× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 6399035a930dc4c092a2ce3932d53d39908900c5f024699fdc8b98c317705d3f
File name: age3m.exe
Detection ratio: 0 / 57
Analysis date: 2016-09-21 19:09:45 UTC ( 6 luni, 1 săptămână ago ) View latest
Antivirus Result Update
Ad-Aware 20160921
AegisLab 20160921
AhnLab-V3 20160921
Alibaba 20160921
ALYac 20160921
Antiy-AVL 20160921
Arcabit 20160921
Avast 20160921
AVG 20160921
Avira (no cloud) 20160921
AVware 20160921
Baidu 20160921
BitDefender 20160921
Bkav 20160921
CAT-QuickHeal 20160921
ClamAV 20160921
CMC 20160921
Comodo 20160921
CrowdStrike Falcon (ML) 20160725
Cyren 20160921
DrWeb 20160921
Emsisoft 20160921
ESET-NOD32 20160921
F-Prot 20160921
F-Secure 20160921
Fortinet 20160921
GData 20160921
Ikarus 20160921
Invincea 20160917
Jiangmin 20160921
K7AntiVirus 20160921
K7GW 20160921
Kaspersky 20160921
Kingsoft 20160921
Malwarebytes 20160921
McAfee 20160921
McAfee-GW-Edition 20160921
Microsoft 20160921
eScan 20160921
NANO-Antivirus 20160921
nProtect 20160921
Panda 20160921
Qihoo-360 20160921
Rising 20160921
Sophos 20160921
SUPERAntiSpyware 20160921
Symantec 20160921
Tencent 20160921
TheHacker 20160920
TrendMicro 20160921
TrendMicro-HouseCall 20160921
VBA32 20160921
VIPRE 20160921
ViRobot 20160921
Yandex 20160921
Zillya 20160921
Zoner 20160921
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2006 Microsoft Corp

