× В вашем браузере отключены куки (cookie). Для полноценной работы сайта необходимо включить сохранение файлов cookie.
SHA256: cfe32da2fd3e0a20178b5e89d9769fbc1ed05f8e922033293f74ff94607f42aa
Имя файла: GloryonTest.exe
Показатель выявления: 0 / 54
Дата анализа: 2016-08-20 04:49:23 UTC (1 год, 1 месяц назад)
Антивирус Результат Дата обновления
Ad-Aware 20160820
AegisLab 20160820
AhnLab-V3 20160819
Alibaba 20160819
ALYac 20160820
Antiy-AVL 20160820
Arcabit 20160820
Avast 20160820
AVG 20160820
Avira (no cloud) 20160819
AVware 20160820
Baidu 20160819
BitDefender 20160820
Bkav 20160818
CAT-QuickHeal 20160818
ClamAV 20160820
CMC 20160818
Comodo 20160819
Cyren 20160820
DrWeb 20160820
Emsisoft 20160820
ESET-NOD32 20160820
F-Prot 20160820
F-Secure 20160820
Fortinet 20160820
GData 20160820
Ikarus 20160819
Jiangmin 20160820
K7AntiVirus 20160819
K7GW 20160820
Kaspersky 20160820
Kingsoft 20160820
Malwarebytes 20160820
McAfee 20160820
McAfee-GW-Edition 20160820
Microsoft 20160820
eScan 20160820
NANO-Antivirus 20160820
nProtect None
Panda 20160819
Qihoo-360 20160820
Rising 20160820
Sophos AV 20160820
SUPERAntiSpyware 20160820
Symantec 20160820
Tencent 20160820
TheHacker 20160817
TrendMicro 20160820
TrendMicro-HouseCall 20160820
VBA32 20160819
VIPRE 20160820
ViRobot 20160820
Zillya 20160819
Zoner 20160820
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Adobe® Flash® Player. Copyright © 1996-2011 Adobe Systems Incorporated. All Rights Reserved. Adobe and Flash are either trademarks or registered trademarks in the United States and/or other countries.

