× Çerezler devre dışı bırakılmış! Bu sitenin düzgün bir şekilde çalışabilmesi için çerezlerin açık olması gerekir.
SHA256: f6dcae1d350299c96c5690d43c3e1eb70112fd72cf31569a8282538da0bd704f
Dosya adı: BitTorrent-Sync.exe
Tespit edilme orani 0 / 61
Analiz tarihi: 2017-06-07 08:51:02 UTC ( 1 yıl, 9 ay önce) En sonuncusunu görüntüle
Antivirus Sonuç Güncelle
Ad-Aware 20170607
AegisLab 20170607
AhnLab-V3 20170606
Alibaba 20170607
ALYac 20170607
Antiy-AVL 20170607
Arcabit 20170607
Avast 20170607
AVG 20170606
Avira (no cloud) 20170607
AVware 20170607
Baidu 20170601
BitDefender 20170607
Bkav 20170607
CAT-QuickHeal 20170607
ClamAV 20170607
CMC 20170606
Comodo 20170607
CrowdStrike Falcon (ML) 20170420
Cyren 20170607
DrWeb 20170607
Emsisoft 20170607
Endgame 20170515
ESET-NOD32 20170607
F-Prot 20170607
F-Secure 20170607
Fortinet 20170607
GData 20170607
Ikarus 20170607
Sophos ML 20170607
Jiangmin 20170607
K7AntiVirus 20170607
K7GW 20170607
Kaspersky 20170607
Kingsoft 20170607
Malwarebytes 20170607
McAfee 20170607
McAfee-GW-Edition 20170606
Microsoft 20170607
eScan 20170607
NANO-Antivirus 20170607
nProtect 20170607
Palo Alto Networks (Known Signatures) 20170607
Panda 20170606
Qihoo-360 20170607
Rising 20170604
SentinelOne (Static ML) 20170516
Sophos AV 20170607
SUPERAntiSpyware 20170607
Symantec 20170607
Symantec Mobile Insight 20170606
Tencent 20170607
TheHacker 20170605
TrendMicro 20170607
TrendMicro-HouseCall 20170607
Trustlook 20170607
VBA32 20170606
VIPRE 20170607
ViRobot 20170607
Webroot 20170607
WhiteArmor 20170601
Yandex 20170606
Zillya 20170606
ZoneAlarm by Check Point 20170607
Zoner 20170607
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
Authenticode signature block and FileVersionInfo properties
Copyright
Copyright (C) 2016 BitTorrent, Inc. All Rights Reserved.

