× В вашем браузере отключены куки (cookie). Для полноценной работы сайта необходимо включить сохранение файлов cookie.
SHA256: 8774021c8b974063bc946c38a42d083e2e29a1037faea5669b9a40b7c1b7a1ea
Имя файла: Easy GIF Animator portable.exe
Показатель выявления: 5 / 56
Дата анализа: 2016-03-21 10:12:24 UTC (3 лет, 2 месяцев назад) Показать последний анализ
Антивирус Результат Дата обновления
AegisLab Troj.Heur.RP.qqX 20160321
Antiy-AVL Trojan/Win32.Droma 20160321
K7AntiVirus Riskware ( 0040eff71 ) 20160321
K7GW Riskware ( 0040eff71 ) 20160321
Rising PE:Malware.Generic(Thunder)!1.A1C4 [F] 20160321
Ad-Aware 20160321
Yandex 20160316
AhnLab-V3 20160320
Alibaba 20160321
ALYac 20160319
Arcabit 20160321
Avast 20160321
AVG 20160321
Avira (no cloud) 20160321
AVware 20160321
Baidu 20160318
Baidu-International 20160321
BitDefender 20160321
Bkav 20160319
ByteHero 20160321
CAT-QuickHeal 20160319
ClamAV 20160319
CMC 20160316
Comodo 20160321
Cyren 20160321
DrWeb 20160321
Emsisoft 20160321
ESET-NOD32 20160321
F-Prot 20160321
F-Secure 20160321
Fortinet 20160321
GData 20160321
Ikarus 20160321
Jiangmin 20160321
Kaspersky 20160321
Malwarebytes 20160321
McAfee 20160321
McAfee-GW-Edition 20160321
Microsoft 20160321
eScan 20160321
NANO-Antivirus 20160321
nProtect 20160320
Panda 20160320
Qihoo-360 20160321
Sophos AV 20160321
SUPERAntiSpyware 20160321
Symantec 20160321
Tencent 20160321
TheHacker 20160320
TrendMicro 20160321
TrendMicro-HouseCall 20160321
VBA32 20160318
VIPRE 20160321
ViRobot 20160321
Zillya 20160320
Zoner 20160321
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 2001-2015 Karlis Blumentals

Product Easy GIF Animator
Original name gifan.exe
Internal name gifan.exe
File version 6.2.0.53
Description Easy GIF Animator
Comments Written by Karlis Blumentals and Aivars Irmejs
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2015-05-05 14:44:32
Entry Point 0x000013A6
Number of sections 4
PE sections
Overlays
MD5 f63e34b65a4a88f026d5595b026dd68f
File type data
Offset 314880
Size 54342144
Entropy 5.49
PE imports
GetLastError
InitializeCriticalSectionAndSpinCount
HeapFree
GetStdHandle
EnterCriticalSection
GetConsoleOutputCP
SetHandleCount
LoadLibraryW
GetConsoleCP
GetOEMCP
LCMapStringA
HeapDestroy
HeapAlloc
TlsAlloc
SetEnvironmentVariableW
FlushFileBuffers
GetModuleFileNameA
LoadLibraryA
CopyFileW
CreateProcessW
DeleteCriticalSection
GetStartupInfoA
MoveFileW
GetConsoleMode
GetLocaleInfoA
GetCurrentProcessId
LCMapStringW
GetCommandLineW
DuplicateHandle
GetCPInfo
UnhandledExceptionFilter
TlsGetValue
MultiByteToWideChar
HeapSize
IsDebuggerPresent
GetCommandLineA
GetProcAddress
TlsFree
GetStartupInfoW
SetStdHandle
ExpandEnvironmentStringsW
RaiseException
WideCharToMultiByte
GetModuleFileNameW
GetStringTypeA
SetFilePointer
FindNextFileW
SetUnhandledExceptionFilter
WriteFile
GetCurrentProcess
CloseHandle
GetSystemTimeAsFileTime
DeleteFileW
FindFirstFileW
GetACP
HeapReAlloc
GetStringTypeW
GetModuleHandleW
ExitProcess
LocalFree
FormatMessageW
TerminateProcess
QueryPerformanceCounter
WriteConsoleA
IsValidCodePage
HeapCreate
SetLastError
WaitForSingleObject
VirtualQuery
VirtualFree
GetFileAttributesW
InterlockedDecrement
Sleep
GetFileType
MoveFileExW
TlsSetValue
CreateFileA
GetTickCount
GetCurrentThreadId
InterlockedIncrement
VirtualAlloc
GetEnvironmentVariableW
WriteConsoleW
LeaveCriticalSection
MessageBoxW
wsprintfW
NtOpenEvent
NtOpenSection
RtlInitAnsiString
NtRaiseHardError
NtQuerySystemInformation
NtSetEvent
NtSetInformationFile
RtlCreateSecurityDescriptor
RtlInitUnicodeString
NtCreateEvent
NtTerminateProcess
NtClose
RtlInitializeCriticalSection
RtlMultiByteToUnicodeN
RtlUnwind
NtQueryVirtualMemory
NtOpenDirectoryObject
RtlFreeAnsiString
NtMapViewOfSection
NtReadVirtualMemory
NtClearEvent
RtlRaiseException
RtlAllocateAndInitializeSid
RtlUnicodeStringToAnsiString
NtDelayExecution
NtDuplicateObject
RtlSetSaclSecurityDescriptor
NtReadFile
RtlLeaveCriticalSection
RtlEnterCriticalSection
RtlAddAccessAllowedAce
RtlGetVersion
LdrUnloadDll
NtWriteVirtualMemory
RtlAllocateHeap
NtAllocateVirtualMemory
NtOpenFile
NtUnmapViewOfSection
NtSetInformationProcess
NtQueryDirectoryFile
RtlNtStatusToDosError
RtlFreeSid
NtReleaseMutant
RtlFreeHeap
NtWaitForSingleObject
RtlCompareUnicodeString
NtCreateMutant
RtlLengthSid
NtProtectVirtualMemory
LdrGetDllHandle
NtCreateSection
NtQueryFullAttributesFile
RtlSetDaclSecurityDescriptor
RtlQueryEnvironmentVariable_U
LdrGetProcedureAddress
RtlCreateAcl
LdrLoadDll
NtQueryInformationFile
NtQueryInformationProcess
Number of PE resources by type
RT_ICON 16
RT_GROUP_ICON 2
RT_VERSION 1
Number of PE resources by language
LATVIAN DEFAULT 18
ENGLISH US 1
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
5.0

