Srpski | Македонски | العربية | Suomi | ihMdI | 
| עברית | 
| Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | 
| 
| Magyar | Deutsch | Česky | Polski | English
| עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | | | Magyar | Deutsch | Česky | Polski | English
|
Virustotal es un servicio de análisis de archivos sospechosos que permite detectar virus, gusanos, troyanos, y malware en general. Más información... |
Análisis del archivo Memoria.exe recibido el 2009.01.13 23:12:26 (UTC)
Estado actual: análisis terminado
Estado actual: análisis terminado
Resultado: 32/38 (84.21%)
| Motor antivirus | Versión | Última actualización | Resultado |
|---|---|---|---|
| a-squared | 4.0.0.73 | 2009.01.13 | Virus.Win32.Delf.GGS!IK |
| AhnLab-V3 | 2009.1.13.3 | 2009.01.13 | Win-Trojan/Poison.550425 |
| AntiVir | 7.9.0.54 | 2009.01.13 | BDS/Poison.AI |
| Authentium | 5.1.0.4 | 2009.01.13 | W32/Backdoor.CDNH |
| Avast | 4.8.1281.0 | 2009.01.13 | Win32:Delf-GGS |
| AVG | 8.0.0.229 | 2009.01.13 | BackDoor.Generic9.EVM |
| BitDefender | 7.2 | 2009.01.13 | - |
| CAT-QuickHeal | 10.00 | 2009.01.12 | Backdoor.Poison.ai |
| ClamAV | 0.94.1 | 2009.01.13 | - |
| Comodo | 927 | 2009.01.13 | Worm.Win32.AutoRun.CT |
| DrWeb | 4.44.0.09170 | 2009.01.13 | FDOS.Atomix |
| eSafe | 7.0.17.0 | 2009.01.13 | Win32.Poison.ai |
| eTrust-Vet | 31.6.6306 | 2009.01.13 | Win32/SillyFDC.DJ |
| F-Prot | 4.4.4.56 | 2009.01.13 | W32/Backdoor.CDNH |
| F-Secure | 8.0.14470.0 | 2009.01.13 | Backdoor.Win32.Poison.ai |
| Fortinet | 3.117.0.0 | 2009.01.13 | W32/Poison.AI!tr.bdr |
| GData | 19 | 2009.01.14 | Win32:Delf-GGS |
| Ikarus | T3.1.1.45.0 | 2009.01.13 | Virus.Win32.Delf.GGS |
| K7AntiVirus | 7.10.584 | 2009.01.09 | Backdoor.Win32.Poison.ai |
| Kaspersky | 7.0.0.125 | 2009.01.13 | Backdoor.Win32.Poison.ai |
| McAfee | 5494 | 2009.01.13 | - |
| McAfee+Artemis | 5494 | 2009.01.13 | Generic!Artemis |
| Microsoft | 1.4205 | 2009.01.13 | TrojanDropper:Win32/Poison.G |
| NOD32 | 3763 | 2009.01.13 | Win32/AutoRun.CT |
| Norman | 5.93.01 | 2009.01.13 | W32/Smalldoor.BISC |
| Panda | 9.5.1.2 | 2009.01.13 | W32/Virutas.G.drp |
| PCTools | 4.4.2.0 | 2009.01.13 | Backdoor.Poison.AV |
| Prevx1 | V2 | 2009.01.14 | - |
| Rising | 21.12.12.00 | 2009.01.13 | - |
| SecureWeb-Gateway | 6.7.6 | 2009.01.13 | Trojan.Backdoor.Poison.AI |
| Sophos | 4.37.0 | 2009.01.13 | Mal/Behav-081 |
| Sunbelt | 3.2.1831.2 | 2009.01.09 | Backdoor.Win32.Poison.ai |
| Symantec | 10 | 2009.01.14 | W32.SillyFDC |
| TheHacker | 6.3.1.4.218 | 2009.01.13 | Backdoor/Poison.ai |
| TrendMicro | 8.700.0.1004 | 2009.01.13 | - |
| VBA32 | 3.12.8.10 | 2009.01.13 | Backdoor.Win32.Poison.ai |
| ViRobot | 2009.1.13.1556 | 2009.01.13 | Backdoor.Win32.Poison.550425 |
| VirusBuster | 4.5.11.0 | 2009.01.13 | Backdoor.Poison.AV |
| Información adicional |