Product BitTorrent Sync
Original name BTSync.exe
Internal name BTSync.exe
File version 2.3.8.560
Description BitTorrent Sync
Signature verification Signed file, verified signature
Signing date 2:12 PM 6/20/2016
Signers
[+] Resilio, Inc
Status This certificate or one of the certificates in the certificate chain is not time valid.
Issuer DigiCert SHA2 Assured ID Code Signing CA
Valid from 12:00 AM 04/29/2016
Valid to 12:00 PM 05/03/2018
Valid usage Code Signing
Algorithm sha256RSA
Thumbprint 1528B22EFE5C0C3C75350A955FC020236C8EAB7A
Serial number 02 AD 00 A6 C9 D1 5B 1F F1 79 5C E7 61 50 8F 35
[+] DigiCert SHA2 Assured ID Code Signing CA
Status Valid
Issuer DigiCert Assured ID Root CA
Valid from 12:00 PM 10/22/2013
Valid to 12:00 PM 10/22/2028
Valid usage Code Signing
Algorithm sha256RSA
Thumbprint 92C1588E85AF2201CE7915E8538B492F605B80C6
Serial number 04 09 18 1B 5F D5 BB 66 75 53 43 B5 6F 95 50 08
[+] DigiCert
Status Valid
Issuer DigiCert Assured ID Root CA
Valid from 12:00 AM 11/10/2006
Valid to 12:00 AM 11/10/2031
Valid usage Server Auth, Client Auth, Email Protection, Code Signing, Timestamp Signing
Algorithm sha1RSA
Thumbprint 0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43
Serial number 0C E7 E0 E5 17 D8 46 FE 8F E5 60 FC 1B F0 30 39
Counter signers
[+] Symantec Time Stamping Services Signer - G4
Status Valid
Issuer Symantec Time Stamping Services CA - G2
Valid from 12:00 AM 10/18/2012
Valid to 11:59 PM 12/29/2020
Valid usage Timestamp Signing
Algorithm sha1RSA
Thumbrint 65439929B67973EB192D6FF243E6767ADF0834E4
Serial number 0E CF F4 38 C8 FE BF 35 6E 04 D8 6A 98 1B 1A 50
[+] Symantec Time Stamping Services CA - G2
Status Valid
Issuer Thawte Timestamping CA
Valid from 12:00 AM 12/21/2012
Valid to 11:59 PM 12/30/2020
Valid usage Timestamp Signing
Algorithm sha1RSA
Thumbrint 6C07453FFDDA08B83707C09B82FB3D15F35336B1
Serial number 7E 93 EB FB 7C C6 4E 59 EA 4B 9A 77 D4 06 FC 3B
[+] Thawte Timestamping CA
Status Valid
Issuer Thawte Timestamping CA
Valid from 12:00 AM 01/01/1997
Valid to 11:59 PM 12/31/2020
Valid usage Timestamp Signing
Algorithm md5RSA
Thumbrint BE36A4562FB2EE05DBB3D32323ADF445084ED656
Serial number 00
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-06-20 13:12:23
Entry Point 0x001EA619
Number of sections 5
PE sections
Overlays
MD5 511fc18315c6ccca2145428f1df52e86
File type data
Offset 8950784
Size 6144
Entropy 7.34
PE imports
CryptDestroyKey
RegCreateKeyExW
RegCloseKey
LookupAccountSidW
ConvertSidToStringSidW
AccessCheck
OpenServiceW
ControlService
CryptEncrypt
RegDeleteKeyW
DeleteService
GetSecurityInfo
RegQueryValueExW
CryptImportKey
LsaOpenPolicy
CryptCreateHash
CloseServiceHandle
ChangeServiceConfig2W
ConvertStringSidToSidW
LsaClose
QueryServiceStatus
GetUserNameW
RegOpenKeyExW
LookupAccountNameW
MapGenericMask
CryptGenKey
RegQueryInfoKeyW
CreateServiceW
CryptReleaseContext
SetServiceStatus
ImpersonateSelf
CryptGenRandom
LsaAddAccountRights
GetFileSecurityW
CryptAcquireContextW
CryptDecrypt
SetSecurityInfo
CryptDestroyHash
LogonUserW
CryptHashData
OpenThreadToken
RegDeleteValueW
RevertToSelf
StartServiceW
RegSetValueExW
CryptSetKeyParam
FreeSid
CryptGetHashParam
OpenSCManagerW
CryptExportKey
AllocateAndInitializeSid
RegisterServiceCtrlHandlerExW
StartServiceCtrlDispatcherW
RegQueryValueW