Product Shockwave Flash
Original name SAFlashPlayer.exe
Internal name Adobe Flash Player 10.3
File version 10,3,181,34
Description Adobe Flash Player 10.3 r181
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2011-06-21 22:10:03
Entry Point 0x003F4040
Number of sections 7
PE sections
Overlays
MD5 0bf4864d5999a91d47e076f64d99065b
File type data
Offset 5780992
Size 11225209
Entropy 7.96
PE imports
RegCreateKeyExW
RegOpenKeyA
RegCloseKey
RegSetValueExW
RegQueryValueExA
RegOpenKeyExW
RegSetValueExA
RegOpenKeyExA
RegQueryValueExW
PrintDlgW
GetOpenFileNameW
GetSaveFileNameW
GetOpenFileNameA
CommDlgExtendedError
GetSaveFileNameA
CertCreateCertificateContext
CertFreeCertificateContext
CertCloseStore
CryptGetMessageCertificates
CertFindCertificateInStore
CryptVerifyMessageSignature
CertVerifySubjectCertificateContext
SetGraphicsMode
StartDocW
GetTextMetricsW
CreateFontIndirectW
GetClipBox
CreatePen
GetBkMode
SaveDC
CreateFontIndirectA
PolyBezierTo
LPtoDP
SetStretchBltMode
GetSystemPaletteEntries
GetDeviceCaps
CreateDCA
LineTo
DeleteDC
EndDoc
RestoreDC
SetBkMode
EnumFontFamiliesW
GetICMProfileA
GetWorldTransform
SetPixel
SetWorldTransform
CreateSolidBrush
StartPage
DeleteObject
IntersectClipRect
BitBlt
GdiFlush
CreateDIBSection
EnumFontFamiliesA
RealizePalette
SetTextColor
GetCurrentObject
ExtTextOutW
GetObjectW
FillPath
CreateBitmap
MoveToEx
CreatePalette
GetStockObject
EnumFontFamiliesExW
SelectPalette
GetFontData
ExtTextOutA
StrokePath
GetDIBits
SetTextAlign
SelectClipRgn
CreateCompatibleDC
GetTextAlign
StretchBlt
StretchDIBits
GetBkColor
EndPage
CreateRectRgn
SelectObject
GetTextExtentPoint32A
SetPolyFillMode
CreateCompatibleBitmap
GetTextColor
GetStretchBltMode
DPtoLP
ExtCreatePen
GetClipRgn
SetBkColor
SetTextCharacterExtra
BeginPath
GetTextExtentPoint32W
GetTextCharacterExtra
SelectClipPath
EndPath
GetStdHandle
GetConsoleOutputCP
ReleaseMutex
CreateWaitableTimerA
GetFileAttributesA
WaitForSingleObject
QueueUserAPC
VerifyVersionInfoW
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
FreeEnvironmentStringsW
GetVolumeInformationW
ExpandEnvironmentStringsA
GetFileInformationByHandle
GetLocaleInfoW
SetStdHandle
GetTempPathA
WideCharToMultiByte
GetStringTypeA
InterlockedExchange
GetTempPathW
GetSystemTimeAsFileTime
SetThreadAffinityMask
HeapReAlloc
GetStringTypeW
SetFileAttributesA
FreeLibrary
SetWaitableTimer
CreateEventW
LoadResource
FindClose
InterlockedDecrement
GetFullPathNameW
OutputDebugStringA
GetEnvironmentVariableW
SetLastError
GetUserDefaultUILanguage
GetSystemTime
OpenThread
InitializeCriticalSection
GetUserDefaultLangID
GetModuleFileNameW
CopyFileA
HeapAlloc
FlushFileBuffers
GetModuleFileNameA
GetFileAttributesW
RaiseException
SetThreadPriority
ReleaseSemaphore
EnumSystemLocalesW
TlsGetValue
MultiByteToWideChar
SetFilePointerEx
FlushInstructionCache
LeaveCriticalSection
CreateMutexA
SetFilePointer
InterlockedExchangeAdd
CreateSemaphoreA
CreateThread
MoveFileExW
GetSystemDirectoryW
CreateSemaphoreW
IsProcessorFeaturePresent
GetSystemDirectoryA
SetEnvironmentVariableA
TerminateProcess
SetUnhandledExceptionFilter
WriteConsoleA
GetVersion
SetCurrentDirectoryW
VirtualQuery
SetEndOfFile
GetLocaleInfoA
GetCurrentThreadId
GetProcAddress
SleepEx
WriteConsoleW
InitializeCriticalSectionAndSpinCount
HeapFree
EnterCriticalSection
SetHandleCount
TerminateThread
LoadLibraryW
DeviceIoControl
GetVersionExW
SetEvent
QueryPerformanceCounter
GetTickCount
TlsAlloc
VirtualProtect
GetVersionExA
LoadLibraryA
RtlUnwind
ExitThread
GlobalSize
GetStartupInfoA
GetFileSize
CreateDirectoryA
DeleteFileA
GetDateFormatW
GetStartupInfoW
CreateDirectoryW
DeleteFileW
GetUserDefaultLCID
GetProcessHeap
GetTempFileNameW
GetTimeFormatW
WriteFile
GetFileSizeEx
RemoveDirectoryW
ExpandEnvironmentStringsW
FindNextFileW
lstrcpyA
ResetEvent
GetTempFileNameA
CreateFileMappingA
FindFirstFileW
WaitForMultipleObjects
GetTimeZoneInformation
CreateFileW
CreateEventA
IsDebuggerPresent
GetFileType
TlsSetValue
CreateFileA
ExitProcess
GetCurrencyFormatW
InterlockedIncrement
GetLastError
SystemTimeToFileTime
LCMapStringW
HeapCreate
GetSystemInfo
lstrlenA
GlobalFree
GetConsoleCP
LCMapStringA
CompareStringW
GetProcessTimes
GlobalUnlock
GetEnvironmentStringsW
FindResourceExA
IsDBCSLeadByte
GlobalAlloc
lstrlenW
VirtualFree
CancelWaitableTimer
SwitchToThread
GetEnvironmentStrings
GetCurrentDirectoryW
GetCurrentProcessId
LockResource
GetCommandLineW
GetCPInfo
HeapSize
GetCommandLineA
VerSetConditionMask
InterlockedCompareExchange
GetCurrentThread
QueryPerformanceFrequency
UnhandledExceptionFilter
