× В вашем браузере отключены куки (cookie). Для полноценной работы сайта необходимо включить сохранение файлов cookie.
SHA256: d9e991a2d47123b66b89982f02cbf9c99c87fc5d8b6ecc768df01eeefc9dc4be
Имя файла: Camtasia-patch.exe
Показатель выявления: 40 / 65
Дата анализа: 2018-10-13 10:53:59 UTC (1 месяц назад)
Антивирус Результат Дата обновления
Ad-Aware Gen:Variant.Strictor.74661 20181013
ALYac Gen:Variant.Strictor.74661 20181013
Antiy-AVL RiskWare[RiskTool]/Win32.Patcher 20181013
Arcabit Trojan.Strictor.D123A5 20181013
Avast FileRepMalware 20181013
AVG FileRepMalware 20181013
Baidu Win32.Trojan.Generic.f 20181012
BitDefender Gen:Variant.Strictor.74661 20181013
CAT-QuickHeal Riskware.Dupatcher.A4 20181013
CrowdStrike Falcon (ML) malicious_confidence_100% (D) 20180723
Cybereason malicious.63500e 20180225
Cylance Unsafe 20181013
Cyren W32/Agent.EWQQ-1275 20181013
Emsisoft Gen:Variant.Strictor.74661 (B) 20181013
Endgame malicious (high confidence) 20180730
ESET-NOD32 a variant of Win32/HackTool.Patcher.AD potentially unsafe 20181013
F-Prot W32/Agent.KFY 20181013
F-Secure Gen:Variant.Strictor.74661 20181013
Fortinet Riskware/GamePatcher 20181013
GData Win32.Riskware.Patcher.E 20181013
Sophos ML heuristic 20180717
K7AntiVirus Trojan ( 0040f3a51 ) 20181013
K7GW Trojan ( 0040f3a51 ) 20181013
Malwarebytes HackTool.FilePatch 20181013
MAX malware (ai score=99) 20181013
McAfee PUP-XFQ-UY 20181013
McAfee-GW-Edition BehavesLike.Win32.PUPXFQ.bc 20181013
Microsoft PUA:Win32/Keygen 20181013
eScan Gen:Variant.Strictor.74661 20181013
Palo Alto Networks (Known Signatures) generic.ml 20181013
Qihoo-360 HEUR/QVM20.1.4FC3.Malware.Gen 20181013
Rising PUF.Patcher!1.B3BB (CLOUD) 20181012
SentinelOne (Static ML) static engine - malicious 20181011
Sophos AV Generic Patcher (PUA) 20181013
Symantec ML.Attribute.HighConfidence 20181012
TrendMicro TROJ_GEN.R002C0PJ418 20181010
TrendMicro-HouseCall TROJ_GEN.R002C0PJ418 20181010
ViRobot Trojan.Win32.Agent.754688.B 20181012
Webroot W32.Hacktool.Gen 20181013
Yandex Riskware.HackTool!LT2poWNG63M 20181012
AegisLab 20181013
AhnLab-V3 20181013
Alibaba 20180921
Avast-Mobile 20181013
Avira (no cloud) 20181013
Babable 20180918
Bkav 20181013
ClamAV 20181013
CMC 20181013
Comodo 20181013
DrWeb 20181013
eGambit 20181013
Jiangmin 20181013
Kaspersky 20181013
Kingsoft 20181013
NANO-Antivirus 20181013
Panda 20181013
SUPERAntiSpyware 20181013
Symantec Mobile Insight 20181001
TACHYON 20181013
Tencent 20181013
TheHacker 20181011
Trustlook 20181013
VBA32 20181012
Zillya 20181012
ZoneAlarm by Check Point 20181013
Zoner 20181012
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2012-12-21 20:59:46
Entry Point 0x0000102B
Number of sections 5
PE sections
PE imports
GetTempPathA
SizeofResource
lstrcatA
GetModuleHandleA
LoadResource
DeleteFileA
FreeLibrary
RtlMoveMemory
WriteFile
ExitProcess
CloseHandle
CreateFileA
FlushFileBuffers
GetProcAddress
FindResourceA
VirtualAlloc
LoadLibraryA
Number of PE resources by type
RT_ICON 1
RT_MANIFEST 1
RT_RCDATA 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 4
PE resources
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

FileTypeExtension
exe

TimeStamp
2012:12:21 21:59:46+01:00

FileType
Win32 EXE

PEType
PE32

CodeSize
512

LinkerVersion
10.0

ImageFileCharacteristics
Executable, 32-bit

EntryPoint
0x102b

InitializedDataSize
754176

SubsystemVersion
5.0

ImageVersion
0.0

OSVersion
5.0

UninitializedDataSize
0

File identification
MD5 323ab1863500e823bed8f4503b2cc1af
SHA1 8a21be43c763c2a695e96b385bca13cd3c696c11
SHA256 d9e991a2d47123b66b89982f02cbf9c99c87fc5d8b6ecc768df01eeefc9dc4be
ssdeep
12288:NxRV3yxug0BpD37TqnJmZU1IHdqU7VWaNFJwRKz8P7ZtnS9ESZJ1TdqKtEUOgvim:NlaeBxLTqnYdnVWadMLPtb6J1TciZOgJ

authentihash 947ca30a91d7cc02d2ee1b36bcb129506aef9bec8441acc269fbf9f96626ea5e
imphash dc73a9bd8de0fd640549c85ac4089b87
Размер файла 738.0 KБ ( 755712 bytes )
Тип файла Win32 EXE
Описание
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win64 Executable (generic) (61.7%)
Win32 Dynamic Link Library (generic) (14.7%)
Win32 Executable (generic) (10.0%)
OS/2 Executable (generic) (4.5%)
Generic Win/DOS Executable (4.4%)
Tags
peexe

VirusTotal metadata
First submission 2018-10-04 21:55:29 UTC (1 месяц, 1 неделя назад)
Last submission 2018-10-13 10:53:59 UTC (1 месяц назад)
Имена файлов Camtasia-patch.exe
(x86.x64bit.).2019-patch.exe
Нет комментариев. Из участников сообщества VirusTotal ещё пока никто не оставил комментарий по поводу результатов анализа. Станьте первым!

Оставьте свой комментарий...

?
Отправить

Вы не выполнили вход. Только зарегистрированные пользователи могут оставлять комментарии. Выполните вход и получите право голоса!

Нет голосов. Ещё пока никто не проголосовал за результаты анализа. Станьте первым!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Written files
Deleted files
Runtime DLLs