ImageList_GetImageCount
ImageList_Duplicate
ImageList_GetIconSize
ImageList_Destroy
ImageList_AddMasked
ImageList_Replace
ImageList_SetImageCount
Ord(345)
ImageList_DrawEx
ImageList_Create
Ord(17)
ImageList_GetIcon
GetSaveFileNameW
CommDlgExtendedError
GetOpenFileNameW
CertEnumCertificatesInStore
PFXIsPFXBlob
CertStrToNameW
CertFreeCertificateContext
CertCreateSelfSignCertificate
CertCloseStore
CertDeleteCertificateFromStore
CertDuplicateCertificateContext
CertAddCertificateContextToStore
CertVerifyCertificateChainPolicy
CertSetCertificateContextProperty
PFXImportCertStore
CryptEncodeObjectEx
CryptSignAndEncodeCertificate
CryptImportPublicKeyInfo
CertGetCertificateChain
CertGetIntendedKeyUsage
CertOpenStore
CertAddEncodedCertificateToStore
CertCompareCertificate
CryptDecodeObjectEx
CryptEncodeObject
CertCreateCertificateContext
CertFreeCertificateChain
CertGetNameStringW
PFXExportCertStoreEx
CryptHashCertificate
Polygon
TextOutW
CreateFontIndirectW
PatBlt
OffsetRgn
CreatePen
CreateFontIndirectA
GetTextMetricsA
CombineRgn
GetPixel
GetDeviceCaps
ExcludeClipRect
LineTo
DeleteDC
SetBkMode
RectInRegion
SetPixel
CreateSolidBrush
GetObjectW
BitBlt
CreateDIBSection
SetTextColor
CreatePatternBrush
GetObjectA
GetCurrentObject
CreateFontA
ExtTextOutW
CreateBitmap
MoveToEx
GetStockObject
GetDIBits
SelectClipRgn
CreateCompatibleDC
StretchBlt
CreateRectRgn
SelectObject
GetTextExtentPoint32A
Pie
Ellipse
SetWindowOrgEx
Polyline
SetBkColor
DeleteObject
CreateCompatibleBitmap
GetAdaptersAddresses
GetAdaptersInfo
GetIpAddrTable
NotifyAddrChange
GetVolumePathNameW
GetStdHandle
GetDriveTypeW
ReleaseMutex
FileTimeToSystemTime
GetOverlappedResult
WaitForSingleObject
LockResource
HeapDestroy
EncodePointer
ReplaceFileW
CreateTimerQueue
GetFileAttributesW
GetLocalTime
CreatePipe
GetCurrentProcess
MoveFileW
GetConsoleMode
LocalAlloc
EnumSystemLocalesW
SetFilePointer
IsValidCodePage
ExitProcess
SetErrorMode
GetFileInformationByHandle
InitializeSListHead
GetThreadContext
GetLocaleInfoW
SetStdHandle
GetFileTime
GetTempPathA
WideCharToMultiByte
GetFileAttributesA
InterlockedPopEntrySList
GetDiskFreeSpaceW
GetTempPathW
GetSystemTimeAsFileTime
SetThreadAffinityMask
GetThreadTimes
HeapReAlloc
GetStringTypeW
QueryDepthSList
GetThreadPriority
GetFullPathNameA
SetEvent
LocalFree
FormatMessageW
ResumeThread
FreeLibraryAndExitThread
GetTimeZoneInformation
OutputDebugStringW
GetLogicalDriveStringsW
FindClose
TlsGetValue
FormatMessageA
GetFullPathNameW
SignalObjectAndWait
OutputDebugStringA
GetEnvironmentVariableW
SetLastError
PeekNamedPipe
DeviceIoControl
InitializeCriticalSection
CopyFileW
WriteProcessMemory
ReadFile
LoadResource
GetModuleFileNameW
TryEnterCriticalSection
IsDebuggerPresent
HeapAlloc
FlushFileBuffers
GetModuleFileNameA
FlushViewOfFile
LoadLibraryA
RaiseException
HeapSetInformation
GetVolumeInformationA
GlobalAddAtomW
SetThreadPriority
GetUserDefaultLCID
UnhandledExceptionFilter
LoadLibraryExW
MultiByteToWideChar
VerifyVersionInfoW
SetFilePointerEx
DeleteTimerQueueTimer
FindNextChangeNotification
CreateMutexA
RegisterWaitForSingleObject
SetFileAttributesW
LockFileEx
CreateThread
SetEnvironmentVariableW
MoveFileExW
InterlockedFlushSList
DeleteCriticalSection
SetUnhandledExceptionFilter
CreateMutexW
MulDiv
IsProcessorFeaturePresent
GetDateFormatA
