× В вашем браузере отключены куки (cookie). Для полноценной работы сайта необходимо включить сохранение файлов cookie.
SHA256: a0bbc5c00ede7bc38c319df32bb78d2fa013a7013f93d3d95e15a122169716f3
Имя файла: ADBokaT57 ModPack 9.17 #93.exe
Показатель выявления: 0 / 55
Дата анализа: 2016-12-29 16:37:36 UTC (5 месяцев, 3 недель назад) Показать последний анализ
Антивирус Результат Дата обновления
Ad-Aware 20161229
AegisLab 20161229
AhnLab-V3 20161229
Alibaba 20161223
ALYac 20161229
Antiy-AVL 20161229
Arcabit 20161229
Avast 20161229
AVG 20161229
Avira (no cloud) 20161229
AVware 20161229
Baidu 20161207
BitDefender 20161229
CAT-QuickHeal 20161229
ClamAV 20161229
CMC 20161229
Comodo 20161229
CrowdStrike Falcon (ML) 20161024
Cyren 20161229
DrWeb 20161229
Emsisoft 20161229
ESET-NOD32 20161229
F-Prot 20161229
F-Secure 20161229
Fortinet 20161229
GData 20161229
Ikarus 20161229
Invincea 20161216
Jiangmin 20161229
K7AntiVirus 20161229
K7GW 20161229
Kaspersky 20161229
Kingsoft 20161229
Malwarebytes 20161229
McAfee 20161229
McAfee-GW-Edition 20161229
Microsoft 20161229
eScan 20161229
NANO-Antivirus 20161229
nProtect 20161229
Panda 20161229
Qihoo-360 20161229
Rising 20161229
Sophos 20161229
SUPERAntiSpyware 20161229
Symantec 20161229
Tencent 20161229
TheHacker 20161226
TrendMicro 20161229
TrendMicro-HouseCall 20161229
Trustlook 20161229
VBA32 20161229
VIPRE 20161229
ViRobot 20161229
WhiteArmor 20161221
Yandex 20161229
Zillya 20161229
Zoner 20161229
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright

Product ADBokaT57 ModPack 9.17
File version 9.17.0
Description ADBokaT57 ModPack 9.17 Setup
Comments This installation was built with Inno Setup.
Packers identified
F-PROT INNO, appended, UTF-8, Unicode
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2012-10-02 05:04:04
Entry Point 0x00016478
Number of sections 8
PE sections
Overlays
MD5 2858a2b64a550b29e8e8f40b1979d05c
File type data
Offset 228864
Size 32849428
Entropy 7.98
PE imports
RegCloseKey
OpenProcessToken
RegOpenKeyExW
AdjustTokenPrivileges
LookupPrivilegeValueW
RegQueryValueExW
InitCommonControls
GetLastError
GetStdHandle
EnterCriticalSection
GetUserDefaultLangID
GetSystemInfo
GetModuleFileNameW
WaitForSingleObject
GetVersionExW
FreeLibrary
QueryPerformanceCounter
GetTickCount
GetThreadLocale
VirtualProtect
GetFileAttributesW
RtlUnwind
lstrlenW
GetLocalTime
CreateProcessW
DeleteCriticalSection
GetStartupInfoA
SizeofResource
GetWindowsDirectoryW
LocalAlloc
LockResource
GetDiskFreeSpaceW
GetCommandLineW
SetErrorMode
UnhandledExceptionFilter
LoadLibraryExW
MultiByteToWideChar
EnumCalendarInfoW
GetCPInfo
DeleteFileW
GetProcAddress
GetDateFormatW
InterlockedCompareExchange
GetLocaleInfoW
lstrcpynW
CompareStringW
RaiseException
WideCharToMultiByte
RemoveDirectoryW
SetFilePointer
GetFullPathNameW
ReadFile
GetEnvironmentVariableW
InterlockedExchange
CreateDirectoryW
WriteFile
GetCurrentProcess
CloseHandle
FindFirstFileW
GetACP
GetModuleHandleW
SignalObjectAndWait
SetEvent
FormatMessageW
LoadLibraryW
CreateEventW
GetExitCodeProcess
GetVersion
InitializeCriticalSection
LoadResource
FindResourceW
CreateFileW
VirtualQuery
VirtualFree
FindClose
TlsGetValue
Sleep
SetEndOfFile
TlsSetValue
ExitProcess
GetCurrentThreadId
LeaveCriticalSection
VirtualAlloc
GetFileSize
SetLastError
ResetEvent
VariantChangeType
SafeArrayGetLBound
SafeArrayPtrOfIndex
SysAllocStringLen
VariantClear
SafeArrayCreate
SysReAllocStringLen
SafeArrayGetUBound
VariantCopy
SysFreeString
VariantInit
GetSystemMetrics
SetWindowLongW
MessageBoxW
PeekMessageW
LoadStringW
MessageBoxA
CreateWindowExW
MsgWaitForMultipleObjects
TranslateMessage
CharUpperBuffW
CallWindowProcW
CharNextW
GetKeyboardType
ExitWindowsEx
DispatchMessageW
DestroyWindow
Number of PE resources by type
RT_STRING 6
RT_ICON 5
RT_RCDATA 4
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 9
ENGLISH US 9
PE resources
ExifTool file metadata
UninitializedDataSize
0

