× В вашем браузере отключены куки (cookie). Для полноценной работы сайта необходимо включить сохранение файлов cookie.
SHA256: 16cb5c2fb9f859dfea04a078e26c2ea4003b006b526d34a8a637974abcb6ca2a
Имя файла: ModPack by Djonny (ver. 1.1).exe
Показатель выявления: 1 / 57
Дата анализа: 2018-03-21 15:02:48 UTC (6 месяцев, 4 недель назад) Показать последний анализ
Антивирус Результат Дата обновления
Antiy-AVL Trojan[Packed]/Win32.Dico 20180321
Ad-Aware 20180321
AegisLab 20180321
AhnLab-V3 20180321
Alibaba 20180321
ALYac 20180321
Arcabit 20180321
Avast 20180321
Avast-Mobile 20180321
AVG 20180321
Avira (no cloud) 20180321
AVware 20180321
Baidu 20180321
BitDefender 20180321
Bkav 20180321
CAT-QuickHeal 20180321
ClamAV 20180321
CMC 20180321
Comodo 20180321
CrowdStrike Falcon (ML) 20170201
Cybereason 20180225
Cylance 20180321
Cyren 20180321
DrWeb 20180321
eGambit 20180321
Emsisoft 20180321
Endgame 20180316
ESET-NOD32 20180321
F-Prot 20180321
F-Secure 20180321
Fortinet 20180321
GData 20180321
Ikarus 20180321
Sophos ML 20180121
Jiangmin 20180321
K7AntiVirus 20180321
K7GW 20180321
Kaspersky 20180321
Kingsoft 20180321
Malwarebytes 20180321
MAX 20180321
McAfee 20180321
McAfee-GW-Edition 20180321
Microsoft 20180321
eScan 20180321
NANO-Antivirus 20180321
nProtect 20180321
Palo Alto Networks (Known Signatures) 20180321
Panda 20180321
Qihoo-360 20180321
Rising 20180321
SentinelOne (Static ML) 20180225
Sophos AV 20180321
SUPERAntiSpyware 20180321
Symantec 20180321
Symantec Mobile Insight 20180311
Tencent 20180321
TheHacker 20180319
Trustlook 20180321
VBA32 20180321
VIPRE 20180321
ViRobot 20180321
WhiteArmor 20180223
Yandex 20180321
Zillya 20180321
ZoneAlarm by Check Point 20180321
Zoner 20180321
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright

Product ModPack by Djonny
File version 1.1
Description ModPack by Djonny Setup
Comments This installation was built with Inno Setup.
Packers identified
F-PROT INNO
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 1992-06-19 22:22:17
Entry Point 0x00009C14
Number of sections 8
PE sections
Overlays
MD5 9d1415bc6d855052bd13f993cbd40a02
File type data
Offset 66048
Size 91806223
Entropy 8.00
PE imports
LookupPrivilegeValueA
RegCloseKey
OpenProcessToken
RegQueryValueExA
AdjustTokenPrivileges
RegOpenKeyExA
InitCommonControls
GetSystemTime
GetLastError
GetEnvironmentVariableA
GetStdHandle
EnterCriticalSection
GetUserDefaultLangID
GetSystemInfo
GetFileAttributesA
GetExitCodeProcess
ExitProcess
CreateDirectoryA
VirtualProtect
GetVersionExA
RemoveDirectoryA
RtlUnwind
LoadLibraryA
DeleteCriticalSection
GetCurrentProcess
SizeofResource
GetLocaleInfoA
LocalAlloc
LockResource
IsDBCSLeadByte
DeleteFileA
GetWindowsDirectoryA
GetSystemDefaultLCID
SetErrorMode
MultiByteToWideChar
GetCommandLineA
GetProcAddress
FormatMessageA
SetFilePointer
RaiseException
WideCharToMultiByte
GetModuleHandleA
ReadFile
InterlockedExchange
WriteFile
CloseHandle
GetACP
GetFullPathNameA
LocalFree
CreateProcessA
GetModuleFileNameA
InitializeCriticalSection
LoadResource
VirtualQuery
VirtualFree
TlsGetValue
Sleep
GetFileType
SetEndOfFile
TlsSetValue
CreateFileA
FindResourceA
VirtualAlloc
GetFileSize
SetLastError
LeaveCriticalSection
SysStringLen
SysAllocStringLen
VariantCopyInd
VariantClear
VariantChangeTypeEx
CharPrevA
CreateWindowExA
LoadStringA
DispatchMessageA
CallWindowProcA
MessageBoxA
PeekMessageA
SetWindowLongA
MsgWaitForMultipleObjects
TranslateMessage
ExitWindowsEx
DestroyWindow
Number of PE resources by type
RT_STRING 6
RT_ICON 1
RT_MANIFEST 1
RT_RCDATA 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 7
ENGLISH US 4
PE resources
ExifTool file metadata
UninitializedDataSize
0

Comments
This installation was built with Inno Setup.

LinkerVersion
2.25

ImageVersion
6.0

FileSubtype
0

FileVersionNumber
1.1.0.0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
27136

EntryPoint
0x9c14

MIMEType
application/octet-stream

FileVersion
1.1

TimeStamp
1992:06:19 23:22:17+01:00

FileType
Win32 EXE

PEType
PE32

SubsystemVersion
4.0

ProductVersion
1.1

FileDescription
ModPack by Djonny Setup

OSVersion
1.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CodeSize
37888

ProductName
ModPack by Djonny

ProductVersionNumber
1.1.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 b655d981fc285144c5ee00f7bb1a0709
SHA1 3112200a1abc34cb7e4bc36ec102d9fe8fc8d220
SHA256 16cb5c2fb9f859dfea04a078e26c2ea4003b006b526d34a8a637974abcb6ca2a
ssdeep
1572864:wBf3XxxoqZWD+ebiIk5CNoWuiaFdu2jYpShDVKlymj:wBf3hWD+ebix8oWuiqjYpShUZ

authentihash ec5ef36c30db648d432ee28e5796e1a15d8796c932e47a5635b663cf757b025e
imphash 884310b1928934402ea6fec1dbd3cf5e
Размер файла 87.6 MБ ( 91872271 bytes )
Тип файла Win32 EXE
Описание
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Inno Setup installer (76.6%)
Win32 Executable Delphi generic (9.9%)
Win32 Dynamic Link Library (generic) (4.5%)
Win32 Executable (generic) (3.1%)
Win16/32 Executable Delphi generic (1.4%)
Tags
peexe overlay

VirusTotal metadata
First submission 2018-03-21 14:36:42 UTC (6 месяцев, 4 недель назад)
Last submission 2018-03-21 15:02:48 UTC (6 месяцев, 4 недель назад)
Имена файлов ModPack by Djonny (ver. 1.1).exe
ModPack by Djonny (ver. Patch 1.0.0).exe
Нет комментариев. Из участников сообщества VirusTotal ещё пока никто не оставил комментарий по поводу результатов анализа. Станьте первым!

Оставьте свой комментарий...

?
Отправить

Вы не выполнили вход. Только зарегистрированные пользователи могут оставлять комментарии. Выполните вход и получите право голоса!

Нет голосов. Ещё пока никто не проголосовал за результаты анализа. Станьте первым!