GetSystemDirectoryA
DecodePointer
SetEnvironmentVariableA
TerminateProcess
FindCloseChangeNotification
CreateSemaphoreW
GetModuleHandleExW
GlobalAlloc
GetDiskFreeSpaceExW
SetEndOfFile
GetVersion
GetProcAddress
WriteConsoleW
GetVolumeNameForVolumeMountPointW
AreFileApisANSI
InitializeCriticalSectionAndSpinCount
HeapFree
EnterCriticalSection
GetSystemTime
LoadLibraryW
GetVersionExW
GetExitCodeProcess
QueryPerformanceCounter
GetTickCount
IsBadWritePtr
TlsAlloc
VirtualProtect
GetVersionExA
InitializeCriticalSectionEx
RtlUnwind
ExitThread
FreeLibrary
UnlockFile
GetWindowsDirectoryW
ChangeTimerQueueTimer
GetFileSize
OpenProcess
DeleteFileA
GetDateFormatW
CreateTimerQueueTimer
GetStartupInfoW
CreateDirectoryW
DeleteFileW
GlobalLock
SetFileInformationByHandle
GetProcessHeap
GetTempFileNameW
GetComputerNameW
GetTimeFormatW
WriteFile
RemoveDirectoryW
FreeEnvironmentStringsW
FindNextFileW
GetDiskFreeSpaceA
HeapValidate
GetTimeFormatA
FreeConsole
CreateFileMappingA
FindFirstFileW
IsValidLocale
DuplicateHandle
WaitForMultipleObjects
CreateFileMappingW
GetLogicalProcessorInformation
ReadConsoleW
SuspendThread
GetProcessAffinityMask
CreateEventW
ReadDirectoryChangesW
CreateFileW
HeapWalk
CreateEventA
GetFileType
TlsSetValue
CreateFileA
GetCurrentThreadId
LeaveCriticalSection
GetNativeSystemInfo
GetLastError
AttachConsole
InterlockedPushEntrySList
SystemTimeToFileTime
LCMapStringW
GetShortPathNameW
HeapCreate
GetSystemInfo
GlobalFree
GetConsoleCP
UnregisterWaitEx
CompareStringW
GetProcessTimes
GetVolumeInformationW
GetEnvironmentStringsW
GlobalUnlock
LockFile
WinExec
FindFirstChangeNotificationW
CreateProcessW
HeapCompact
WaitForSingleObjectEx
FileTimeToLocalFileTime
SizeofResource
GetCurrentDirectoryW
GetCurrentProcessId
GetFinalPathNameByHandleW
SetFileTime
GetCommandLineW
GetCPInfo
HeapSize
GetCommandLineA
VerSetConditionMask
GetCurrentThread
OpenMutexA
lstrcpynW
QueryPerformanceFrequency
ReleaseSemaphore
MapViewOfFile
TlsFree
GetModuleHandleA
SetSystemPowerState
CloseHandle
OpenMutexW
UnlockFileEx
GetACP
GetModuleHandleW
FreeResource
SwitchToThread
GetFileAttributesExW
GetLongPathNameW
GetNumaHighestNodeNumber
UnregisterWait
UnmapViewOfFile
FindResourceW
VirtualQuery
VirtualFree
Sleep
IsBadReadPtr
FindResourceA
VirtualAlloc
GetOEMCP
ResetEvent
SysFreeString
VariantClear
VariantInit
SysAllocString
SHBindToParent
SHGetDataFromIDListW
DragQueryFileW
SHBrowseForFolderW
Ord(155)
Ord(190)
SHGetKnownFolderPath
ShellExecuteW
SHGetPathFromIDListW
SHGetFolderPathW
SHChangeNotify
SHOpenFolderAndSelectItems
SHFileOperationW
ShellExecuteExW
SHAppBarMessage
SHGetFileInfoW
SHParseDisplayName
Shell_NotifyIconW
SHGetSpecialFolderPathW
SHGetMalloc
ShellExecuteA
PathIsUNCW
PathFileExistsW
PathIsDirectoryEmptyW
GetUserNameExW
CompleteAuthToken
InitializeSecurityContextW
AcceptSecurityContext
DeleteSecurityContext
QueryContextAttributesW
ApplyControlToken
AcquireCredentialsHandleW
FreeContextBuffer
DecryptMessage
EncryptMessage
FreeCredentialsHandle
MapWindowPoints
GetMessagePos
UnregisterHotKey
LoadBitmapW
DestroyMenu
PostQuitMessage
GetForegroundWindow
LoadBitmapA
SetWindowPos
ScreenToClient
SetMenuItemInfoA
WindowFromPoint
GetMessageTime
GetMenuItemID
GetAsyncKeyState
DrawTextA
GetDlgCtrlID
SendMessageW
GetClientRect
DrawTextW
GetScrollPos