Comments
Written by Karlis Blumentals and Aivars Irmejs

ThinAppVersion
5.2.0-3231342

InitializedDataSize
182784

ImageVersion
0.0

ProductName
Easy GIF Animator

FileVersionNumber
6.2.0.53

ThinAppLicense
koshar.blogspot.com - -

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Windows, Latin1

LinkerVersion
2.25

FileTypeExtension
exe

ThinAppBuildDateTime
20160303 142639

OriginalFileName
gifan.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
6.2.0.53

TimeStamp
2015:05:05 16:44:32+02:00

FileType
Win32 EXE

PEType
PE32

InternalName
gifan.exe

ProductVersion
6.0

FileDescription
Easy GIF Animator

OSVersion
5.0

FileOS
Win32

LegalCopyright
Copyright 2001-2015 Karlis Blumentals

MachineType
Intel 386 or later, and compatibles

CompanyName
Karlis Blumentals

CodeSize
89088

FileSubtype
0

ProductVersionNumber
6.2.0.53

EntryPoint
0x13a6

ObjectFileType
Executable application

File identification
MD5 db22bffb5f2a912355c69ddcf3fa35cd
SHA1 5dde52802a23f2f953349d025bf8245ca7e3e184
SHA256 8774021c8b974063bc946c38a42d083e2e29a1037faea5669b9a40b7c1b7a1ea
ssdeep
786432:vftuw1JTJYwsog6W+VafB4HANIHlgh8XTTwoF:H8aFJYwzJxafBgAN0lI8jTZF

authentihash 325501adf5f65bf77b9c299712c0930c6c9196136ea2267508aacd7b8a2b1994
imphash 16dc1851aaa7a3559ede2f5d128b1ed6
Размер файла 52.1 MБ ( 54657024 bytes )
Тип файла Win32 EXE
Описание
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID DOS Borland compiled Executable (generic) (48.6%)
Win32 Executable (generic) (21.9%)
OS/2 Executable (generic) (9.8%)
Generic Win/DOS Executable (9.7%)
DOS Executable Generic (9.7%)
Tags
peexe overlay

VirusTotal metadata
First submission 2016-03-21 10:12:24 UTC (3 лет, 2 месяцев назад)
Last submission 2018-02-27 19:20:13 UTC (1 год, 2 месяцев назад)
Имена файлов Easy GIF Animator portable.exe
gifan.exe
Нет комментариев. Из участников сообщества VirusTotal ещё пока никто не оставил комментарий по поводу результатов анализа. Станьте первым!

Оставьте свой комментарий...

?
Отправить

Вы не выполнили вход. Только зарегистрированные пользователи могут оставлять комментарии. Выполните вход и получите право голоса!

Нет голосов. Ещё пока никто не проголосовал за результаты анализа. Станьте первым!