× Çerezler devre dışı bırakılmış! Bu sitenin düzgün bir şekilde çalışabilmesi için çerezlerin açık olması gerekir.
SHA256: 0f65f8bfb2c41fd88263a85c6e3583e4b71e54df13334a21c6e1c97eab25e51d
Dosya adı: 7ba6d05823473ef36c9b0f697deec8511b9531f070504b2d907fb7940504936b5...
Tespit edilme orani 0 / 57
Analiz tarihi: 2016-09-22 06:01:52 UTC ( 6 ay önce)
Muhtemelen zararsız! Bu dosyanın güvenli olduğunu gösteren güçlü göstergeler bulunmaktadır.
Antivirus Sonuç Güncelle
Ad-Aware 20160922
AegisLab 20160922
AhnLab-V3 20160922
Alibaba 20160922
ALYac 20160922
Antiy-AVL 20160922
Arcabit 20160921
Avast 20160922
AVG 20160922
Avira (no cloud) 20160922
AVware 20160922
Baidu 20160921
BitDefender 20160922
Bkav 20160921
CAT-QuickHeal 20160922
ClamAV 20160922
CMC 20160921
Comodo 20160922
CrowdStrike Falcon (ML) 20160725
Cyren 20160922
DrWeb 20160922
Emsisoft 20160922
ESET-NOD32 20160922
F-Prot 20160922
F-Secure 20160922
Fortinet 20160922
GData 20160922
Ikarus 20160921
Invincea 20160917
Jiangmin 20160922
K7AntiVirus 20160921
K7GW 20160922
Kaspersky 20160922
Kingsoft 20160922
Malwarebytes 20160922
McAfee 20160922
McAfee-GW-Edition 20160921
Microsoft 20160921
eScan 20160922
NANO-Antivirus 20160922
nProtect 20160922
Panda 20160921
Qihoo-360 20160922
Rising 20160922
Sophos 20160922
SUPERAntiSpyware 20160922
Symantec 20160922
Tencent 20160922
TheHacker 20160922
TrendMicro 20160922
TrendMicro-HouseCall 20160922
VBA32 20160921
VIPRE 20160922
ViRobot 20160922
Yandex 20160921
Zillya 20160921
Zoner 20160922
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright

Product Browser Cleaner
File version
Description Browser Cleaner Setup
Comments This installation was built with Inno Setup.
Packers identified
F-PROT INNO
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 1992-06-19 22:22:17
Entry Point 0x00009C40
Number of sections 8
PE sections
Overlays
MD5 00646f2ea3af6451a035b5a63c38fa79
File type data
Offset 54272
Size 866915
Entropy 8.00
PE imports
LookupPrivilegeValueA
RegCloseKey
OpenProcessToken
RegQueryValueExA
AdjustTokenPrivileges
RegOpenKeyExA
InitCommonControls
GetSystemTime
GetLastError
GetEnvironmentVariableA
GetStdHandle
EnterCriticalSection
GetUserDefaultLangID
GetSystemInfo
GetFileAttributesA
GetExitCodeProcess
ExitProcess
CreateDirectoryA
VirtualProtect
GetVersionExA
RemoveDirectoryA
RtlUnwind
LoadLibraryA
DeleteCriticalSection
GetCurrentProcess
SizeofResource
GetLocaleInfoA
LocalAlloc
LockResource
IsDBCSLeadByte
DeleteFileA
GetWindowsDirectoryA
GetSystemDefaultLCID
SetErrorMode
MultiByteToWideChar
GetCommandLineA
GetProcAddress
FormatMessageA
SetFilePointer
RaiseException
WideCharToMultiByte
GetModuleHandleA
ReadFile
InterlockedExchange
WriteFile
CloseHandle
GetACP
GetFullPathNameA
LocalFree
CreateProcessA
GetModuleFileNameA
InitializeCriticalSection
LoadResource
VirtualQuery
VirtualFree
TlsGetValue
Sleep
GetFileType
SetEndOfFile
TlsSetValue
CreateFileA
FindResourceA
VirtualAlloc
GetFileSize
SetLastError
LeaveCriticalSection
SysStringLen
SysAllocStringLen
VariantCopyInd
VariantClear
VariantChangeTypeEx
CharPrevA
CreateWindowExA
LoadStringA
DispatchMessageA
CallWindowProcA
MessageBoxA
PeekMessageA
SetWindowLongA
MsgWaitForMultipleObjects
TranslateMessage
ExitWindowsEx
DestroyWindow
Number of PE resources by type
RT_STRING 6
RT_ICON 4
RT_MANIFEST 1
RT_RCDATA 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 7
DUTCH 4
ENGLISH US 3
PE resources
ExifTool file metadata
UninitializedDataSize
0