CallNextHookEx
LoadImageW
GetActiveWindow
RegisterHotKey
GetWindowTextW
PostThreadMessageW
LoadImageA
GetWindowTextLengthW
MsgWaitForMultipleObjects
ScrollWindow
GetKeyState
DestroyWindow
DrawEdge
GetParent
UpdateWindow
SetPropA
AttachThreadInput
GetPropW
EqualRect
EnumWindows
CheckRadioButton
GetMessageW
ShowWindow
SetMenuInfo
DrawFrameControl
SetPropW
PeekMessageW
EnableWindow
GetSystemMenu
TranslateMessage
IsWindowEnabled
GetWindow
GetIconInfo
EndDialog
SetClipboardData
FlashWindowEx
GetWindowPlacement
LoadStringW
DrawMenuBar
IsIconic
CreateMenu
FillRect
CopyRect
DeferWindowPos
CreateWindowExW
GetWindowLongW
PtInRect
SetFocus
RegisterWindowMessageW
MapVirtualKeyA
EmptyClipboard
BeginPaint
OffsetRect
DefWindowProcW
ReleaseCapture
keybd_event
KillTimer
RegisterWindowMessageA
GetSystemMetrics
SetWindowLongW
GetWindowRect
InflateRect
SetCapture
DrawIcon
EnumChildWindows
SendDlgItemMessageW
PostMessageW
InvalidateRect
CheckDlgButton
CreatePopupMenu
DrawIconEx
SetWindowTextW
SetTimer
GetDlgItem
RemovePropW
CreateIconIndirect
ClientToScreen
LoadCursorA
LoadIconA
TrackPopupMenu
DialogBoxIndirectParamW
GetMenuItemCount
IsDlgButtonChecked
ShutdownBlockReasonDestroy
GetDesktopWindow
SetWindowsHookExW
LoadIconW
GetDC
SwitchToThisWindow
SetForegroundWindow
ExitWindowsEx
OpenClipboard
GetCursorPos
EndPaint
CreateDialogIndirectParamW
ReleaseDC
IntersectRect
GetScrollInfo
FindWindowW
RemoveMenu
GetWindowThreadProcessId
GetSysColorBrush
BeginDeferWindowPos
MessageBoxW
GetMenu
RegisterClassExW
UnhookWindowsHookEx
MoveWindow
GetPropA
AppendMenuW
SendMessageTimeoutW
GetSysColor
SetDlgItemTextW
SetScrollInfo
GetMenuItemInfoA
EndDeferWindowPos
DestroyIcon
IsWindowVisible
ShutdownBlockReasonCreate
SystemParametersInfoW
DispatchMessageW
SetRect
GetKeyNameTextW
SendMessageTimeoutA
CallWindowProcW
GetClassNameW
GetClassNameA
GetFocus
CloseClipboard
SetMenu
htonl
WSARecvFrom
WSARecv
accept
ioctlsocket
WSAStartup
WSASend
getsockname
WSAAddressToStringA
htons
WSASetLastError
WSAGetLastError
gethostname
getsockopt
closesocket
WSACloseEvent
ntohl
inet_addr
WSAWaitForMultipleEvents
getservbyport
ntohs
select
gethostbyaddr
listen
connect
WSAStringToAddressA
inet_ntop
WSACleanup
gethostbyname
inet_ntoa
inet_pton
recv
WSAIoctl
setsockopt
WSASetEvent
socket
getpeername
bind
WSASendTo
recvfrom
WSAEnumNetworkEvents
WSAEventSelect
sendto
WSACreateEvent
getservbyname
CredUnPackAuthenticationBufferW
CredUIPromptForWindowsCredentialsW
GdiplusShutdown
GdipBitmapLockBits
GdipBitmapUnlockBits
GdiplusStartup
GdipCreateBitmapFromStreamICM
GdipDrawImageI
GdipCreateBitmapFromStream
GdipGetImagePixelFormat
NCryptVerifySignature
BCryptDestroyHash
BCryptOpenAlgorithmProvider
BCryptHashData
BCryptCreateHash
NCryptTranslateHandle
NCryptDeleteKey
NCryptOpenStorageProvider
BCryptGetProperty
NCryptFreeObject
BCryptFinishHash
NCryptSignHash
NCryptImportKey
BCryptCloseAlgorithmProvider
RtlInitUnicodeString
NtCreateFile
NtClose
CreateStreamOnHGlobal
OleUninitialize
OleCreate
OleInitialize
OleSetContainedObject
CoCreateInstance
StgCreateDocfile
CoTaskMemFree
Number of PE resources by type
RT_ICON 107
RT_GROUP_ICON 34
BIN 13
RT_DIALOG 11
RT_MANIFEST 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 167
PE resources
Debug information
ExifTool file metadata
SubsystemVersion
6.0

