Srpski | Македонски | العربية | Suomi | ihMdI | 
| עברית | 
| Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Italiano | 
| 
| Magyar | Deutsch | Česky | Polski | Español | English
| עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Italiano | | | Magyar | Deutsch | Česky | Polski | Español | English
|
VirusTotal é um serviço que analisa arquivos suspeitos e proporciona uma rápida detecção de vírus, worms, cavalos de tróia, e todos os tipos de arquivos maliciosos detectados por vários mecanismos de antivírus. Mais informações... |
Arquivo wiskyx.exe recebido em 2009.07.09 15:16:06 (UTC)
Andamento: terminado
Andamento: terminado
Resultado: 20/41 (48.78%)
| Antivírus | Versão | Última Atualização | Resultado |
|---|---|---|---|
| a-squared | 4.5.0.18 | 2009.07.09 | Trojan.Banker.Delf!IK |
| AhnLab-V3 | 5.0.0.2 | 2009.07.09 | Win-Trojan/Banker.184320.J |
| AntiVir | 7.9.0.204 | 2009.07.09 | TR/Spy.Banker.184320.1 |
| Antiy-AVL | 2.0.3.1 | 2009.07.09 | - |
| Authentium | 5.1.2.4 | 2009.07.08 | - |
| Avast | 4.8.1335.0 | 2009.07.08 | Win32:Spyware-gen |
| AVG | 8.5.0.386 | 2009.07.09 | - |
| BitDefender | 7.2 | 2009.07.09 | Trojan.Banker.Delf.YWZ |
| CAT-QuickHeal | 10.00 | 2009.07.09 | Trojan.Agent.ATV |
| ClamAV | 0.94.1 | 2009.07.09 | - |
| Comodo | 1593 | 2009.07.09 | - |
| DrWeb | 5.0.0.12182 | 2009.07.09 | Trojan.AVKill.775 |
| eSafe | 7.0.17.0 | 2009.07.09 | - |
| eTrust-Vet | 31.6.6606 | 2009.07.09 | - |
| F-Prot | 4.4.4.56 | 2009.07.08 | - |
| F-Secure | 8.0.14470.0 | 2009.07.09 | - |
| Fortinet | 3.117.0.0 | 2009.07.03 | - |
| GData | 19 | 2009.07.09 | Trojan.Banker.Delf.YWZ |
| Ikarus | T3.1.1.64.0 | 2009.07.09 | Trojan.Banker.Delf |
| Jiangmin | 11.0.706 | 2009.07.09 | - |
| K7AntiVirus | 7.10.788 | 2009.07.09 | - |
| Kaspersky | 7.0.0.125 | 2009.07.09 | - |
| McAfee | 5670 | 2009.07.08 | - |
| McAfee+Artemis | 5670 | 2009.07.08 | Artemis!6B88AD201100 |
| McAfee-GW-Edition | 6.8.5 | 2009.07.09 | Trojan.Spy.Banker.184320.1 |
| Microsoft | 1.4803 | 2009.07.09 | TrojanSpy:Win32/Banker.HX |
| NOD32 | 4228 | 2009.07.09 | VBS/Agent.NBR |
| Norman | 6.01.09 | 2009.07.09 | - |
| nProtect | 2009.1.8.0 | 2009.07.09 | Trojan-Spy/W32.Banker.184320.F |
| Panda | 10.0.0.14 | 2009.07.09 | Suspicious file |
| PCTools | 4.4.2.0 | 2009.07.09 | - |
| Prevx | 3.0 | 2009.07.09 | Medium Risk Malware |
| Rising | 21.37.34.00 | 2009.07.09 | - |
| Sophos | 4.43.0 | 2009.07.09 | Mal/Generic-A |
| Sunbelt | 3.2.1858.2 | 2009.07.09 | Bulk Trojan |
| Symantec | 1.4.4.12 | 2009.07.09 | - |
| TheHacker | 6.3.4.3.363 | 2009.07.08 | - |
| TrendMicro | 8.950.0.1094 | 2009.07.09 | - |
| VBA32 | 3.12.10.7 | 2009.07.09 | VBS.Agent.NBR |
| ViRobot | 2009.7.9.1827 | 2009.07.09 | - |
| VirusBuster | 4.6.5.0 | 2009.07.08 | TrojanSpy.Banker.CBRK |
| Informações adicionais |
|---|
| File size: 184320 bytes |
| MD5 : 6b88ad201100fe58920842be576f5482 |
| SHA1 : ad874d64f5e388a781d809dd5497f56c08d4256b |
| SHA256: f8f6718d02427308cd3b617adbd2a6aa0b2e7b2e347a3a49eb15fe03e39cdcc4 |
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x274E8 timedatestamp.....: 0x4A3701BD (Tue Jun 16 04:21:49 2009) machinetype.......: 0x14C (Intel I386) ( 9 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0x25B00 0x25C00 6.54 8d2d765bfbd35e6fc11ab89988d4dc82 .itext 0x27000 0xA68 0xC00 5.67 b802d7b3a29415016778bcf37bb3ef6c .data 0x28000 0xF18 0x1000 2.95 e6921b115094c0ad6e98b8a39848679d .bss 0x29000 0x5AE0 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e .idata 0x2F000 0x11E4 0x1200 5.03 05608d657f85ed47a2081f4102f13cd7 .tls 0x31000 0xC 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e .rdata 0x32000 0x18 0x200 0.21 6a4b09f4cf2b330faa7d551260c71fc4 .reloc 0x33000 0x2D3C 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e .rsrc 0x36000 0x3E2C 0x4000 4.54 63b33b62954764704d8891470f8ad90d ( 7 imports ) > advapi32.dll: RegQueryValueExA, RegOpenKeyExA, RegCloseKey, RegSetValueExA, RegDeleteKeyA, RegCreateKeyExA, RegCloseKey > kernel32.dll: GetACP, Sleep, VirtualFree, VirtualAlloc, GetCurrentThreadId, InterlockedDecrement, InterlockedIncrement, VirtualQuery, WideCharToMultiByte, MultiByteToWideChar, lstrlenA, lstrcpynA, LoadLibraryExA, GetThreadLocale, GetStartupInfoA, GetProcAddress, GetModuleHandleA, GetModuleFileNameA, GetLocaleInfoA, GetCommandLineA, FreeLibrary, FindFirstFileA, FindClose, ExitProcess, CompareStringA, WriteFile, UnhandledExceptionFilter, RtlUnwind, RaiseException, GetStdHandle, TlsSetValue, TlsGetValue, LocalAlloc, GetModuleHandleA, WriteFile, WaitForSingleObject, VirtualQuery, VirtualAlloc, SizeofResource, SetFilePointer, SetEvent, SetErrorMode, SetEndOfFile, ResetEvent, ReadFile, MultiByteToWideChar, LockResource, LoadResource, LoadLibraryA, LeaveCriticalSection, InitializeCriticalSection, GetVersionExA, GetUserDefaultLCID, GetThreadLocale, GetTempPathA, GetSystemDefaultLCID, GetStdHandle, GetShortPathNameA, GetProcAddress, GetModuleHandleA, GetModuleFileNameA, GetLocaleInfoA, GetLocalTime, GetLastError, GetFullPathNameA, GetFileAttributesA, GetDiskFreeSpaceA, GetDateFormatA, GetCurrentThreadId, GetCPInfo, FreeResource, InterlockedIncrement, InterlockedExchange, InterlockedDecrement, FreeLibrary, FormatMessageA, FindResourceA, FindFirstFileA, FindClose, EnumCalendarInfoA, EnterCriticalSection, DeleteFileA, DeleteCriticalSection, CreateFileA, CreateEventA, CompareStringA, CloseHandle, Sleep > ole32.dll: CreateBindCtx, CoTaskMemFree, CLSIDFromProgID, StringFromCLSID, CoCreateInstance, CoLockObjectExternal, CoDisconnectObject, CoRevokeClassObject, CoRegisterClassObject, CoUninitialize, CoInitialize, IsEqualGUID, IsEqualGUID > oleaut32.dll: SysFreeString, SysReAllocStringLen, SysAllocStringLen, CreateErrorInfo, GetErrorInfo, SetErrorInfo, DispGetIDsOfNames, RegisterTypeLib, LoadTypeLibEx, SafeArrayGetElement, SafeArrayGetLBound, SafeArrayGetUBound, SysFreeString, SafeArrayPtrOfIndex, SafeArrayGetUBound, SafeArrayGetLBound, SafeArrayCreate, VariantChangeType, VariantCopyInd, VariantCopy, VariantClear, VariantInit > shell32.dll: SHGetSpecialFolderPathA > urlmon.dll: MkParseDisplayNameEx > user32.dll: GetKeyboardType, DestroyWindow, LoadStringA, MessageBoxA, CharNextA, CreateWindowExA, UnregisterClassA, SetWindowLongA, SetTimer, RegisterClassA, PostThreadMessageA, MessageBoxA, LoadStringA, KillTimer, GetWindowLongA, GetSystemMetrics, GetClassInfoA, DestroyWindow, DefWindowProcA, CharNextA, CharUpperBuffA, CharToOemA ( 0 exports ) |
| TrID : File type identification Win32 Executable Generic (38.4%) Win32 Dynamic Link Library (generic) (34.1%) Win16/32 Executable Delphi generic (9.3%) Generic Win/DOS Executable (9.0%) DOS Executable Generic (9.0%) |
| ThreatExpert: http://www.threatexpert.com/report.aspx?md5=6b88ad201100fe58920842be576f5482 |
| ssdeep: 3072:cHTXhB+OTcd7T+fXg+Kbw9wcijyUS03tAxeIbtubxKiF3PzwVCIoX:cHTbNe2PKCwDe90bgihzb |
| Prevx Info: http://info.prevx.com/aboutprogramtext.asp?PX5=7C2ACAAA00CCAC7AD00402D546626700EC1D17CE |
| PEiD : - |
| RDS : NSRL Reference Data Set - |
ATENÇÃO:
VirusTotal é um serviço gratuito oferecido por Hispasec Sistemas. Não há garantias quanto à disponibilidade e continuidade desse serviço. Apesar da taxa de detecção proporcionada pelo uso de múltiplos mecanismos de antivírus ser muito superior àquela oferecida por um único produto, os resultados NÃO garantem a possibilidade de um arquivo ser inofensivo. Atualmente, não há qualquer solução que ofereça 100% de eficiência na detecção de vírus e arquivos maliciosos..
