× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 231b6d2ee952f027f9696f42a1b92633949d8b0cba0528e3531c9bda11bbe2c9
Detection ratio: 8 / 39
Analysis date: 2010-04-08 02:07:29 UTC ( 7 years, 7 months ago )
Antivirus Result Update
DrWeb Trojan.DownLoader1.4695 20100408
McAfee-GW-Edition Heuristic.BehavesLike.Win32.Trojan.H 20100407
Prevx Medium Risk Malware Dropper 20100408
Rising Packer.Win32.Agent.GEN 20100407
Sophos AV Mal/FakeAV-CX 20100408
Sunbelt Trojan.Win32.Generic!BT 20100408
Symantec Suspicious.Insight 20100408
TrendMicro TROJ_RENOS.SMDE 20100407
a-squared 20100407
AhnLab-V3 20100407
AntiVir 20100407
Antiy-AVL 20100407
Authentium 20100407
Avast 20100407
Avast5 20100407
AVG 20100407
BitDefender 20100407
CAT-QuickHeal 20100407
ClamAV 20100407
Comodo 20100408
eSafe 20100407
eTrust-Vet 20100407
F-Prot 20100407
F-Secure 20100408
Fortinet 20100407
GData 20100407
Ikarus 20100407
Jiangmin 20100407
Kaspersky 20100407
Microsoft 20100407
NOD32 20100407
Norman 20100407
nProtect 20100406
Panda 20100407
PCTools 20100408
TheHacker 20100408
VBA32 20100405
ViRobot 20100407
VirusBuster 20100407
The file being studied is a Portable Executable file! More specifically, it is a unknown file.
PE header basic information
Number of sections 3
PE sections
PE imports
RegDeleteKeyA
RegCreateKeyA
GetLengthSid
ImageList_DrawEx
ImageList_Read
ImageList_Remove
ImageList_DragShowNolock
ImageList_Create
GetFileTitleA
ChooseColorA
GetSaveFileNameA
FindTextA
GetOpenFileNameA
GetBitmapBits
GetPixel
BitBlt
CreateBitmap
SetTextColor
GetDCOrgEx
GetDIBColorTable
SaveDC
SetPixel
RestoreDC
EnumCalendarInfoA
GetCurrentProcessId
GlobalFindAtomA
FormatMessageA
LoadResource
GetStringTypeA
lstrlenA
GetFullPathNameA
GetStringTypeW
WaitForSingleObject
SetEvent
GetUserDefaultLCID
lstrcpyA
GetStartupInfoA
GetLocaleInfoA
lstrcatA
GlobalAlloc
LoadLibraryExA
GetVersion
DeleteFileA
SetEndOfFile
GetLastError
lstrcmpiA
GlobalDeleteAtom
GetEnvironmentStrings
GetOEMCP
GetCommandLineA
GetCurrentThread
GetCurrentProcess
ExitThread
WriteFile
LocalAlloc
GetStdHandle
ReadFile
SetLastError
SetFilePointer
GetCPInfo
FindFirstFileA
RaiseException
GetFileAttributesA
GetCurrentThreadId
LocalReAlloc
InitializeCriticalSection
CloseHandle
GetModuleHandleA
SetThreadLocale
LoadLibraryA
CreateFileA
GetFileSize
GlobalAddAtomA
CompareStringA
GetACP
GetDateFormatA
ResetEvent
GetFileType
FreeResource
MulDiv
SizeofResource
MoveFileA
ExitProcess
Sleep
lstrcmpA
SetHandleCount
CreateThread
lstrcpynA
LockResource
SetErrorMode
GetTickCount
HeapDestroy
EnterCriticalSection
HeapFree
GetLocalTime
VirtualFree
GetProcessHeap
VirtualQuery
GetDiskFreeSpaceA
GetModuleFileNameA
FindClose
DeleteCriticalSection
WideCharToMultiByte
VirtualAllocEx
FindResourceA
VirtualAlloc
LocalFree
_acmdln
wcstol
strlen
pow
tolower
strncmp
rand
strcmp
time
memmove
memcpy
wcsncmp
clock
mbstowcs
swprintf
CoTaskMemFree
CoUninitialize
OleRegGetUserType
CoCreateInstanceEx
CLSIDFromProgID
CreateStreamOnHGlobal
OleRun
StringFromIID
CoRevokeClassObject
SafeArrayGetElement
GetErrorInfo
RegisterTypeLib
VariantCopyInd
SysFreeString
SysReAllocStringLen
VariantChangeType
OleLoadPicture
SHDeleteKeyA
SHSetValueA
SHDeleteValueA
SHGetValueA
PathIsDirectoryA
SHStrDupA
File identification
MD5 32ba14db56e2b0439a7dc8c76450f58d
SHA1 33dd7de0ab7837044eccd1f1ea1bc72bf01a31ff
SHA256 231b6d2ee952f027f9696f42a1b92633949d8b0cba0528e3531c9bda11bbe2c9
ssdeep
1536:0D5SHxkxBS7tY437+8zkSfxyTATZWyjU9OpJdGCLSbPDgg3GYcMRSj:0tSRkxg7JCSp0EZW1KJ3CDLPR

File size 105.0 KB ( 107520 bytes )
File type unknown
Magic literal

TrID Win32 Executable MS Visual C++ (generic) (63.0%)
Win32 Executable Generic (14.2%)
Win32 Dynamic Link Library (generic) (12.6%)
Clipper DOS Executable (3.3%)
Generic Win/DOS Executable (3.3%)
VirusTotal metadata
First submission 2010-04-08 02:07:29 UTC ( 7 years, 7 months ago )
Last submission 2010-04-08 02:07:29 UTC ( 7 years, 7 months ago )
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!