× Çerezler devre dışı bırakılmış! Bu sitenin düzgün bir şekilde çalışabilmesi için çerezlerin açık olması gerekir.
SHA256: dfd5560c23fba0d758a3aef85e15dc12c56902e9efc74be1ce9c92f0adf9c72b
Dosya adı: okey.exe
Tespit edilme orani 0 / 55
Analiz tarihi: 2017-02-08 13:13:29 UTC ( 1 yıl, 11 ay önce) En sonuncusunu görüntüle
Antivirus Sonuç Güncelle
Ad-Aware 20170208
AegisLab 20170208
AhnLab-V3 20170208
Alibaba 20170122
ALYac 20170208
Antiy-AVL 20170208
Arcabit 20170208
Avast 20170208
AVG 20170208
Avira (no cloud) 20170208
AVware 20170208
Baidu 20170208
BitDefender 20170208
Bkav 20170208
CAT-QuickHeal 20170208
ClamAV 20170208
CMC 20170208
Comodo 20170208
CrowdStrike Falcon (ML) 20170130
Cyren 20170208
DrWeb 20170208
Emsisoft 20170208
ESET-NOD32 20170208
F-Prot 20170208
F-Secure 20170208
Fortinet 20170208
GData 20170208
Ikarus 20170208
Sophos ML 20170203
Jiangmin 20170208
K7AntiVirus 20170208
K7GW 20170208
Kaspersky 20170208
Kingsoft 20170208
Malwarebytes 20170208
McAfee 20170208
McAfee-GW-Edition 20170208
Microsoft 20170208
eScan 20170208
NANO-Antivirus 20170208
nProtect 20170208
Panda 20170207
Qihoo-360 20170208
Rising 20170208
Sophos AV 20170207
SUPERAntiSpyware 20170208
Symantec 20170207
Tencent 20170208
TheHacker 20170205
TrendMicro 20170208
Trustlook 20170208
VBA32 20170208
VIPRE 20170208
ViRobot 20170208
WhiteArmor 20170202
Yandex 20170208
Zillya 20170207
Zoner 20170208
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
File version
Description Okey+ Setup
Comments This installation was built with Inno Setup: http://www.innosetup.com
Packers identified
F-PROT INNO, appended, ASProtect, Aspack, Unicode
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 1992-06-19 22:22:17
Entry Point 0x000094E4
Number of sections 8
PE sections
Overlays
MD5 8a04fc5ce1c233ed2b3c1fcb72c56467
File type data
Offset 51712
Size 848682
Entropy 8.00
PE imports
LookupPrivilegeValueA
RegCloseKey
OpenProcessToken
RegQueryValueExA
AdjustTokenPrivileges
RegOpenKeyExA
InitCommonControls
GetSystemTime
GetLastError
GetEnvironmentVariableA
GetStdHandle
EnterCriticalSection
GetUserDefaultLangID
GetSystemInfo
GetFileAttributesA
GetExitCodeProcess
ExitProcess
VirtualProtect
GetVersionExA
RemoveDirectoryA
RtlUnwind
IsDBCSLeadByte
DeleteCriticalSection
GetCurrentProcess
GetLocaleInfoA
LocalAlloc
CreateDirectoryA
DeleteFileA
GetWindowsDirectoryA
GetSystemDefaultLCID
MultiByteToWideChar
GetCommandLineA
GetProcAddress
FormatMessageA
SetFilePointer
RaiseException
WideCharToMultiByte
GetModuleHandleA
ReadFile
InterlockedExchange
WriteFile
CloseHandle
GetFullPathNameA
LocalFree
CreateProcessA
GetModuleFileNameA
InitializeCriticalSection
VirtualQuery
VirtualFree
TlsGetValue
Sleep
GetFileType
SetEndOfFile
TlsSetValue
CreateFileA
VirtualAlloc
GetFileSize
SetLastError
LeaveCriticalSection
SysStringLen
SysAllocStringLen
VariantCopyInd
VariantClear
VariantChangeTypeEx
CharPrevA
CreateWindowExA
LoadStringA
DispatchMessageA
CallWindowProcA
MessageBoxA
PeekMessageA
SetWindowLongA
MsgWaitForMultipleObjects
TranslateMessage
ExitWindowsEx
DestroyWindow
Number of PE resources by type
RT_STRING 6
RT_ICON 4
RT_VERSION 1
RT_GROUP_ICON 1
RT_MANIFEST 1
Number of PE resources by language
NEUTRAL 6
DUTCH 4
ENGLISH US 3
PE resources
ExifTool file metadata
SubsystemVersion
4.0