MapViewOfFile
TlsFree
GetModuleHandleA
ReadFile
CloseHandle
GetACP
GlobalLock
GetModuleHandleW
GetFileAttributesExW
CreateProcessA
IsValidCodePage
UnmapViewOfFile
FindResourceExW
GetNumberFormatW
CreateProcessW
Sleep
VirtualAlloc
GetOEMCP
CompareStringA
SysFreeString
SHGetFolderPathW
SHBrowseForFolderW
DragQueryFileW
DragAcceptFiles
SHGetFolderPathA
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHAppBarMessage
DragQueryFileA
SHGetDiskFreeSpaceExW
RedrawWindow
RegisterClipboardFormatA
GetForegroundWindow
SetRectEmpty
DestroyMenu
PostQuitMessage
DdeUninitialize
SetWindowPos
DdeDisconnect
DdeCreateStringHandleA
IsWindow
EndPaint
SetMenuItemInfoW
DispatchMessageW
GetCursorPos
ReleaseDC
GetMenuStringW
SendMessageW
UnregisterClassA
IsClipboardFormatAvailable
GetClientRect
GetMenuItemInfoW
DdeInitializeW
DefWindowProcW
GetDlgItemTextW
GetWindowTextLengthA
ClientToScreen
GetActiveWindow
GetWindowTextW
RegisterClipboardFormatW
GetWindowTextLengthW
LoadAcceleratorsW
DdeFreeStringHandle
GetWindowTextA
MapVirtualKeyW
GetParent
UpdateWindow
GetPropW
CreateCaret
GetMessageW
ShowWindow
SetMenuInfo
FlashWindowEx
SetPropW
GetClipboardFormatNameA
PeekMessageW
EnableWindow
SetWindowPlacement
ShowWindowAsync
GetDlgItemTextA
GetSystemMenu
TranslateMessage
GetWindow
DestroyCaret
LoadStringA
GetQueueStatus
SetClipboardData
IsZoomed
GetWindowPlacement
LoadStringW
DdeConnect
DrawMenuBar
EnableMenuItem
GetSubMenu
SetTimer
DdeClientTransaction
GetKeyboardLayout
FillRect
WaitForInputIdle
CreateWindowExW
GetWindowLongW
DestroyWindow
MapWindowPoints
GetMonitorInfoW
PostMessageA
BeginPaint
OffsetRect
SetCaretPos
KillTimer
TrackMouseEvent
RegisterWindowMessageA
GetClipboardData
GetClassInfoExW
GetSystemMetrics
SetWindowLongW
GetWindowRect
SetCapture
ReleaseCapture
PostMessageW
CreatePopupMenu
ShowCaret
SetWindowTextW
CreateMenu
GetDlgItem
SendInput
ScreenToClient
InsertMenuA
TrackPopupMenu
DialogBoxIndirectParamW
GetMenuStringA
GetDesktopWindow
LoadCursorW
EnumDisplaySettingsW
GetDC
InsertMenuW
SetFocus
OpenClipboard
EmptyClipboard
EndDialog
CreateIconIndirect
GetCapture
SetWindowTextA
LoadMenuW
RemoveMenu
GetWindowThreadProcessId
MessageBoxW
GetMenu
RegisterClassExW
SetMenu
SetDlgItemTextA
MoveWindow
DialogBoxParamW
MessageBoxA
SendMessageTimeoutW
SetDlgItemTextW
GetKeyState
UpdateLayeredWindow
GetDoubleClickTime
DestroyIcon
IsWindowVisible
SystemParametersInfoW
LoadIconW
MonitorFromWindow
SetRect
DeleteMenu
InvalidateRect
CallWindowProcW
GetCursor
GetFocus
InsertMenuItemW
CloseClipboard
CheckMenuItem
SetCursor
TranslateAcceleratorW
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueA
timeKillEvent
waveOutReset
waveInOpen
waveOutUnprepareHeader
waveOutGetDevCapsA
timeSetEvent
waveInStop
mixerGetLineControlsA
waveOutGetDevCapsW
waveOutGetPosition
timeBeginPeriod
mixerGetLineInfoA
waveInGetPosition
mixerOpen
waveInPrepareHeader
waveInGetDevCapsA
waveOutPause
waveInMessage
timeEndPeriod
waveOutGetNumDevs
waveInGetDevCapsW
waveOutClose
waveOutMessage
waveInAddBuffer
timeGetTime
waveInClose
timeGetDevCaps
waveOutRestart
waveInGetNumDevs
mixerGetID
mixerGetDevCapsA
waveOutOpen
mixerSetControlDetails
mixerClose
waveOutPrepareHeader
waveInUnprepareHeader
mixerGetControlDetailsA
waveInStart
waveOutWrite
waveInReset
htonl
ioctlsocket
WSAStartup
WSASocketW
getsockname
WSAAddressToStringA
htons
inet_ntoa
WSAGetLastError
gethostname
recv
WSACloseEvent
ntohl
inet_addr
send
getservbyport
ntohs
select
gethostbyaddr
connect
WSAAsyncSelect
gethostbyname
WSASetLastError
WSACleanup
closesocket
WSAIoctl
setsockopt
socket
bind
recvfrom
WSAEnumNetworkEvents
WSAEventSelect
sendto
WSACreateEvent
getservbyname
TranslateBitmapBits
DeleteColorTransform
CloseColorProfile
OpenColorProfileW
CreateColorTransformW
OleUninitialize
CoUninitialize
CoInitialize
OleInitialize
OleFlushClipboard
ReleaseStgMedium
CoCreateInstance
CreateBindCtx
PropVariantClear
OleGetClipboard
OleIsCurrentClipboard
CoTaskMemFree
OleSetClipboard
CoTaskMemAlloc
CopyStgMedium
Number of PE resources by type
RT_STRING 80
RT_MENU 64
RT_ICON 60
RT_DIALOG 49
RT_GROUP_ICON 6
RT_CURSOR 5
RT_GROUP_CURSOR 3
RT_MANIFEST 1
RT_ACCELERATOR 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 90
TURKISH DEFAULT 12
SWEDISH NEUTRAL 12
GERMAN 12
CHINESE TRADITIONAL 12
DUTCH 12
FRENCH 12
CHINESE SIMPLIFIED 12
PORTUGUESE BRAZILIAN 12
JAPANESE DEFAULT 12
SPANISH MODERN 12
POLISH DEFAULT 12
CZECH DEFAULT 12
RUSSIAN 12
KOREAN 12
ITALIAN 12
PE resources
Debug information
ExifTool file metadata
LegalTrademarks
Adobe Flash Player

