Suomi | ihMdI | | עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | | | Magyar | Deutsch | Česky | Polski | English
Virus Total

Virustotal es un servicio de análisis de archivos sospechosos que permite detectar virus, gusanos, troyanos, y malware en general. Más información...

Análisis del archivo setup.bin recibido el 14.08.2008 22:47:59 (CET)
Estado actual: análisis terminado
Resultado: 3/36 (8.33%)
Motor antivirus Versión Última actualización Resultado
AhnLab-V3 2008.8.15.0 2008.08.14 -
AntiVir 7.8.1.19 2008.08.14 -
Authentium 5.1.0.4 2008.08.14 -
Avast 4.8.1195.0 2008.08.14 Win32:Trojan-gen {Other}
AVG 8.0.0.161 2008.08.14 -
BitDefender 7.2 2008.08.14 -
CAT-QuickHeal 9.50 2008.08.14 -
ClamAV 0.93.1 2008.08.14 -
DrWeb 4.44.0.09170 2008.08.14 -
eSafe 7.0.17.0 2008.08.14 -
eTrust-Vet 31.6.6032 2008.08.14 -
Ewido 4.0 2008.08.14 -
F-Prot 4.4.4.56 2008.08.14 -
F-Secure 7.60.13501.0 2008.08.14 -
Fortinet 3.14.0.0 2008.08.14 -
GData 2.0.7306.1023 2008.08.14 Win32:Trojan-gen
Ikarus T3.1.1.34.0 2008.08.14 Backdoor.Win32.VB.ffx
K7AntiVirus 7.10.415 2008.08.14 -
Kaspersky 7.0.0.125 2008.08.14 -
McAfee 5361 2008.08.14 -
Microsoft 1.3807 2008.08.14 -
NOD32v2 3355 2008.08.14 -
Norman 5.80.02 2008.08.14 -
Panda 9.0.0.4 2008.08.14 -
PCTools 4.4.2.0 2008.08.14 -
Prevx1 V2 2008.08.14 -
Rising 20.57.32.00 2008.08.14 -
Sophos 4.32.0 2008.08.14 -
Sunbelt 3.1.1542.1 2008.08.13 -
Symantec 10 2008.08.14 -
TheHacker 6.3.0.3.046 2008.08.13 -
TrendMicro 8.700.0.1004 2008.08.14 -
VBA32 3.12.8.3 2008.08.14 -
ViRobot 2008.8.14.1337 2008.08.14 -
VirusBuster 4.5.11.0 2008.08.14 -
Webwasher-Gateway 6.6.2 2008.08.14 -
Información adicional
File size: 352768 bytes
MD5...: 2e932dc0e9d4681b95a042e5fcbf328d
SHA1..: fc420678ede0898c142c75ba51fd061a8fa048da
SHA256: 8932dc1c4762f9f5f7c1ef66b9e983da62ee65549b06ebc864fc5969012aea7e
SHA512: 74d73a3f035b1ae24e018664d2be13cdbcaf40185f9a074efc8dd4098a6fe748
f05465927806aedb19f89477d2f01fe59b63a1d2d6226ca1dc7db82fb6725832
PEiD..: -
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x428ee8
timedatestamp.....: 0x488f1f0e (Tue Jul 29 13:45:50 2008)
machinetype.......: 0x14c (I386)

( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x48b92 0x48c00 6.51 807bc6852cab063d25e16a95b9c00aed
.data 0x4a000 0x357c 0x1800 3.18 35533ad3333f905def5c28697a07a294
.rsrc 0x4e000 0x7468 0x7600 5.73 1cb080cb76d5a8fb1c6343b7c11cb668
.reloc 0x56000 0x4344 0x4400 5.08 f332c2bbd9aac06def7ac02b2357b5b3