Comments
This installation was built with Inno Setup: http://www.innosetup.com

LinkerVersion
2.25

ImageVersion
0.0

FileVersionNumber
0.0.0.0

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Windows, Latin1

InitializedDataSize
16896

EntryPoint
0x94e4

MIMEType
application/octet-stream

TimeStamp
1992:06:19 23:22:17+01:00

FileType
Win32 EXE

PEType
PE32

FileDescription
Okey+ Setup

OSVersion
1.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
B cek Yaz l m

CodeSize
36352

FileSubtype
0

ProductVersionNumber
0.0.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

Execution parents
PE resource-wise parents
Compressed bundles
File identification
MD5 1d2763a6e63dc57a527190b5474b1b90
SHA1 d07eb330eb5f65b7802990c566686336d0be2f9b
SHA256 dfd5560c23fba0d758a3aef85e15dc12c56902e9efc74be1ce9c92f0adf9c72b
ssdeep
24576:biniFmUhBHWkYp4LwzK+jtb0IzgEp86ECJn20p:dFDRWpzK+jtt9pRA0p

authentihash 95ea5fe3d9f79d87ed41286dc7e509574152f3f9fd84a15a2007e8330d68b1ae
imphash da86ff6d22d7419ae7f10724a403dffd
Dosya boyutu 879.3 KB ( 900394 bytes )
Dosya türü Win32 EXE
Magic lafzı
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Inno Setup installer (82.8%)
Win32 Executable Delphi generic (10.7%)
Win32 Executable (generic) (3.4%)
Generic Win/DOS Executable (1.5%)
DOS Executable Generic (1.5%)
Tags
peexe asprotect aspack overlay

VirusTotal metadata
First submission 2009-02-22 16:47:11 UTC ( 9 yıl, 11 ay önce)
Last submission 2018-06-26 19:53:42 UTC ( 6 ay, 3 hafta önce)
Dosya isimleri okey.exe
Okey+v2.1-Kur.exe
okey.exe
smona_dfd5560c23fba0d758a3aef85e15dc12c56902e9efc74be1ce9c92f0adf9c72b.bin
Okey v2.1-Kur.exe
file-3064290_exe
Okey__v2.1.exe
vt-upload-2DQbg
indir.com-okey.exe
Okey+v2.1-Kur(indirgen.com).exe
12373-Okey v2.1-Kur.exe
Okeyv2.1-.exe
1128-Okeyv2.1-Kur.exe
Okeyv2-1-indir-org.exe
Okey v2.1-Kur(indirgen.com).exe
Okey_v2.1-Kur_indirgen.com_.exe
2049-Okey+v2.1-Kur.exe
8B98308C2A5FA3EEBD260DD7B0A0B3002F4BC713.exe
Okeyv2.1-Kur.exe
dfd5560c23fba0d758a3aef85e15dc12c56902e9efc74be1ce9c92f0adf9c72b
file-22422_exe
Okey%2Bv2.1-Kur.exe
OYUN1.exe
Okey.exe
smona132334223645249230772
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
Yorum yok.. Henüz hiçbir VirusTotal Topluluğu üyesi bu öğeye yorum yapmadı.Bunu yapan ilk sen ol!

Yorum ekleyin...

?
Yorumu gönder.

Üye girişi yapmadınız..Sadece kayıtlı kullanıcılar yorum yapabilir.Sesinizi duyurmak için giriş yapın.

Oy yok.. Bu öğeyi daha önce hiç kimse oylamadı.Bunu yapan ilk sen ol!