× Cookies sú vypnuté! Aby táto stránka vyžaduje mať zapnuté cookies aby fungovala správne.
SHA256: 7276c91b676342f6ce4c1c583526cd8d5e9b16c2e63bb42a5899b58c9555ba65
Názov súboru: dune2000.exe
Pomer detekcie: 0 / 57
Dátum analýzy: 2015-04-16 11:28:33 UTC ( pred 4 roky, 1 mesiac ) Zobraziť posledné
Antivírus Výsledok Aktualizovať
Ad-Aware 20150416
AegisLab 20150416
Yandex 20150416
AhnLab-V3 20150416
Alibaba 20150416
ALYac 20150416
Antiy-AVL 20150416
Avast 20150416
AVG 20150416
Avira (no cloud) 20150416
AVware 20150416
Baidu-International 20150416
BitDefender 20150416
Bkav 20150415
ByteHero 20150416
CAT-QuickHeal 20150416
ClamAV 20150415
CMC 20150416
Comodo 20150416
Cyren 20150416
DrWeb 20150416
Emsisoft 20150416
ESET-NOD32 20150416
F-Prot 20150416
F-Secure 20150416
Fortinet 20150416
GData 20150416
Ikarus 20150416
Jiangmin 20150414
K7AntiVirus 20150416
K7GW 20150416
Kaspersky 20150416
Kingsoft 20150416
Malwarebytes 20150416
McAfee 20150416
McAfee-GW-Edition 20150416
Microsoft 20150416
eScan 20150416
NANO-Antivirus 20150416
Norman 20150416
nProtect 20150416
Panda 20150416
Qihoo-360 20150416
Rising 20150416
Sophos AV 20150416
SUPERAntiSpyware 20150416
Symantec 20150416
Tencent 20150416
TheHacker 20150415
TotalDefense 20150415
TrendMicro 20150416
TrendMicro-HouseCall 20150416
VBA32 20150416
VIPRE 20150416
ViRobot 20150416
Zillya 20150416
Zoner 20150416
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright © 1998

Publisher Intelligent Games
Product Intelligent Games Dune2000
Original name Dune2000.exe
Internal name Dune2000
File version 1, 0, 0, 1
Description Dune2000
Packers identified
PEiD InstallShield 2000
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2015-04-12 12:47:26
Entry Point 0x000B2810
Number of sections 11
PE sections
Overlays
MD5 ee9b8bd0b6c65c9c3dd21c868110e64f
File type data
Offset 1203200
Size 44140
Entropy 4.68
PE imports
RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
RegCloseKey
RegOpenKeyA
DirectDrawCreate
Ord(4)
Ord(1)
DirectSoundCreate
GetDeviceCaps
CreatePolygonRgn
GetStockObject
TextOutA
PtInRegion
DeleteObject
GetStdHandle
FileTimeToSystemTime
GetDriveTypeA
HeapDestroy
GetLocalTime
FreeEnvironmentStringsA
DeleteCriticalSection
GetDiskFreeSpaceA
FreeEnvironmentStringsW
SetStdHandle
GetCPInfo
GetStringTypeA
WriteFile
HeapReAlloc
GetStringTypeW
GetFullPathNameA
GetExitCodeProcess
MoveFileA
GetLogicalDriveStringsA
InitializeCriticalSection
GlobalHandle
FindClose
InterlockedDecrement
OutputDebugStringA
ExitProcess
FlushFileBuffers
GetModuleFileNameA
GetVolumeInformationA
UnhandledExceptionFilter
MultiByteToWideChar
GetModuleHandleA
SetUnhandledExceptionFilter
GetCurrentProcess
SetEnvironmentVariableA
GlobalMemoryStatus
GlobalAlloc
SetEndOfFile
GetVersion
InterlockedIncrement
HeapFree
EnterCriticalSection
SetHandleCount
SetEvent
GetTickCount
IsBadWritePtr
GetVersionExA
LoadLibraryA
RtlUnwind
GetStartupInfoA
CreateDirectoryA
DeleteFileA
WaitForMultipleObjects
GetProcessHeap
CompareStringW
FindFirstFileA
CompareStringA
FindNextFileA
TerminateProcess
GetProcAddress
GetTimeZoneInformation
CreateEventA
GetFileType
SetVolumeLabelA
CreateFileA
HeapAlloc
LeaveCriticalSection
GetLastError
LCMapStringW
lstrlenA
GlobalFree
LCMapStringA
GetEnvironmentStringsW
GlobalUnlock
FileTimeToLocalFileTime
GetEnvironmentStrings
GetCurrentDirectoryA
GetCommandLineA
SetFilePointer
ReadFile
CloseHandle
GetACP
GlobalLock
CreateProcessA
WideCharToMultiByte
HeapCreate
VirtualFree
Sleep
IsBadReadPtr
IsBadCodePtr
VirtualAlloc
GetOEMCP
ResetEvent
FindExecutableA
SetFocus
CreateWindowExA
UpdateWindow
IntersectRect
EndDialog
BeginPaint
EnumWindows
KillTimer
FindWindowA
DefWindowProcA
ShowWindow
SendDlgItemMessageA
GetWindowRect
DispatchMessageA
EndPaint
PostMessageA
MessageBoxA
PeekMessageA
GetWindowDC
TranslateMessage
DialogBoxParamA
ReleaseDC
LoadStringA
SendMessageA
SetForegroundWindow
CloseWindow
GetDlgItem
RegisterClassA
SetRect
InvalidateRect
wsprintfA
SetTimer
LoadIconA
FillRect
ShowCursor
WaitForInputIdle
GetDesktopWindow
GetClassNameA
GetTopWindow
GetUpdateRect
SetCursorPos
PtInRect
timeKillEvent
timeEndPeriod
timeGetTime
waveOutGetNumDevs
timeSetEvent
timeBeginPeriod
setsockopt
htons
htonl
getsockopt
bind
ntohl
WSAStartup
WSACleanup
recvfrom
gethostbyname
socket
sendto
gethostname
WSAAsyncSelect
closesocket
ntohs
WSACancelAsyncRequest
_AIL_sample_buffer_ready@4
_AIL_allocate_sample_handle@4
_AIL_set_sample_pan@8
_AIL_set_sample_loop_count@8
_AIL_sample_volume@4
_AIL_start_sample@4
_AIL_set_sample_playback_rate@8
_AIL_set_preference@8
_AIL_last_error@0
_AIL_sample_status@4
_AIL_waveOutOpen@16
_AIL_set_sample_file@12
_AIL_set_sample_volume@8
_AIL_stop_sample@4
_AIL_init_sample@4
_AIL_set_sample_position@8
_AIL_end_sample@4
_AIL_load_sample_buffer@16
_AIL_shutdown@0
_AIL_startup@0
_AIL_minimum_sample_buffer_size@12
_AIL_set_sample_type@12
OleUninitialize
CoCreateInstance
OleInitialize
Number of PE resources by type
RT_ICON 13
RT_DIALOG 4
RT_STRING 2
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH UK 21
PE resources
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
2.23

