× Cookies zijn uitgeschakeld! Voor een goede werking van deze website moeten cookies zijn ingeschakeld
SHA256: 889c34a51124390e98225d2f95804eab24fe45d677d934e811d9bae177700af6
Bestandsnaam: BukkitGUI.exe
Detectieverhouding: 0 / 55
Datum van analyse: 2016-06-11 12:50:15 UTC (1 jaar, 5 maanden geleden) Laatste weergeven
Virusscanner Resultaat Versie
Ad-Aware 20160611
AegisLab 20160611
AhnLab-V3 20160611
Alibaba 20160608
ALYac 20160610
Antiy-AVL 20160611
Arcabit 20160611
Avast 20160611
AVG 20160611
Avira (no cloud) 20160611
AVware 20160611
Baidu 20160608
Baidu-International 20160606
BitDefender 20160611
Bkav 20160611
CAT-QuickHeal 20160611
ClamAV 20160611
CMC 20160607
Comodo 20160611
Cyren 20160611
DrWeb 20160611
Emsisoft 20160611
ESET-NOD32 20160611
F-Prot 20160611
F-Secure 20160611
Fortinet 20160611
GData 20160611
Ikarus 20160611
Jiangmin 20160611
K7AntiVirus 20160611
K7GW 20160611
Kaspersky 20160611
Kingsoft 20160611
Malwarebytes 20160611
McAfee 20160611
McAfee-GW-Edition 20160611
Microsoft 20160611
eScan 20160611
nProtect 20160610
Panda 20160611
Qihoo-360 20160611
Rising 20160611
Sophos AV 20160611
SUPERAntiSpyware 20160611
Symantec 20160611
Tencent 20160611
TheHacker 20160610
TrendMicro 20160611
TrendMicro-HouseCall 20160611
VBA32 20160610
VIPRE 20160611
ViRobot 20160611
Yandex 20160610
Zillya 20160610
Zoner 20160611
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright ©Bertware 2011-2015

Product BukkitGUI
Original name BukkitGUI.exe
Internal name BukkitGUI.exe
File version 1.8.0.547
Description BukkitGUI
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2016-06-11 12:41:09
Entry Point 0x0074728E
Number of sections 3
.NET details
Module Version ID 7b3529ed-1982-4990-8e71-b2fd2f9f71ef
TypeLib ID dabf6117-83ab-43cc-812e-31eb1a1a15e9
PE sections
PE imports
_CorExeMain
Number of PE resources by type
RT_ICON 1
RT_MANIFEST 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
NEUTRAL 4
PE resources
ExifTool file metadata
SubsystemVersion
4.0

InitializedDataSize
16896

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.8.0.547

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

LinkerVersion
11.0

EntryPoint
0x74728e

OriginalFileName
BukkitGUI.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright Bertware 2011-2015

FileVersion
1.8.0.547

TimeStamp
2016:06:11 13:41:09+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
BukkitGUI.exe

ProductVersion
1.8.0.547

FileDescription
BukkitGUI

OSVersion
4.0

FileOS
Win32

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Bertware

CodeSize
7623680

ProductName
BukkitGUI

ProductVersionNumber
1.8.0.547

FileTypeExtension
exe

ObjectFileType
Executable application

AssemblyVersion
1.8.0.547

File identification
MD5 dec6b0ffa2251b6b5b91fb4f47eb3996
SHA1 dc5ed08c901a623d1034b3f151ddfad4eaa82c23
SHA256 889c34a51124390e98225d2f95804eab24fe45d677d934e811d9bae177700af6
ssdeep
98304:EUEkbqI9HWKSsN7x2Xs9QXgc5m7EPkUEVfbqI:EkvSG8XQAm70k

authentihash 010d6785ffd52d35e9641eeadb7448d1a64d97d455024c26b35a50c19bb36d86
imphash f34d5f2d4577ed6d9ceec516c1f5a744
Bestandsgrootte 7.3 MB ( 7641088 bytes )
Bestandstype Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono/.Net assembly

TrID Generic CIL Executable (.NET, Mono, etc.) (55.8%)
Win64 Executable (generic) (21.0%)
Windows screen saver (9.9%)
Win32 Dynamic Link Library (generic) (5.0%)
Win32 Executable (generic) (3.4%)
Tags
peexe assembly

VirusTotal metadata
First submission 2016-06-11 12:50:15 UTC (1 jaar, 5 maanden geleden)
Last submission 2017-03-01 04:06:36 UTC (8 maanden, 4 weken geleden)
Bestandsnamen BukkitGUI.exe
BukkitGUI.exe
BukkitGUI.exe
BukkitGUI.exe
BukkitGUI.exe
899760
BukkitGUI.exe
BukkitGUI.exe
BukkitGUI.exe
BukkitGUI.exe
bukkitgui.exe
Geen reactie. Er heeft nog geen VirusTotal-communitylid gereageerd op dit item. Wees de eerste!

Laat een reactie achter...

?
Reactie plaatsen

U bent niet ingelogd. Alleen geregistreerde gebruikers kunnen reacties plaatsen. Log in en discussieer mee!

Geen stemmen. Er heeft nog niemand gestemd op dit item. U kunt de eerste zijn!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
HTTP requests
DNS requests
TCP connections
UDP communications