Srpski | Македонски | العربية | Suomi | ihMdI | 
| עברית | 
| Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | 
| 
| Magyar | Deutsch | Česky | Polski | Español
| עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | | | Magyar | Deutsch | Česky | Polski | Español
|
Virustotal is a service that analyzes suspicious files and facilitates the quick detection of viruses, worms, trojans, and all kinds of malware detected by antivirus engines. More information... |
File koshuefhw6gf.exe received on 2009.11.02 12:45:40 (UTC)
Current status: finished
Current status: finished
Result: 21/41 (51.22%)
| Antivirus | Version | Last Update | Result |
|---|---|---|---|
| a-squared | 4.5.0.41 | 2009.11.02 | Downloader.Delphi!IK |
| AhnLab-V3 | 5.0.0.2 | 2009.11.02 | - |
| AntiVir | 7.9.1.53 | 2009.11.02 | DR/Delphi.Gen |
| Antiy-AVL | 2.0.3.7 | 2009.11.02 | Trojan/Win32.Buzus.gen |
| Authentium | 5.1.2.4 | 2009.11.01 | - |
| Avast | 4.8.1351.0 | 2009.11.01 | - |
| AVG | 8.5.0.423 | 2009.11.02 | Generic15.ACFX |
| BitDefender | 7.2 | 2009.11.02 | - |
| CAT-QuickHeal | 10.00 | 2009.11.02 | - |
| ClamAV | 0.94.1 | 2009.11.02 | Trojan.Buzus-6123 |
| Comodo | 2814 | 2009.11.02 | TrojWare.Win32.TrojanSpy.Zbot.Gen |
| DrWeb | 5.0.0.12182 | 2009.11.02 | - |
| eSafe | 7.0.17.0 | 2009.11.01 | Suspicious File |
| eTrust-Vet | 35.1.7097 | 2009.11.02 | - |
| F-Prot | 4.5.1.85 | 2009.11.01 | - |
| F-Secure | 9.0.15370.0 | 2009.10.30 | Suspicious:W32/Malware!Online |
| Fortinet | 3.120.0.0 | 2009.11.02 | - |
| GData | 19 | 2009.11.02 | - |
| Ikarus | T3.1.1.72.0 | 2009.11.02 | Downloader.Delphi |
| Jiangmin | 11.0.800 | 2009.11.02 | Trojan/Buzus.qfk |
| K7AntiVirus | 7.10.885 | 2009.10.31 | - |
| Kaspersky | 7.0.0.125 | 2009.11.02 | Trojan.Win32.Buzus.cdgq |
| McAfee | 5789 | 2009.11.01 | - |
| McAfee+Artemis | 5789 | 2009.11.01 | Artemis!D93A6C71990A |
| McAfee-GW-Edition | 6.8.5 | 2009.11.02 | Heuristic.LooksLike.Trojan.PCK.Tdss.B |
| Microsoft | 1.5202 | 2009.11.02 | Trojan:Win32/Meredrop |
| NOD32 | 4564 | 2009.11.02 | a variant of Win32/Injector.ADD |
| Norman | 6.03.02 | 2009.11.01 | - |
| nProtect | 2009.1.8.0 | 2009.11.02 | Trojan/W32.Buzus.73728.Z |
| Panda | 10.0.2.2 | 2009.11.01 | Trj/CI.A |
| PCTools | 7.0.3.5 | 2009.11.02 | - |
| Prevx | 3.0 | 2009.11.02 | - |
| Rising | 21.54.04.00 | 2009.11.02 | - |
| Sophos | 4.47.0 | 2009.11.02 | - |
| Sunbelt | 3.2.1858.2 | 2009.11.01 | Trojan.Win32.Generic!BT |
| Symantec | 1.4.4.12 | 2009.11.02 | - |
| TheHacker | 6.5.0.2.058 | 2009.10.31 | Trojan/Buzus.cdgq |
| TrendMicro | 8.950.0.1094 | 2009.11.02 | - |
| VBA32 | 3.12.10.11 | 2009.11.02 | Trojan.Win32.Buzus.cgws |
| ViRobot | 2009.11.2.2017 | 2009.11.02 | - |
| VirusBuster | 4.6.5.0 | 2009.11.01 | Trojan.Buzus.AMFL |
| Additional information |
|---|
| File size: 73728 bytes |
| MD5 : d93a6c71990a0660406efd547a3e8846 |
| SHA1 : 179521b40aa8aa149e578d5813e10ee7491c0748 |
| SHA256: a995378f1925a82e8ac8b448e967e9a5926412c632c469fe5a887ddbac4d5712 |
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x1E4C timedatestamp.....: 0x2A425E19 (Sat Jun 20 00:22:17 1992) machinetype.......: 0x14C (Intel I386) ( 7 sections ) name viradd virsiz rawdsiz ntrpy md5 CODE 0x1000 0x11F4 0x1200 6.28 6af4cb3c76ee5f53eba6618df2f12ada DATA 0x3000 0xFE14 0x10000 7.99 512a1b235620ae325924cee77ff362af BSS 0x13000 0x399 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e .idata 0x14000 0x238 0x400 2.83 fa37610f8053a7b3e616006a739c15cd .tls 0x15000 0x4 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e .rdata 0x16000 0x18 0x200 0.20 15197f4b5b9cad04a9b0cb8c0d7bf523 .reloc 0x17000 0x274 0x400 4.63 22337570a3db07e61067c1f1be08f390 ( 3 imports ) > gdi32.dll: SetBkMode, SetBkColor, GetBkMode > kernel32.dll: GetCurrentThreadId, ExitProcess, RtlUnwind, RaiseException, GetCommandLineA, TlsSetValue, TlsGetValue, LocalAlloc, GetModuleHandleA, FreeLibrary, HeapFree, HeapReAlloc, HeapAlloc, GetProcessHeap, LoadLibraryA, GetSystemDirectoryA, GetProcAddress > user32.dll: GetDC ( 0 exports ) |
| TrID : File type identification Win32 Executable Generic (38.4%) Win32 Dynamic Link Library (generic) (34.1%) Win16/32 Executable Delphi generic (9.3%) Generic Win/DOS Executable (9.0%) DOS Executable Generic (9.0%) |
| ThreatExpert: http://www.threatexpert.com/report.aspx?md5=d93a6c71990a0660406efd547a3e8846 |
| ssdeep: 1536:9I0PfnvQnqLl6ddoYt82sfIoABm3MNaBjjhrOQfyM:DPfvTLl6ddop2hoArNQfhyM |
| Prevx Info: http://info.prevx.com/aboutprogramtext.asp?PX5=E01CE9620040A1952011016D3CC3EB00D0648060 |
| PEiD : - |
| RDS : NSRL Reference Data Set - |
ATTENTION:
VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.