ImageVersion
1.0

FileSubtype
0

FileVersionNumber
1.0.0.1

UninitializedDataSize
4054016

LanguageCode
English (British)

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
401408

FileOS
Windows NT 32-bit

EntryPoint
0xb2810

MIMEType
application/octet-stream

LegalCopyright
Copyright 1998

FileVersion
1, 0, 0, 1

TimeStamp
2015:04:12 13:47:26+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Dune2000

ProductVersion
1, 0, 0, 2

FileDescription
Dune2000

OSVersion
4.0

OriginalFilename
Dune2000.exe

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Intelligent Games

CodeSize
800768

ProductName
Intelligent Games Dune2000

ProductVersionNumber
1.0.0.1

FileTypeExtension
exe

ObjectFileType
Executable application

Compressed bundles
File identification
MD5 056d289b19bd8a32317259f1cce8a7d1
SHA1 5f44aecf83e623b6e9f1f9f06f9b1e3e3d775389
SHA256 7276c91b676342f6ce4c1c583526cd8d5e9b16c2e63bb42a5899b58c9555ba65
ssdeep
24576:oI8sF666OIFfKMu56/oKWXzpgRzZY5PIHDZKW3u:ocwGh95PElG

authentihash ba22abdebfb55cfcfa3bd6194a9af21ad82e838a49267e1d7869e99d072e0a73
imphash 6f55423fadd84f15c42e648e2a280d29
Veľkosť súboru 1.2 MB ( 1247340 bytes )
Typ súboru Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID InstallShield setup (36.7%)
Win32 Executable MS Visual C++ (generic) (26.6%)
Win64 Executable (generic) (23.6%)
Win32 Dynamic Link Library (generic) (5.6%)
Win32 Executable (generic) (3.8%)
Tags
peexe installshield overlay

VirusTotal metadata
First submission 2015-04-15 23:59:08 UTC ( pred 4 roky, 1 mesiac )
Last submission 2015-04-16 11:28:33 UTC ( pred 4 roky, 1 mesiac )
Názov súborov: Dune2000.exe
Dune2000
dune2000.exe
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
Žiadne komentáre. Žiaden člen VirusTotal komunity sa ešte nevyjadril. Buď prvý, kto sa vyjadrí!

Zanechať komentár...

?
Pridať komentár

Nie ste prihlásený. Iba registrovaný užívatelia môžu písať komentáre, príhlásiť sa a niečo zmeniť!

Žiadne hlasy. Nikto ešte nehlasoval. Buďte prvý kto tak urobí!