Jump to content
Sign in to follow this  
cristii88bic

See what a .exe does

Recommended Posts

cristii88bic

Hello! Does anybody know if it is possible to see what an .exe does? For example, I received a game from a friend, and I want to see what dlls/functions/registrys it opens. Is it possible to make a program with autoit that does that? Resourcehacker does not help me much.

Share this post


Link to post
Share on other sites
JRowe

Hello! Does anybody know if it is possible to see what an .exe does?

Ok. Do a kaspersky check on the file before you check it out, and it will tell you whether it's a virus. IF it's not a virus, then running it will tell you what it does.

Check out Trancexx's stuff (member/forum search will do ya) in the example scripts forum for some reshacker autoit stuff.

Double clicking is usually sufficient. Ymmv. Malware, obviously, should not be executed (I've had too much to drink, so bear with me if this doesn't help.)

Edited by JRowe

Share this post


Link to post
Share on other sites
Anteaus

Hello! Does anybody know if it is possible to see what an .exe does? For example, I received a game from a friend, and I want to see what dlls/functions/registrys it opens. Is it possible to make a program with autoit that does that? Resourcehacker does not help me much.

To examine DLL calls in realtime:

http://www.dependencywalker.com/

To track changes made:

http://epsilonsquared.com/installrite.htm

Share this post


Link to post
Share on other sites
cristii88bic

To examine DLL calls in realtime:

http://www.dependencywalker.com/

To track changes made:

http://epsilonsquared.com/installrite.htm

Thank you very much!

Share this post


Link to post
Share on other sites
danielkza

If it's safe to execute (you just need to know what resources the program accesses), I recommend Process Monitor: it can log registry, file, DLL, and other kinds of activity, and has great filtering options.

SysInternals

Share this post


Link to post
Share on other sites
rajeshontheweb

installwatch is the best solution i can think of - coz this is what i use when i suspect the file or if i want to see what the file does (sandboxing is a much safer option, though -- still, i use install watch when i have a legitimate program i would just like to monitor or verify)

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  

×

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.