Virustotal. MD5: b8b8e4eb3f2b5935e8602c3e7866d264 W32/Downloader probably a variant of Win32/TrojanDownloader.Banload.LNU W32/Backdoor2.HFW

Fişier TerraPeru.exe primit la data de 2008.08.22 21:33:50 (UTC)
Status actual: încheiat

Rezultat: 5/36 (13.89%)

Antivirus	Versiune	Ultima actualizare	Rezultat
AhnLab-V3	2008.8.21.0	2008.08.22	-
AntiVir	7.8.1.23	2008.08.22	-
Authentium	5.1.0.4	2008.08.22	W32/Backdoor2.HFW
Avast	4.8.1195.0	2008.08.22	-
AVG	8.0.0.161	2008.08.22	-
BitDefender	7.2	2008.08.22	-
CAT-QuickHeal	9.50	2008.08.22	-
ClamAV	0.93.1	2008.08.22	-
DrWeb	4.44.0.09170	2008.08.22	-
eSafe	7.0.17.0	2008.08.21	-
eTrust-Vet	31.6.6039	2008.08.21	-
Ewido	4.0	2008.08.22	-
F-Prot	4.4.4.56	2008.08.21	W32/Backdoor2.HFW
F-Secure	7.60.13501.0	2008.08.22	W32/Downloader
Fortinet	3.14.0.0	2008.08.22	-
GData	2.0.7306.1023	2008.08.20	-
Ikarus	T3.1.1.34.0	2008.08.22	-
K7AntiVirus	7.10.425	2008.08.22	-
Kaspersky	7.0.0.125	2008.08.22	Heur.Trojan.Generic
McAfee	5368	2008.08.22	-
Microsoft	1.3807	2008.08.22	-
NOD32v2	3381	2008.08.22	probably a variant of Win32/TrojanDownloader.Banload.LNU
Norman	5.80.02	2008.08.22	-
Panda	9.0.0.4	2008.08.22	-
PCTools	4.4.2.0	2008.08.22	-
Prevx1	V2	2008.08.22	-
Rising	20.58.42.00	2008.08.22	-
Sophos	4.32.0	2008.08.22	-
Sunbelt	3.1.1571.1	2008.08.22	-
Symantec	10	2008.08.22	-
TheHacker	6.3.0.6.058	2008.08.22	-
TrendMicro	8.700.0.1004	2008.08.22	-
VBA32	3.12.8.4	2008.08.22	-
ViRobot	2008.8.22.1346	2008.08.22	-
VirusBuster	4.5.11.0	2008.08.22	-
Webwasher-Gateway	6.6.2	2008.08.22	-