|---|
| File size: 550425 bytes |
| MD5...: b1d6fcf804e2f8cbbdeed7c6ad2d8063 |
| SHA1..: 36b94dc0b09acda00f029abdd132b663d1b75d3d |
| SHA256: 74738bb93dd9928ee1862dd00c21952b687e1e378d25eb4745b932c7eeab6adc |
| SHA512: ab08a3bf5eb67f080da1b3b306d54cd14591273d46974134d759b80de35ac663 9b0a72d7dff748ae37b243422ced37d728e8fce5ee70801748fb9a4a3fcf424b |
| ssdeep: 12288:wP9kyuEhj4CIcFNDM2+d5oj99L5EpdEcfTa:xyPsCIcFND5+sj99aEt |
| PEiD..: - |
| TrID..: File type identification Win32 Executable Generic (38.3%) Win32 Dynamic Link Library (generic) (34.1%) Win16/32 Executable Delphi generic (9.3%) Generic Win/DOS Executable (9.0%) DOS Executable Generic (9.0%) |
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x401240 timedatestamp.....: 0x46b8f177 (Tue Aug 07 22:25:59 2007) machinetype.......: 0x14c (I386) ( 6 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0x1ea4 0x2000 5.25 1d03956e2008e4ae56dc80978ea0a6f9 .data 0x3000 0x77f20 0x78000 7.40 10452e2424ecf80be48788c78eb55284 .rdata 0x7b000 0x400 0x400 5.26 b6814c33a86b14852dc2506bb086ae22 .bss 0x7c000 0x4f0 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e .idata 0x7d000 0x838 0xa00 4.31 3271809012ff75f5794cc63b303ca907 .rsrc 0x7e000 0x5960 0x5a00 4.31 d102fa9306a3c5432075e3118a305b48 ( 7 imports ) > ADVAPI32.DLL: RegCloseKey, RegDeleteValueA, RegOpenKeyExA, RegQueryValueExA, RegSetValueExA > KERNEL32.dll: AddAtomA, CloseHandle, CopyFileA, CreateFileA, CreateToolhelp32Snapshot, ExitProcess, FindAtomA, GetAtomNameA, GetCommandLineA, GetDriveTypeA, GetLastError, GetModuleFileNameA, GetModuleHandleA, GetStartupInfoA, GetSystemDirectoryA, GetTempFileNameA, GetTempPathA, GetWindowsDirectoryA, OpenProcess, Process32First, Process32Next, SetFileAttributesA, SetUnhandledExceptionFilter, TerminateProcess, WriteFile > msvcrt.dll: _sleep, _strrev > msvcrt.dll: __getmainargs, __p__environ, __p__fmode, __set_app_type, _cexit, _iob, _onexit, _setmode, abort, atexit, calloc, fclose, fflush, fopen, fprintf, free, fseek, ftell, malloc, signal, strcat, strcmp, strcpy, strlen, strncat > SHELL32.DLL: ShellExecuteA > USER32.dll: PeekMessageA, ShowWindow > WININET.DLL: InternetOpenA, InternetOpenUrlA, InternetReadFile ( 0 exports ) |
| CWSandbox info: http://research.sunbelt-software.com/partnerresource/MD5.aspx?md5=b1d6fcf804e2f8cbbdeed7c6ad2d8063 |
IMPORTANTE:
VirusTotal es un servicio gratuito ofrecido por Hispasec Sistemas, quien no garantiza la disponibilidad y continuidad de funcionamiento de éste. Pese a que el índice de detección ofrecido por el análisis simultáneo de múltiples motores antivirus es muy superior al de un sólo producto, los resultados NO garantizan la inocuidad de un archivo. No existe solución que pueda ofrecer un 100% de efectividad en el reconocimiento de virus y malware en general.
