CheatEngine.AF potentially unsafe 20160115
Ad-Aware 20160115
AegisLab 20160114
Yandex 20160114
AhnLab-V3 20160114
Alibaba 20160114
ALYac 20160115
Arcabit 20160115
Avast 20160115
AVG 20160115
Avira (no cloud) 20160115
AVware 20160111
Baidu-International 20160114
BitDefender 20160115
Bkav 20160114
ByteHero 20160115
CAT-QuickHeal 20160114
CMC 20160111
Comodo 20160115
Cyren 20160115
DrWeb 20160115
Emsisoft 20160115
F-Prot 20160114
F-Secure 20160115
Fortinet 20160115
GData 20160115
Ikarus 20160115
Jiangmin 20160115
K7AntiVirus 20160114
K7GW 20160114
Kaspersky 20160115
Malwarebytes 20160115
McAfee 20160115
McAfee-GW-Edition 20160115
Microsoft 20160114
eScan 20160115
NANO-Antivirus 20160115
nProtect 20160115
Panda 20160114
Qihoo-360 20160115
Rising 20160114
Sophos AV 20160115
SUPERAntiSpyware 20160115
Symantec 20160115
Tencent 20160115
TheHacker 20160114
TrendMicro 20160115
TrendMicro-HouseCall 20160115
VBA32 20160115
VIPRE 20160115
ViRobot 20160115
Zillya 20160114
Zoner 20160115
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Setup Engine Copyright © 2011-2016 Cheat Engine Brasil, Inc

Product Cheat Engine Brasil Setup
Original name suf_launch.exe
Internal name sf_rt
File version 6.5.0.4591
Description Setup Aplicação
Comments Criado por Cheat Engine Brasil. Visite Nosso Site!
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2013-08-27 19:10:44
Entry Point 0x000029E1
Number of sections 5
PE sections
Overlays
MD5 553f4a4f8e6c51d24ffc4625168a3636
File type data
Offset 72192
Size 14249246
Entropy 8.00
PE imports
GetTokenInformation
OpenProcessToken
GetLastError
InitializeCriticalSectionAndSpinCount
HeapFree
GetStdHandle
EnterCriticalSection
LCMapStringW
SetHandleCount
lstrlenA
GetFileAttributesA
GetExitCodeProcess
QueryPerformanceCounter
HeapReAlloc
IsDebuggerPresent
ExitProcess
TlsAlloc
GetEnvironmentStringsW
GetTempPathA
RemoveDirectoryA
RtlUnwind
LoadLibraryA
HeapSetInformation
GetCurrentProcess
_lwrite
GetFileType
GetStringTypeW
InterlockedIncrement
lstrcatA
CreateDirectoryA
DeleteFileA
GetCurrentDirectoryA
UnhandledExceptionFilter
InterlockedDecrement
_llseek
HeapSize
FreeEnvironmentStringsW
GetCPInfo
MultiByteToWideChar
GetProcAddress
_lread
EncodePointer
GetStartupInfoW
GetModuleFileNameW
_lclose
WideCharToMultiByte
LoadLibraryW
TlsFree
_lcreat
GetSystemTimeAsFileTime
DeleteCriticalSection
GetCurrentProcessId
SetUnhandledExceptionFilter
lstrcpyA
_lopen
DecodePointer
CloseHandle
IsProcessorFeaturePresent
GetCommandLineA
GetACP
GetDiskFreeSpaceA
MoveFileExA
GetModuleHandleW
FreeLibrary
LocalFree
TerminateProcess
GetModuleFileNameA
IsValidCodePage
HeapCreate
WriteFile
TlsGetValue
Sleep
SetLastError
GetTickCount
TlsSetValue
HeapAlloc
GetCurrentThreadId
LeaveCriticalSection
SetCurrentDirectoryA
GetOEMCP
CompareStringA
ShellExecuteExA
wsprintfA
LoadCursorA
DispatchMessageA
MessageBoxA
PeekMessageA
MsgWaitForMultipleObjects
TranslateMessage
SetCursor
Number of PE resources by type
RT_ICON 9
RT_GROUP_ICON 1
RT_VERSION 1
RT_MANIFEST 1
Number of PE resources by language
ENGLISH US 12
PE resources
ExifTool file metadata
CodeSize
22528

SubsystemVersion
5.1

Comments
Criado por Cheat Engine Brasil. Visite Nosso Site!

InitializedDataSize
48640

ImageVersion
0.0

ProductName
Cheat Engine Brasil Setup

FileVersionNumber
6.5.0.4591

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x0000

CharacterSet
ASCII

LinkerVersion
10.0

FileTypeExtension
exe

OriginalFileName
suf_launch.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
6.5.0.4591

TimeStamp
2013:08:27 20:10:44+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
sf_rt

ProductVersion
6.5.0.4591

FileDescription
Setup Aplica o

OSVersion
5.1

FileOS
Win32

LegalCopyright
Setup Engine Copyright 2011-2016 Cheat Engine Brasil, Inc

MachineType
Intel 386 or later, and compatibles

CompanyName
Cheat Engine Brasil, Inc

LegalTrademarks
www.cheatengine.com.br

FileSubtype
0

ProductVersionNumber
6.5.0.4591

EntryPoint
0x29e1

ObjectFileType
Executable application

File identification
MD5 05333eba228d5a496fb76906dc60ab38
SHA1 8022225ed4c983d4921024bc66d6808d849b4519
SHA256 109b18124a71e19c4f5122ae21f7776bda548c7e2974c838437e1e15b103066e
ssdeep
393216:dY9sQz8aP3qkWb6AJy99YW27u4/o9jmKqbiY:dlQ3P38u99Ao+bP

authentihash 15806aa9f089f1be3a8c0eb9936b35817c33c0da26c68e77e92abbddfc9f915a
imphash 1ff847646487d56f85778df99ff3728a
File size 13.7 MB ( 14321438 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (42.8%)
Win32 EXE Yoda's Crypter (36.4%)
Win32 Dynamic Link Library (generic) (9.0%)
Win32 Executable (generic) (6.1%)
Generic Win/DOS Executable (2.7%)
Tags
peexe overlay

VirusTotal metadata
First submission 2016-01-15 02:19:32 UTC ( 2 anos, 11 meses atrás )
Last submission 2016-01-15 02:19:32 UTC ( 2 anos, 11 meses atrás )
Nomes do arquivo suf_launch.exe
Setup.CE.v6.5_32Bit.(x86).exe
sf_rt
Sem comentários. Ainda nenhum membro da Comunidade VirusTotal comentou este item, seja o primeiro!

Deixe o seu comentário...

?
Postar comentário

Você ainda não entrou. Apenas usuários registrados podem comentar, entre e expresse-se!

Sem votos. Ainda nenhum usuário votou neste item, seja o primeiro!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Deleted files
Created processes
Shell commands
Runtime DLLs
UDP communications