Product Age of Empires III Expansion 2
Original name age3y.exe
Internal name Age of Empires III Expansion 2
File version 6.0108.0321.0137
Description Age of Empires III Expansion 2
Signature verification The digital signature of the object did not verify.
Signing date 2:47 PM 10/14/2016
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2009-04-22 21:05:48
Entry Point 0x008AA000
Number of sections 4
PE sections
Overlays
MD5 990e3afefcc92ff75de5e793c67eb31f
File type data
Offset 11591680
Size 6968
Entropy 7.41
PE imports
SetSecurityDescriptorOwner
RegCreateKeyExW
RegCloseKey
RegQueryValueExA
AccessCheck
InitializeAcl
RegCreateKeyExA
RegQueryValueExW
SetSecurityDescriptorDacl
OpenProcessToken
CryptDestroyKey
AddAccessAllowedAce
RegOpenKeyExW
RegOpenKeyExA
CryptGenKey
CryptReleaseContext
ImpersonateSelf
OpenThreadToken
GetLengthSid
CryptDecrypt
CryptAcquireContextW
CryptGetUserKey
RevertToSelf
RegSetValueExW
FreeSid
CryptExportKey
AllocateAndInitializeSid
InitializeSecurityDescriptor
RegSetValueExA
SetSecurityDescriptorGroup
IsValidSecurityDescriptor
AVIStreamWrite
AVIStreamRelease
AVIFileRelease
AVIFileExit
DirectInput8Create
GetTextMetricsW
SetMapMode
CreateFontIndirectW
PatBlt
GetGlyphOutlineW
GetTextExtentPoint32W
GetGlyphOutlineA
GetDeviceCaps
DeleteDC
SetBkMode
CreateFontW
GetObjectW
BitBlt
RealizePalette
SetTextColor
GetTextExtentPointW
GetCurrentObject
ExtTextOutW
CreateBitmap
CreateDCW
CreatePalette
GetStockObject
AddFontMemResourceEx
SelectPalette
GetDIBits
CreateDIBitmap
CreateCompatibleDC
StretchBlt
SelectObject
SetWindowOrgEx
SetBkColor
DeleteObject
CreateCompatibleBitmap
ImmGetVirtualKey
ImmGetConversionStatus
ImmGetDefaultIMEWnd
ImmSetConversionStatus
ImmNotifyIME
ImmGetCandidateListA
ImmGetIMEFileNameA
ImmGetContext
ImmGetCandidateListW
ImmGetCompositionStringA
ImmGetOpenStatus
ImmReleaseContext
ImmGetCompositionStringW
ImmIsIME
ImmAssociateContext
GetStdHandle
ReleaseMutex
FileTimeToSystemTime
WaitForSingleObject
GetDriveTypeA
FindFirstFileW
HeapDestroy
GetFileAttributesW
DuplicateHandle
GetLocalTime
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetLocaleInfoA
LocalAlloc
FreeEnvironmentStringsW
GetLocaleInfoW
SetStdHandle
GetFileTime
IsDBCSLeadByteEx
GetCPInfo
GetStringTypeA
InterlockedExchange
WriteFile
FormatMessageW
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
GetThreadPriority
GetFullPathNameA
FreeLibrary
LocalFree
MoveFileA
ResumeThread
GetTimeZoneInformation
OutputDebugStringW
GetStringTypeExW
FindClose
TlsGetValue
MoveFileW
SetFileAttributesW
OutputDebugStringA
SetLastError
GetSystemTime
InitializeCriticalSection
CopyFileW
lstrcpynW
GetModuleFileNameW
IsDebuggerPresent
HeapAlloc
GetVersionExA
GetModuleFileNameA
QueueUserAPC
RaiseException
GetPriorityClass
SetThreadPriority
UnhandledExceptionFilter
InterlockedDecrement
MultiByteToWideChar
GetModuleHandleA
CreateThread
GetExitCodeThread
SetUnhandledExceptionFilter
CreateMutexW
GetSystemDirectoryA
SetEnvironmentVariableA
SetPriorityClass
TerminateProcess
CreateSemaphoreW
SetCurrentDirectoryW
VirtualQuery
GetDiskFreeSpaceExW
SetEndOfFile
GetCurrentThreadId
InterlockedIncrement
SleepEx
HeapFree
EnterCriticalSection
SetHandleCount
TerminateThread
LoadLibraryW
GetVersionExW
GetOEMCP
QueryPerformanceCounter
GetTickCount
IsBadWritePtr
TlsAlloc
VirtualProtect
FlushFileBuffers
LoadLibraryA
RtlUnwind
ExitThread
GetStartupInfoA
GetDateFormatA
GetFileSize
CreateDirectoryA
DeleteFileA
GetDateFormatW
CreateDirectoryW
DeleteFileW
WaitForMultipleObjects
CreateFileMappingW
CompareStringW
lstrcpyW
GlobalReAlloc
GetFileInformationByHandle
FindFirstFileA
CompareStringA
ResetEvent
FindNextFileA
lstrcmpW
GetProcAddress
SetEvent
CreateEventW
CreateFileW
CreateEventA
GetFileType
TlsSetValue
CreateFileA
ExitProcess
LeaveCriticalSection
GetLastError
LocalReAlloc
SystemTimeToFileTime
