× Çerezler devre dışı bırakılmış! Bu sitenin düzgün bir şekilde çalışabilmesi için çerezlerin açık olması gerekir.
SHA256: f266579aa0c30b17487a5d0185ca5294bcb46cfac78bea3faf7e32d519805ae5
Dosya adı: TEncoder(4.0.0.4272)setup_32bit.exe
Tespit edilme orani 1 / 57
Analiz tarihi: 2015-05-20 14:04:20 UTC ( 3 ay, 2 hafta önce)
Antivirus Sonuç Güncelle
ESET-NOD32 Win32/Somoto.Q potentially unwanted 20150520
ALYac 20150520
AVG 20150520
AVware 20150520
Ad-Aware 20150520
AegisLab 20150520
Agnitum 20150519
AhnLab-V3 20150520
Alibaba 20150520
Antiy-AVL 20150520
Avast 20150520
Avira 20150520
Baidu-International 20150520
BitDefender 20150520
Bkav 20150520
ByteHero 20150520
CAT-QuickHeal 20150520
CMC 20150520
ClamAV 20150520
Comodo 20150520
Cyren 20150520
DrWeb 20150520
Emsisoft 20150520
F-Prot 20150520
F-Secure 20150520
Fortinet 20150520
GData 20150520
Ikarus 20150520
Jiangmin 20150519
K7AntiVirus 20150520
K7GW 20150520
Kaspersky 20150520
Kingsoft 20150520
Malwarebytes 20150520
McAfee 20150520
McAfee-GW-Edition 20150520
MicroWorld-eScan 20150520
Microsoft 20150520
NANO-Antivirus 20150520
Norman 20150525
Panda 20150520
Qihoo-360 20150520
Rising 20150520
SUPERAntiSpyware 20150520
Sophos 20150520
Symantec 20150520
Tencent 20150520
TheHacker 20150519
TotalDefense 20150520
TrendMicro 20150520
TrendMicro-HouseCall 20150520
VBA32 20150520
VIPRE 20150520
ViRobot 20150520
Zillya 20150520
Zoner 20150520
nProtect 20150520
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright

Publisher ozok
Product TEncoder Video Converter
File version
Description TEncoder Video Converter Setup
Comments This installation was built with Inno Setup.
Packers identified
F-PROT INNO, appended
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2013-10-13 08:19:32
Link date 9:19 AM 10/13/2013
Entry Point 0x000113BC
Number of sections 8
PE sections
Overlays
MD5 6e8b38ab27f1f6f4308ac4dab1380f17
File type data
Offset 119296
Size 32067621
Entropy 8.00
PE imports
RegCloseKey
OpenProcessToken
RegOpenKeyExW
AdjustTokenPrivileges
LookupPrivilegeValueW
RegQueryValueExW
InitCommonControls
GetLastError
GetStdHandle
GetUserDefaultLangID
GetSystemInfo
GetModuleFileNameW
WaitForSingleObject
GetVersionExW
FreeLibrary
QueryPerformanceCounter
GetTickCount
GetThreadLocale
VirtualProtect
GetFileAttributesW
RtlUnwind
lstrlenW
GetExitCodeProcess
CreateProcessW
GetStartupInfoA
SizeofResource
GetWindowsDirectoryW
LocalAlloc
LockResource
GetDiskFreeSpaceW
GetCommandLineW
SetErrorMode
UnhandledExceptionFilter
LoadLibraryExW
MultiByteToWideChar
EnumCalendarInfoW
GetCPInfo
DeleteFileW
GetProcAddress
InterlockedCompareExchange
GetLocaleInfoW
lstrcpynW
RaiseException
WideCharToMultiByte
RemoveDirectoryW
SetFilePointer
GetFullPathNameW
ReadFile
GetEnvironmentVariableW
InterlockedExchange
CreateDirectoryW
WriteFile
GetCurrentProcess
CloseHandle
FindFirstFileW
GetACP
GetModuleHandleW
SignalObjectAndWait
SetEvent
FormatMessageW
LoadLibraryW
CreateEventW
GetVersion
LoadResource
FindResourceW
CreateFileW
VirtualQuery
VirtualFree
FindClose
TlsGetValue
Sleep
SetEndOfFile
TlsSetValue
ExitProcess
GetCurrentThreadId
VirtualAlloc
GetFileSize
SetLastError
ResetEvent
SysReAllocStringLen
SysFreeString
SysAllocStringLen
GetSystemMetrics
SetWindowLongW
MessageBoxW
PeekMessageW
LoadStringW
MessageBoxA
CreateWindowExW
MsgWaitForMultipleObjects
TranslateMessage
CharUpperBuffW
CallWindowProcW
CharNextW
GetKeyboardType
ExitWindowsEx
DispatchMessageW
DestroyWindow
Number of PE resources by type
RT_STRING 6
RT_ICON 4
RT_RCDATA 4
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 9
ENGLISH US 4
DUTCH 4
ExifTool file metadata
UninitializedDataSize
0

Comments
This installation was built with Inno Setup.

LinkerVersion
2.25

ImageVersion
6.0

FileSubtype
0

FileVersionNumber
0.0.0.0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
53248

EntryPoint
0x113bc

MIMEType
application/octet-stream

TimeStamp
2013:10:13 09:19:32+01:00

FileType
Win32 EXE

PEType
PE32

SubsystemVersion
5.0

ProductVersion
4.0.0

FileDescription
TEncoder Video Converter Setup

OSVersion
5.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
ozok

CodeSize
65024

ProductName
TEncoder Video Converter

ProductVersionNumber
0.0.0.0

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 f38a0fb2eef4dba14194e2e2b6b3d8cb
SHA1 300e8e5b0c1a4a597ec2ce289389cd6250c42eb0
SHA256 f266579aa0c30b17487a5d0185ca5294bcb46cfac78bea3faf7e32d519805ae5
ssdeep
393216:tQhMCKtD0XfCuq1JHOd1ty5vwYMlP+ypS4iblOwMf+88Ax0Oi6ESlkSA6Er+aHD0:tZNtD6MuXty5vw9pcpONaaA2SIF4Y

authentihash 41731c0a340efaf603395a0b7b3515094e1147ed5c73bc478e78a300aa8f880d
imphash 48aa5c8931746a9655524f67b25a47ef
Dosya boyutu 30.7 MB ( 32186917 bytes )
Dosya türü Win32 EXE
Magic lafzı
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID InstallShield setup (57.8%)
Win32 Executable Delphi generic (19.0%)
Win32 Dynamic Link Library (generic) (8.8%)
Win32 Executable (generic) (6.0%)
Win16/32 Executable Delphi generic (2.7%)
Tags
peexe overlay

VirusTotal metadata
First submission 2014-06-03 17:35:39 UTC ( 1 yıl, 3 ay önce)
Last submission 2014-06-28 06:14:04 UTC ( 1 yıl, 2 ay önce)
Dosya isimleri TEncoder(4.0.0.4272)setup_32bit.exe
TEncoder%284.0.0.4272%29setup_32bit.exe
TEncodersetup_32Bit.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
Yorum yok.. Henüz hiçbir VirusTotal Topluluğu üyesi bu öğeye yorum yapmadı.Bunu yapan ilk sen ol!

Yorum ekleyin...

?
Yorumu gönder.

Üye girişi yapmadınız..Sadece kayıtlı kullanıcılar yorum yapabilir.Sesinizi duyurmak için giriş yapın.

Oy yok.. Bu öğeyi daha önce hiç kimse oylamadı.Bunu yapan ilk sen ol!