Comments
This installation was built with Inno Setup.

LinkerVersion
2.25

ImageVersion
6.0

FileSubtype
0

FileVersionNumber
0.0.0.0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
17920

EntryPoint
0x9c40

MIMEType
application/octet-stream

TimeStamp
1992:06:19 23:22:17+01:00

FileType
Win32 EXE

PEType
PE32

SubsystemVersion
4.0

ProductVersion
1.2

FileDescription
Browser Cleaner Setup

OSVersion
1.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
http://tcpmonitor.altervista.org

CodeSize
37888

ProductName
Browser Cleaner

ProductVersionNumber
0.0.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 8d09fb15c9e288fe207d993ed1279405
SHA1 1f201f1407cb1d19a824f89ba33af713919e9044
SHA256 0f65f8bfb2c41fd88263a85c6e3583e4b71e54df13334a21c6e1c97eab25e51d
ssdeep
24576:5naiYlOq9IjIBIbOrkxdTcxVijtQk9mkS3rJQBtUkBgJ:5abqIBIbOAbTr92inXBgJ

authentihash ccde96e543c505d73315f95f91e2277709444b1f055d225c5ff715ce8db8e2f5
imphash 884310b1928934402ea6fec1dbd3cf5e
Dosya boyutu 899.6 KB ( 921187 bytes )
Dosya türü Win32 EXE
Magic lafzı
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Inno Setup installer (77.7%)
Win32 Executable Delphi generic (10.0%)
Win32 Dynamic Link Library (generic) (4.6%)
Win32 Executable (generic) (3.1%)
Win16/32 Executable Delphi generic (1.4%)
Tags
peexe software-collection overlay

VirusTotal metadata
First submission 2011-04-28 11:14:38 UTC ( 5 yıl, 11 ay önce)
Last submission 2016-09-22 06:01:52 UTC ( 6 ay önce)
Dosya isimleri Browser_Cleaner1.2.exe
7ba6d05823473ef36c9b0f697deec8511b9531f070504b2d907fb7940504936b546e412fd5ab1b90335f985351a949054e260c99217430251ffd4c018bb0ab72
file
browser-cleaner-1-2-en-win-458.exe
file-3013743_exe
8d09fb15c9e288fe207d993ed1279405.1f201f1407cb1d19a824f89ba33af713919e9044
browser-cleaner-1-2-en-win.exe
14A6205A63FA98DF0E810E495314E400CE8728EE.exe
file
file-2213906_exe
Browser_Cleaner1.2.exe
0F65F8BFB2C41FD88263A85C6E3583E4B71E54DF13334A21C6E1C97EAB25E51D
Browser_Cleaner1.2.exe
27773b5e-8cc1-4e74-9475-d7693ac2c270
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
Yorum yok.. Henüz hiçbir VirusTotal Topluluğu üyesi bu öğeye yorum yapmadı.Bunu yapan ilk sen ol!

Yorum ekleyin...

?
Yorumu gönder.

Üye girişi yapmadınız..Sadece kayıtlı kullanıcılar yorum yapabilir.Sesinizi duyurmak için giriş yapın.

Oy yok.. Bu öğeyi daha önce hiç kimse oylamadı.Bunu yapan ilk sen ol!