Virustotal. MD5: c10b59336dcb7f390218df4f33a857ec Suspicious:W32/Malware!Gemini a variant of Win32/Waledac.GL Trojan:Win32/Waledac.C

檔案 saleslist.exex 接收於 2009.02.25 08:15:20 (UTC)
當前狀態: 完成

結果: 12/39 (30.77%)

反病毒引擎	版本	最後更新	掃瞄結果
a-squared	4.0.0.93	2009.02.25	Trojan.Win32.Waledac!IK
AhnLab-V3	2009.2.24.0	2009.02.25	-
AntiVir	7.9.0.88	2009.02.25	TR/Waledac.443393.A
Authentium	5.1.0.4	2009.02.24	-
Avast	4.8.1335.0	2009.02.25	Win32:Nuwar-AW
AVG	8.0.0.237	2009.02.24	-
BitDefender	7.2	2009.02.25	-
CAT-QuickHeal	10.00	2009.02.25	(Suspicious) - DNAScan
ClamAV	0.94.1	2009.02.25	-
Comodo	983	2009.02.20	-
DrWeb	4.44.0.09170	2009.02.25	-
eSafe	7.0.17.0	2009.02.25	-
eTrust-Vet	31.6.6373	2009.02.25	-
F-Prot	4.4.4.56	2009.02.24	-
F-Secure	8.0.14470.0	2009.02.25	Suspicious:W32/Malware!Gemini
Fortinet	3.117.0.0	2009.02.24	-
GData	19	2009.02.25	Win32:Nuwar-AW
Ikarus	T3.1.1.45.0	2009.02.25	Trojan.Win32.Waledac
K7AntiVirus	7.10.639	2009.02.21	-
Kaspersky	7.0.0.125	2009.02.25	-
McAfee	5535	2009.02.24	-
McAfee+Artemis	5535	2009.02.24	-
Microsoft	1.4306	2009.02.25	Trojan:Win32/Waledac.C
NOD32	3886	2009.02.24	a variant of Win32/Waledac.GL
Norman	6.00.06	2009.02.24	-
nProtect	2009.1.8.0	2009.02.25	-
Panda	10.0.0.10	2009.02.25	-
PCTools	4.4.2.0	2009.02.24	-
Prevx1	V2	2009.02.25	-
Rising	21.18.21.00	2009.02.25	-
SecureWeb-Gateway	6.7.6	2009.02.25	Trojan.Waledac.443393.A
Sophos	4.39.0	2009.02.25	Mal/WaledPak-B
Sunbelt	3.2.1856.2	2009.02.24	-
Symantec	10	2009.02.25	-
TheHacker	6.3.2.5.265	2009.02.25	-
TrendMicro	8.700.0.1004	2009.02.25	-
VBA32	3.12.10.0	2009.02.25	-
ViRobot	2009.2.25.1622	2009.02.25	-
VirusBuster	4.5.11.0	2009.02.24	Trojan.Waledac.Gen!Pac.7