LCMapStringW
UnmapViewOfFile
GetSystemInfo
lstrlenA
GlobalFree
LCMapStringA
FindNextFileW
GetEnvironmentStringsW
GlobalUnlock
GlobalAlloc
lstrlenW
VirtualFree
FileTimeToLocalFileTime
GetEnvironmentStrings
GetCurrentDirectoryW
GetCurrentProcessId
GetCurrentDirectoryA
HeapSize
GetCommandLineA
GetCurrentThread
SuspendThread
ExpandEnvironmentStringsW
QueryPerformanceFrequency
ReleaseSemaphore
MapViewOfFile
TlsFree
SetFilePointer
ReadFile
CloseHandle
GetACP
GlobalLock
GetModuleHandleW
IsBadStringPtrW
WideCharToMultiByte
HeapCreate
GetNumberFormatW
CreateProcessW
Sleep
IsBadReadPtr
IsBadCodePtr
VirtualAlloc
GetTimeFormatA
SysStringLen
VariantClear
SysAllocString
SysFreeString
SysAllocStringByteLen
VariantInit
UuidFromStringW
UuidCreate
??1FAST_HEAP@@UAE@XZ
??0FAST_HEAP@@QAE@H_N00@Z
ShellExecuteW
PathIsRelativeW
RedrawWindow
SetRectEmpty
DestroyMenu
PostQuitMessage
SetWindowPos
IsWindow
DispatchMessageA
EndPaint
DispatchMessageW
GetCursorPos
ReleaseDC
GetMenu
UnregisterClassA
SendMessageA
UnregisterClassW
GetClientRect
IsClipboardFormatAvailable
ClientToScreen
GetActiveWindow
ShowCursor
GetWindowTextW
RegisterClassExA
DestroyWindow
GetMessageA
UpdateWindow
GetPropW
EqualRect
ShowWindow
SetPropW
ValidateRect
PeekMessageW
EnableWindow
CharUpperW
PeekMessageA
TranslateMessage
GetAsyncKeyState
GetDlgItemTextW
RegisterClassW
SetClipboardData
GetKeyboardLayoutList
IsIconic
EnumDisplayDevicesW
GetWindowLongA
CreateWindowExA
IsDialogMessageW
EnumThreadWindows
IsWindowUnicode
CreateWindowExW
GetWindowLongW
SetFocus
GetMonitorInfoW
MapVirtualKeyA
PostMessageA
BeginPaint
DefWindowProcW
GetScrollPos
KillTimer
MapVirtualKeyW
ClipCursor
DefWindowProcA
GetClipboardData
GetSystemMetrics
SetWindowLongW
GetWindowRect
SetCapture
ReleaseCapture
CharLowerW
SetWindowLongA
SendDlgItemMessageW
PostMessageW
GetKeyNameTextW
CreateDialogParamW
SetWindowTextW
SetTimer
GetDlgItem
ScreenToClient
DialogBoxIndirectParamW
GetDesktopWindow
GetKeyboardLayout
LoadCursorW
LoadIconW
GetDC
OpenClipboard
EmptyClipboard
GetCaretBlinkTime
IntersectRect
EndDialog
MessageBeep
MessageBoxW
SendMessageW
MoveWindow
DialogBoxParamW
DestroyCursor
AdjustWindowRectEx
SetDlgItemTextW
GetKeyState
IsWindowVisible
SetCursorPos
InvalidateRect
AdjustWindowRect
IsRectEmpty
GetFocus
wsprintfW
CloseClipboard
SetCursor
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueA
timeEndPeriod
timeGetTime
timeBeginPeriod
WSASocketA
htonl
getsockname
ioctlsocket
WSAStartup
connect
shutdown
htons
select
gethostname
WSAAsyncGetHostByName
recv
inet_addr
send
getservbyport
ntohs
WSAGetLastError
gethostbyaddr
WSAAsyncSelect
gethostbyname
inet_ntoa
WSACleanup
closesocket
WSAIoctl
setsockopt
socket
bind
recvfrom
sendto
getservbyname
_BinkNextFrame@4
_BinkOpen@8
_BinkDoFrame@4
_BinkShouldSkip@4
_BinkWait@4
_BinkOpenDirectSound@4
_BinkSetSoundSystem@8
_BinkClose@4
_BinkCopyToBufferRect@44
_BinkSetVolume@12
Direct3DCreate9
D3DXMatrixOrthoLH
D3DXMatrixInverse
D3DXMatrixRotationQuaternion
D3DXAssembleShader
D3DXComputeBoundingBox
D3DXCompileShader
D3DXCreateBuffer
D3DXCreateEffectCompiler
D3DXMatrixRotationY
D3DXMatrixRotationZ
D3DXMatrixTranslation
D3DXVec3TransformNormal
D3DXGetPixelShaderProfile
D3DXPlaneFromPointNormal
D3DXVec3TransformCoord
D3DXLoadSurfaceFromSurface
D3DXMatrixMultiply
D3DXQuaternionMultiply
D3DXVec3Transform
D3DXMatrixPerspectiveOffCenterLH
D3DXPlaneNormalize
D3DXMatrixTranspose
D3DXDisassembleShader
D3DXMatrixMultiplyTranspose
D3DXVec4Transform
D3DXGetVertexShaderProfile
D3DXVec3Normalize
?dllDeformerRigidToStackAlignedPosOnlySSE@BFastMeshDeformer@@YAXPBUBDataHeader@1@ABUBWorkQueueEntry@1@@Z
?dllDeformerBlendedPosOnlySSE@BFastMeshDeformer@@YAXABUBWorkQueueEntry@1@PBUBBlendVert@1@PAUp3_vertex@1@I@Z
?dllDeformerBlendedNoTanSSE@BFastMeshDeformer@@YAXABUBWorkQueueEntry@1@PBUBBlendVert@1@PAUpnt332_vertex@1@I@Z