( 5 imports )
> KERNEL32.dll: CreateFileW, OpenProcess, Process32NextW, Process32FirstW, CreateToolhelp32Snapshot, GetCurrentProcessId, SetFilePointer, HeapSetInformation, CreateEventA, SetEvent, SizeofResource, LockResource, LoadResource, FindResourceA, GetVersionExA, CompareStringA, GetFileAttributesA, GetModuleFileNameA, DeleteFileA, MultiByteToWideChar, GetTempPathA, LocalFree, FormatMessageA, GetTimeFormatA, GetDateFormatA, CreateDirectoryA, CopyFileA, GetWindowsDirectoryA, GetSystemDirectoryA, GetSystemInfo, GetCurrentProcess, ExpandEnvironmentStringsA, GlobalFree, GlobalAlloc, WideCharToMultiByte, GetEnvironmentVariableA, ReadFile, Sleep, GetDiskFreeSpaceExA, IsValidCodePage, EndUpdateResourceA, DeleteCriticalSection, CreateThread, InitializeCriticalSection, EnterCriticalSection, LeaveCriticalSection, MulDiv, lstrlenW, WaitForSingleObject, GetExitCodeProcess, CloseHandle, GetTickCount, FindFirstFileA, FindNextFileA, GetTempFileNameA, FindClose, GetProcessHeap, UpdateResourceA, BeginUpdateResourceA, LoadLibraryA, lstrlenA, UpdateResourceW, GetTempPathW, GetTempFileNameW, GetSystemDirectoryW, GetModuleFileNameW, GetFileAttributesW, FormatMessageW, FindResourceW, DeleteFileW, CreateDirectoryW, CopyFileW, BeginUpdateResourceW, GetVersion, CreateFileA, SetStdHandle, WriteConsoleW, GetConsoleOutputCP, WriteConsoleA, GetLocaleInfoW, IsValidLocale, EnumSystemLocalesA, GetLocaleInfoA, GetUserDefaultLCID, SetEndOfFile, GetStringTypeW, GetStringTypeA, InitializeCriticalSectionAndSpinCount, HeapSize, FlushFileBuffers, GetConsoleMode, GetConsoleCP, HeapReAlloc, VirtualAlloc, HeapAlloc, LCMapStringW, LCMapStringA, GetOEMCP, GetACP, GetCPInfo, GetSystemTimeAsFileTime, GetLastError, GetProcAddress, FreeLibrary, WriteFile, LocalAlloc, InterlockedExchange, RaiseException, GetCommandLineA, GetStartupInfoA, RtlUnwind, HeapFree, TerminateProcess, UnhandledExceptionFilter, SetUnhandledExceptionFilter, IsDebuggerPresent, GetModuleHandleW, ExitProcess, GetStdHandle, FreeEnvironmentStringsA, GetEnvironmentStrings, FreeEnvironmentStringsW, GetEnvironmentStringsW, SetHandleCount, GetFileType, TlsGetValue, TlsAlloc, TlsSetValue, TlsFree, InterlockedIncrement, SetLastError, GetCurrentThreadId, InterlockedDecrement, HeapCreate, VirtualFree, QueryPerformanceCounter
> GDI32.dll: GetStockObject, GetObjectA, EnumFontFamiliesExA, CreateFontIndirectA, DeleteObject, CreateCompatibleDC, GetDeviceCaps, GetObjectW, DeleteDC, SelectObject, GetTextMetricsA, GetTextExtentPoint32A
> ole32.dll: CoInitialize, CoUninitialize
> SHELL32.dll: ShellExecuteExW, SHGetMalloc, SHGetPathFromIDListW, SHGetSpecialFolderLocation, ShellExecuteW, ShellExecuteA, ShellExecuteExA
> USER32.dll: ShowScrollBar, GetClientRect, SetClassLongA, LoadCursorA, SetCursor, SetWindowTextA, CreateDialogIndirectParamA, CreateDialogParamA, SetForegroundWindow, EnableWindow, GetFocus, SetFocus, ScreenToClient, MoveWindow, LoadImageA, SetDlgItemTextA, SendMessageA, GetDlgItem, MsgWaitForMultipleObjects, PeekMessageA, IsDialogMessageA, TranslateMessage, DispatchMessageA, DestroyWindow, ShowWindow, SendDlgItemMessageA, GetWindowRect, SystemParametersInfoA, ExitWindowsEx, CharNextA, MessageBoxA, DrawTextW, GetSystemMetrics, GetDC, GetDialogBaseUnits, ReleaseDC, MessageBoxW, LoadIconA

( 0 exports )

Importante IMPORTANTE: VirusTotal es un servicio gratuito ofrecido por Hispasec Sistemas, quien no garantiza la disponibilidad y continuidad de funcionamiento de éste. Pese a que el índice de detección ofrecido por el análisis simultáneo de múltiples motores antivirus es muy superior al de un sólo producto, los resultados NO garantizan la inocuidad de un archivo. No existe solución que pueda ofrecer un 100% de efectividad en el reconocimiento de virus y malware en general.

Analizar otro archivo