附加訊息
File size: 447489 bytes
MD5...: c10b59336dcb7f390218df4f33a857ec
SHA1..: 57727de3b40848d315bee4b44b68e88ffc888f81
SHA256: c7531524982373479fc6f5298c798026d4fc4e0f3c5e26ccb0a69fd2060c1683
SHA512: a323ce388250551bfa3795e72678d48f2f01d0571a277b9cf7a38518721b62b5 43bcddea3ad9c4f4eebf1b392d463ba9ce8c7aa7ae75e5cec02215bc4d301a9e
ssdeep: 6144:uf1qraA5YzFx3w2Juz0anpvPHCuZ3NSY+i0MsDXTaxetUue5lB3tUa3p0pA tFIyH:cqr7eKhHvZ3NSYwMsD1vCVp0pIe1lhJ
PEiD..: -
TrID..: File type identification Win32 Executable Generic (38.5%) Win32 Dynamic Link Library (generic) (34.2%) Clipper DOS Executable (9.1%) Generic Win/DOS Executable (9.0%) DOS Executable Generic (9.0%)
PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x401a7a timedatestamp.....: 0x43c16e52 (Sun Jan 08 19:56:02 2006) machinetype.......: 0x14c (I386) ( 5 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0x3ddb6 0x3d800 7.99 a375c293f34a09422f88c69272cfe4e2 .pohuo 0x3f000 0x11d09 0xfc00 7.99 8ba79710f1bf0a702d7127025d572484 .cusvw 0x51000 0xf6b3 0xf000 7.98 b863bbd8190bf60ad719c0495b41dee0 .mjxn 0x61000 0x103037 0x10800 7.96 31b2ced73be2aacd427a9e0d21ed685e .reloc 0x165000 0x478 0x400 1.76 2917da801c27237b62ea7f631c189551 ( 3 imports ) > msvcrt.dll: floor, _wspawnvp, __p__timezone, difftime, _mbsnbicoll, _safe_fprem, _getdrives, _ismbbprint, _adj_fpatan, _putch, __wargv, _mbscat, _wrmdir, _toupper, _ismbcalnum, memcmp, __p__osver, _creat, ftell, _control87, _mbslwr, __p__winver, wcstoul, _heapused, _y0, getc, strcoll, getenv, _chgsign, _ismbcspace, _mbsdec, __toascii, _adj_fprem1, _expand, ldiv, _mbctype, _wcsset, _pgmptr, _snwprintf, log10, _wtoi > KERNEL32.DLL: ReadDirectoryChangesW, WaitForMultipleObjects, IsBadStringPtrW, SetComputerNameA, GetLogicalDriveStringsA, ExitProcess, ReleaseSemaphore, GetTickCount, GetCommandLineW, _lcreat, IsBadHugeReadPtr, lstrcmpiA, CopyFileW, lstrcmpiW, GetStringTypeA, GetModuleHandleW, VirtualFree, LoadLibraryExA, GetStartupInfoW, HeapDestroy, CreateDirectoryA, CreateThread, GetCommMask, GetLastError, GetLocalTime, GetPrivateProfileIntA, SetErrorMode, GetUserDefaultLCID, ReadConsoleOutputAttribute, lstrlenA, GetTempFileNameA, EnumSystemCodePagesW, CreateFileW, GetProcessHeap, lstrcmpW, lstrcmpA, GetStdHandle, GlobalUnfix, VirtualAlloc, LoadLibraryA, GetModuleHandleA > GDI32.DLL: GetObjectA, GetTransform, CreateICW, SetICMProfileW, GetTextCharset, GetSystemPaletteUse, SetDIBitsToDevice, GetTextMetricsA, GetObjectType, GetEnhMetaFilePaletteEntries, GetArcDirection, SetEnhMetaFileBits, GetLayout, SetLayout, GetROP2, AbortDoc, CreateCompatibleBitmap, GetCharABCWidthsFloatA, GetMiterLimit, GetDIBits, GetCurrentPositionEx, CreateBitmapIndirect, GetWindowOrgEx, CreateColorSpaceW, GetTextAlign, SetWorldTransform, DescribePixelFormat, CreateDCW, GetPixel, EnumMetaFile, CancelDC, CreatePolyPolygonRgn, SetLayout, GdiGetBatchLimit, GdiPlayScript, CopyEnhMetaFileW, GetPixelFormat, FixBrushOrgEx, GetOutlineTextMetricsW, GetICMProfileW ( 0 exports )

注意: VirusTotal 是 Hispasec Sistemas 提供的免費服務. 我們不保證任何該服務的可用性和持續性. 儘管使用多種反病毒引擎所提供的偵測率優於使用單一產品, 但這些結果並不保證檔案無害. 目前來說, 沒有任何一種解決方案可以提供 100% 的病毒和惡意軟體偵測率. 如果您購買了一款聲稱具有此能力的產品, 那麼您可能已經成為受害者.


	VirusTotal 是一款可疑檔案分析服務, 通過各種知名反病毒引擎, 對您所上傳的檔案進行偵測, 以判斷檔案是否被病毒, 蠕蟲, 木馬, 以及各類惡意軟體感染. 查看詳細訊息...

VirusTotal 是一款可疑檔案分析服務, 通過各種知名反病毒引擎, 對您所上傳的檔案進行偵測, 以判斷檔案是否被病毒, 蠕蟲, 木馬, 以及各類惡意軟體感染. 查看詳細訊息...