?dllDeformerRigidToStackAlignedSSE@BFastMeshDeformer@@YAXPBUBDataHeader@1@ABUBWorkQueueEntry@1@@Z
?dllDeformerBlendedSSE@BFastMeshDeformer@@YAXABUBWorkQueueEntry@1@PBUBBlendVert@1@PAUpngt3332_vertex@1@I@Z
?dllDeformerRigidToStackAlignedNoTanSSE@BFastMeshDeformer@@YAXPBUBDataHeader@1@ABUBWorkQueueEntry@1@@Z
?dllDeformerCopyMatricesSSE@BFastMeshDeformer@@YAXPBUBDataHeader@1@PAU__m128@@PBU3@PBH@Z
_GrannyGetResultingWorldPoseSize@4
_GrannyNewWorldPoseInPlace@8
_GrannyEaseControlIn@12
_GrannyGetMeshVertexType@4
_GrannySetControlEaseOut@8
_GrannyGetMeshTriangleGroups@4
_GrannySetControlSpeed@8
_GrannyFlushAllUnusedAnimationBindings@0
_GrannyReadFileSection@12
_GrannyEndControlledAnimation@4
_GrannyGetMemberTypeSize@4
_GrannyFreeTrackMask@4
_GrannyGetMeshMorphVertexCount@8
GrannyPWNT3432VertexType
_GrannySetSkeletonTrackMaskFromTrackGroup@24
_GrannyDeformVertices@24
_GrannyGetFileInfo@4
_GrannyModelControlsNext@4
_GrannyGetControlClock@4
_GrannyNewWorldPose@4
_GrannySetAllocator@8
_GrannyGetWorldPoseComposite4x4Array@4
_GrannyFreeControl@4
_GrannyModelControlsBegin@4
_GrannySetDefaultFileReaderOpenCallback@4
GrannyPNT332VertexType
_GrannyFreeModelInstance@4
_GrannyGetWorldPose4x4Array@4
_GrannyGetMeshMorphVertices@8
_GrannyFreeFileSection@8
_GrannyGetSourceModel@4
_GrannyGetMeshVertices@4
_GrannyGetWorldMatrixFromLocalPose@20
_GrannyDataTypesAreEqual@8
_GrannySetSkeletonTrackMaskChainDownwards@16
_GrannySetControlWeight@8
_GrannySetTrackGroupBasisTransform@16
_GrannyFreeMeshDeformer@4
_GrannyInstantiateModel@4
_GrannyFreeCompletedModelControls@4
_GrannyFreeFile@4
_GrannyFreeControlOnceUnused@4
_GrannyGetControlUserDataArray@4
_GrannyGetFileTypeTag@4
_GrannyGetTotalObjectSize@4
_GrannyGetMeshBindingToBoneIndices@4
_GrannySetTrackGroupAccumulation@12
_GrannyUnlinkFileReader@4
_GrannyGetSourceSkeleton@4
_GrannyComputeBasisConversion@36
_GrannyTransformFile@20
_GrannyGetMeshVertexCount@4
_GrannySetControlLoopCount@8
_GrannySampleModelAnimations@16
_GrannyConvertSingleObject@16
_GrannyNormalizeVertices@12
_GrannyCopyMeshVertices@12
_GrannySetControlEaseOutCurve@28
_GrannyReadPartialFileFromReader@4
_GrannyNewMeshDeformer@12
_GrannyGetMeshMorphTargetCount@4
_GrannyCompleteControlAt@8
_GrannyGetMeshBytesPerIndex@4
_GrannyFindTrackGroupForModel@12
_GrannyVersionsMatch_@16
_GrannyGetControlLoopIndex@4
_GrannyGetMeshIndices@4
_GrannyNewMeshBinding@12
_GrannySetTrackGroupModelMask@12
_GrannyTransformAnimation@20
_GrannySetTrackGroupTarget@12
_GrannyFreeMeshBinding@4
_GrannyInitializeFileReader@20
_GrannyCopyMeshIndices@12
_GrannyMeshIsRigid@4
_GrannyBeginControlledAnimation@8
_GrannySetControlRawLocalClock@8
GrannyPWNGT34332VertexType
_GrannyGetMeshIndexCount@4
_GrannyUpdateModelMatrix@20
_GrannyFreeWorldPose@4
_GrannyFindBoneByName@12
_GrannyGetWorldPose4x4@8
_GrannyTransformSkeleton@20
_GrannyCopyMeshMorphVertices@16
_GrannyFreeLocalPose@4
_GrannyReadEntireFile@4
_GrannyEaseControlOut@8
_GrannySetModelClock@8
_GrannyNewLocalPose@4
_GrannySetControlClockOnly@8
_GrannyFixupFileSection@12
_GrannyNewTrackMask@8
_GrannyGetControlRawLocalClock@4
_GrannyGetMeshMorphVertexType@8
_GrannyGetControlFromBinding@4
_GrannyGetMeshTriangleGroupCount@4
_GrannyGetMaterialTextureByType@8
_GrannyBuildWorldPose@24
_GrannyModelControlsEnd@4
GetAdaptersAddresses
CreateStreamOnHGlobal
CoUninitialize
CoInitialize
CoInitializeEx
CoCreateGuid
CoCreateInstance
GetHGlobalFromStream
StringFromGUID2
Number of PE resources by type
RT_CURSOR 92
RT_GROUP_CURSOR 91
RT_ICON 88
DATA 20
RT_GROUP_ICON 11
RT_DIALOG 7
RT_MANIFEST 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 212
GERMAN 11
CHINESE TRADITIONAL 11
FRENCH 11
PORTUGUESE BRAZILIAN 11
JAPANESE DEFAULT 11
SPANISH 11
KOREAN 11
NEUTRAL DEFAULT 11
ITALIAN 11
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
7.1