Informaţii suplimentare
File size: 237568 bytes
MD5...: b8b8e4eb3f2b5935e8602c3e7866d264
SHA1..: 889625b044c9489c7ea04cda00a270c664278908
SHA256: c5be4805b6565f99e314a09653d64cd64fcb38e6dcade52e23528d4c80b2caee
SHA512: 9af36f3d55cb3e9b7f7c958b6eb3389996e0be67478421f437fa5919ed5607cc 12173c98eaad6559fe16c204a99b14964cf5b820a2f6534beaa752518b288114
PEiD..: -
PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x1006b24 timedatestamp.....: 0x4546cdfd (Tue Oct 31 04:15:57 2006) machinetype.......: 0x14c (I386) ( 4 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0xa9a0 0xaa00 6.56 8f9880a263cbf2ce95cf281bea1cca45 .data 0xc000 0x2260 0x600 6.60 912fc07307cc0631d195e48f9ad9fb5a .rsrc 0xf000 0x2e000 0x2de00 7.79 ecdeeec5696d4544adaa62af72f7d2fe .reloc 0x3d000 0xc34 0xe00 4.83 dcff5be00da2f83ac21b521394e422cc ( 7 imports ) > ADVAPI32.dll: FreeSid, AllocateAndInitializeSid, EqualSid, GetTokenInformation, OpenProcessToken, AdjustTokenPrivileges, LookupPrivilegeValueA, RegCloseKey, RegDeleteValueA, RegOpenKeyExA, RegQueryValueExA, RegQueryInfoKeyA, RegSetValueExA, RegCreateKeyExA > KERNEL32.dll: LocalFree, LocalAlloc, GetLastError, GetCurrentProcess, lstrlenA, _lclose, _llseek, _lopen, WritePrivateProfileStringA, GetWindowsDirectoryA, CreateDirectoryA, GetFileAttributesA, GetModuleFileNameA, GetSystemDirectoryA, RemoveDirectoryA, FindClose, FindNextFileA, DeleteFileA, SetFileAttributesA, lstrcmpA, FindFirstFileA, ExpandEnvironmentStringsA, GlobalFree, GlobalUnlock, GlobalLock, GlobalAlloc, IsDBCSLeadByte, GetShortPathNameA, GetPrivateProfileStringA, GetPrivateProfileIntA, CompareStringA, GetVersion, CloseHandle, FreeResource, LockResource, LoadResource, SizeofResource, FindResourceA, ReadFile, WriteFile, SetFilePointer, SetFileTime, LocalFileTimeToFileTime, DosDateTimeToFileTime, CreateFileA, SetCurrentDirectoryA, GetTempFileNameA, GetVolumeInformationA, FormatMessageA, GetProcAddress, ExitProcess, LoadLibraryExA, GetVersionExA, GetExitCodeProcess, WaitForSingleObject, CreateProcessA, GetTempPathA, GetSystemInfo, CreateMutexA, SetEvent, CreateEventA, CreateThread, ResetEvent, TerminateThread, GetDriveTypeA, GetModuleHandleW, LoadLibraryA, FreeLibrary, InterlockedExchange, Sleep, InterlockedCompareExchange, GetStartupInfoA, RtlUnwind, SetUnhandledExceptionFilter, GetModuleHandleA, QueryPerformanceCounter, GetTickCount, GetCurrentThreadId, GetCurrentProcessId, GetSystemTimeAsFileTime, TerminateProcess, UnhandledExceptionFilter, EnumResourceLanguagesA, MulDiv, GetDiskFreeSpaceA, GetCurrentDirectoryA > GDI32.dll: GetDeviceCaps > USER32.dll: SendDlgItemMessageA, GetDlgItem, SetForegroundWindow, SetWindowTextA, MessageBoxA, DialogBoxIndirectParamA, ShowWindow, EnableWindow, GetDlgItemTextA, GetDC, ReleaseDC, SetWindowPos, SendMessageA, PeekMessageA, MsgWaitForMultipleObjects, DispatchMessageA, CallWindowProcA, GetWindowLongA, SetWindowLongA, CharPrevA, CharUpperA, CharNextA, ExitWindowsEx, EndDialog, GetDesktopWindow, LoadStringA, SetDlgItemTextA, MessageBeep, GetWindowRect, GetSystemMetrics > msvcrt.dll: _adjust_fdiv, __p__commode, __p__fmode, __set_app_type, _terminate@@YAXXZ, _controlfp, __setusermatherr, _ismbblead, _XcptFilter, _amsg_exit, _initterm, _acmdln, _exit, _cexit, __getmainargs, memcpy, memset, _vsnprintf, exit > COMCTL32.dll: - > VERSION.dll: GetFileVersionInfoSizeA, GetFileVersionInfoA, VerQueryValueA ( 0 exports )

ATENŢIE: VirusTotal este un serviciu gratuit oferit de Hispasec Sistemas. Nu există nici o garanţie asupra disponibilităţii şi continuităţii acestui serviciu. Deşi rata de detecţie oferită de folosirea mai multor motoare antivirus este mult superioară aceleia oferite de un singur produs, aceste rezultate NU garantează faptul că un fişier nu este infectat. Momentan, nu există nici o soluţie care să ofere o rată de detecţie de 100% pentru viruşi şi alte ameninţări informatice.


	VirusTotal este un serviciu care analizează fişierele suspecte şi facilitează detecţia rapidă a viruşilor, troienilor şi a tuturor ameninţărilor informatice detectate de motoarele antivirus. Mai multe informaţii...

VirusTotal este un serviciu care analizează fişierele suspecte şi facilitează detecţia rapidă a viruşilor, troienilor şi a tuturor ameninţărilor informatice detectate de motoarele antivirus. Mai multe informaţii...