Comments
This installation was built with Inno Setup.

LinkerVersion
2.25

ImageVersion
6.0

FileSubtype
0

FileVersionNumber
9.17.0.0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
141824

EntryPoint
0x16478

MIMEType
application/octet-stream

FileVersion
9.17.0

TimeStamp
2012:10:02 06:04:04+01:00

FileType
Win32 EXE

PEType
PE32

SubsystemVersion
5.0

ProductVersion
9.17.0

FileDescription
ADBokaT57 ModPack 9.17 Setup

OSVersion
5.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
ADBokaT57

CodeSize
86016

ProductName
ADBokaT57 ModPack 9.17

ProductVersionNumber
9.17.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 f252646367c490c967eea871ef64eca4
SHA1 d1cb8697a6d7035dda1e17052b31cb843bd3aed8
SHA256 a0bbc5c00ede7bc38c319df32bb78d2fa013a7013f93d3d95e15a122169716f3
ssdeep
786432:V/J2m2tPJYrBx14yvUOaKzFjo20mhRBuzZvx+sJkDQ3W6OimKt:H2rYf1jLJvjFuzZvx+K4IOiN

authentihash 5912e85cdcfc4bd9bc75d37f61d4a3c6f2a0de7b0279a670d11cef40a18c1816
imphash 483f0c4259a9148c34961abbda6146c1
Размер файла 31.5 MБ ( 33078292 bytes )
Тип файла Win32 EXE
Описание
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Inno Setup installer (81.5%)
Win32 Executable Delphi generic (10.5%)
Win32 Executable (generic) (3.3%)
Win16/32 Executable Delphi generic (1.5%)
Generic Win/DOS Executable (1.4%)
Tags
peexe overlay

VirusTotal metadata
First submission 2016-12-29 16:37:36 UTC (5 месяцев, 3 недель назад)
Last submission 2017-01-04 16:20:26 UTC (5 месяцев, 3 недель назад)
Имена файлов ADBokaT57 ModPack 9.17
ADBokaT57 ModPack 9.17 #93.exe
Нет комментариев. Из участников сообщества VirusTotal ещё пока никто не оставил комментарий по поводу результатов анализа. Станьте первым!

Оставьте свой комментарий...

?
Отправить

Вы не выполнили вход. Только зарегистрированные пользователи могут оставлять комментарии. Выполните вход и получите право голоса!

Нет голосов. Ещё пока никто не проголосовал за результаты анализа. Станьте первым!