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
6.108.321.137

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
3710976

EntryPoint
0x8aa000

OriginalFileName
age3y.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 2006 Microsoft Corp

FileVersion
6.0108.0321.0137

TimeStamp
2009:04:22 22:05:48+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Age of Empires III Expansion 2

ProductVersion
6.0108.0321.0137

FileDescription
Age of Empires III Expansion 2

OSVersion
4.0

FileOS
Windows NT 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Microsoft Corporation

CodeSize
7876608

ProductName
Age of Empires III Expansion 2

ProductVersionNumber
0.1.2.6

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 d894f4e85c3c6f68cbb2f19047e41d44
SHA1 90140f37a11bd88d7fa4168cb3260a5dce7de715
SHA256 6399035a930dc4c092a2ce3932d53d39908900c5f024699fdc8b98c317705d3f
ssdeep
196608:MeianbPJKJpcoiOalBjuSOy5HC6sbMOP4LiHsMCEDMyJWh8XPPPPPPPPPYS:Me5nDEJQWyZC6uMOPqiH1dMyJWh8XPPb

authentihash 78fa33470e7b851d6be9a4f3a16c5dd457aff85140ff945e6bfa11a83a1a31b8
imphash b444abe389866253d7194768c1e4a6e3
File size 11.1 MO ( 11598648 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 EXE PECompact compressed (generic) (49.3%)
Win64 Executable (generic) (32.7%)
Win32 Dynamic Link Library (generic) (7.8%)
Win32 Executable (generic) (5.3%)
Generic Win/DOS Executable (2.3%)
Tags
peexe overlay

VirusTotal metadata
First submission 2016-08-31 20:28:50 UTC ( 6 luni, 4 săptămâni ago )
Last submission 2016-10-14 13:46:43 UTC ( 5 luni, 2 săptămâni ago )
File names age3m.exe
age3y.exe
Age of Empires III Expansion 2
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!