SubsystemVersion
5.0

LinkerVersion
9.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
10.3.181.34

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

FileDescription
Adobe Flash Player 10.3 r181

CharacterSet
Unicode

InitializedDataSize
1641984

EntryPoint
0x3f4040

OriginalFileName
SAFlashPlayer.exe

MIMEType
application/octet-stream

LegalCopyright
Adobe Flash Player. Copyright 1996-2011 Adobe Systems Incorporated. All Rights Reserved. Adobe and Flash are either trademarks or registered trademarks in the United States and/or other countries.

FileVersion
10,3,181,34

TimeStamp
2011:06:21 23:10:03+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Adobe Flash Player 10.3

ProductVersion
10,3,181,34

UninitializedDataSize
0

OSVersion
5.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

Debugger
0

CompanyName
Adobe Systems, Inc.

CodeSize
4230144

ProductName
Shockwave Flash

ProductVersionNumber
10.3.181.34

FileTypeExtension
exe

ObjectFileType
Dynamic link library

Compressed bundles
File identification
MD5 ca7f57592ced368dc99bd2787d621276
SHA1 3c934daa048dc1b0e2430564be5775f8bcdc346d
SHA256 cfe32da2fd3e0a20178b5e89d9769fbc1ed05f8e922033293f74ff94607f42aa
ssdeep
393216:b8U9txoyum8rtaFNy55NaB6+fRGAoyBRAk6klPWaDpbn+35:b8ux8aFK5NaGs0k6jaDRG5

authentihash 56072ca01427a5fd2bf060244027267447b995046def7f1601b45d8003d419ac
imphash 6a082b701a9bceb7e88df3f0123db9f9
Размер файла 16.2 MБ ( 17006201 bytes )
Тип файла Win32 EXE
Описание
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 EXE PECompact compressed (generic) (49.3%)
Win64 Executable (generic) (32.7%)
Win32 Dynamic Link Library (generic) (7.8%)
Win32 Executable (generic) (5.3%)
Generic Win/DOS Executable (2.3%)
Tags
peexe overlay

VirusTotal metadata
First submission 2013-08-15 18:47:52 UTC (4 лет, 1 месяц назад)
Last submission 2016-08-20 04:49:23 UTC (1 год, 1 месяц назад)
Имена файлов cfe32da2fd3e0a20178b5e89d9769fbc1ed05f8e922033293f74ff94607f42aa
Adobe Flash Player 10.3
GloryonTest.exe
SAFlashPlayer.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
Нет комментариев. Из участников сообщества VirusTotal ещё пока никто не оставил комментарий по поводу результатов анализа. Станьте первым!

Оставьте свой комментарий...

?
Отправить

Вы не выполнили вход. Только зарегистрированные пользователи могут оставлять комментарии. Выполните вход и получите право голоса!

Нет голосов. Ещё пока никто не проголосовал за результаты анализа. Станьте первым!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Moved files
Deleted files
Created mutexes
Opened mutexes
Opened service managers
Opened services
Runtime DLLs
Additional details
The file sends control codes directly to certain device drivers making use of the DeviceIoControl Windows API function.
HTTP requests
DNS requests
TCP connections