InitializedDataSize
6858240

ImageVersion
0.0

ProductName
BitTorrent Sync

FileVersionNumber
2.3.8.560

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x0000

ImageFileCharacteristics
Executable, 32-bit

CharacterSet
Windows, Latin1

LinkerVersion
12.0

FileTypeExtension
exe

OriginalFileName
BTSync.exe

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
2.3.8.560

TimeStamp
2016:06:20 14:12:23+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
BTSync.exe

ProductVersion
2.3.8.560

FileDescription
BitTorrent Sync

OSVersion
6.0

FileOS
Unknown (0)

LegalCopyright
Copyright (C) 2016 BitTorrent, Inc. All Rights Reserved.

MachineType
Intel 386 or later, and compatibles

CompanyName
BitTorrent, Inc.

CodeSize
2193920

FileSubtype
0

ProductVersionNumber
2.3.8.560

EntryPoint
0x1ea619

ObjectFileType
Unknown

Compressed bundles
File identification
MD5 0b2790f2d141885c714c4aadfe6cb444
SHA1 3f15a616ee3c6b86672c6ad739a307823311bbe1
SHA256 f6dcae1d350299c96c5690d43c3e1eb70112fd72cf31569a8282538da0bd704f
ssdeep
196608:W5NMWm5JtCDXAsBttV1222n9hDXAoDXtO2:W5Q5+XNBttV122kXAsXtO2

authentihash 091f73eb49ab5e7394a30f67bc82ba816ac4c079741f36818073d9a38c8bebb4
imphash 0c7ddabce539323234aaa8410cc1b651
Dosya boyutu 8.5 MB ( 8956928 bytes )
Dosya türü Win32 EXE
Magic lafzı
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Windows ActiveX control (75.3%)
Win64 Executable (generic) (17.8%)
Win32 Executable (generic) (2.9%)
OS/2 Executable (generic) (1.3%)
Generic Win/DOS Executable (1.2%)
Tags
peexe signed overlay

VirusTotal metadata
First submission 2016-06-23 06:51:57 UTC ( 2 yıl, 9 ay önce)
Last submission 2019-02-12 19:49:58 UTC ( 1 ay önce)
Dosya isimleri BTSync.exe
BTSync.exe
uttEE0C.tmp.exe
BTSync.exe
btsync.exe
879258
BTSync.exe
BitTorrent-Sync(1).exe
uttC395.tmp.exe
BitTorrent-Sync.exe
BTSync.exe
BitTorrent-Sync.exe
BTSync.exe
BitTorrent-Sync (1).exe
BitTorrent-Sync.exe
363634
BTSync.exe
BitTorrent-Sync.exe
BitTorrent-Sync 2.38.exe
BTSync.exe
BTSync.exe
Yorum yok.. Henüz hiçbir VirusTotal Topluluğu üyesi bu öğeye yorum yapmadı.Bunu yapan ilk sen ol!

Yorum ekleyin...

?
Yorumu gönder.

Üye girişi yapmadınız..Sadece kayıtlı kullanıcılar yorum yapabilir.Sesinizi duyurmak için giriş yapın.

Oy yok.. Bu öğeyi daha önce hiç kimse oylamadı.Bunu yapan ilk sen ol!