× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 2b808bf1a0783225d847bef7e287b138321233f492a5401e5ac70d5c83b0bcf7
File name: setup_build6_186.exe
Detection ratio: 2 / 41
Analysis date: 2009-09-23 09:34:03 UTC ( 4 years, 7 months ago ) View latest
Antivirus Result Update
DrWeb Trojan.Fakealert.4895 20090923
Symantec Downloader 20090923
AVG 20090922
AhnLab-V3 20090923
AntiVir 20090922
Antiy-AVL 20090923
Authentium 20090922
Avast 20090921
BitDefender 20090923
CAT-QuickHeal 20090922
ClamAV 20090923
Comodo 20090923
F-Prot 20090922
F-Secure 20090923
Fortinet 20090922
GData 20090923
Ikarus 20090923
Jiangmin 20090923
K7AntiVirus 20090922
Kaspersky 20090923
McAfee 20090922
McAfee+Artemis 20090922
McAfee-GW-Edition 20090923
Microsoft 20090923
NOD32 20090922
Norman 20090922
PCTools 20090922
Panda 20090922
Prevx 20090923
Rising 20090923
Sophos 20090923
Sunbelt 20090923
TheHacker 20090922
TrendMicro 20090923
VBA32 20090923
ViRobot 20090923
VirusBuster 20090922
a-squared 20090923
eSafe 20090922
eTrust-Vet 20090923
nProtect 20090922
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file.
PE header basic information
Number of sections 5
PE sections
PE imports
GetTokenInformation
RegSetValueExA
AllocateAndInitializeSid
RegQueryValueExA
RegCloseKey
RegOpenKeyExW
RegCreateKeyExW
InitializeAcl
ChangeServiceConfig2A
LookupPrivilegeValueA
RegEnumKeyExA
GetSecurityDescriptorControl
InitializeSecurityDescriptor
RegOpenKeyW
SetRectRgn
GdiAlphaBlend
EnumMetaFile
BitBlt
SetPaletteEntries
UnrealizeObject
GetPixel
GetEnhMetaFileBits
PlayMetaFile
ExtTextOutA
GetTextCharset
CloseFigure
GetModuleHandleW
SetLastError
WriteFile
SetCurrentDirectoryW
Sleep
lstrcmpA
VirtualAlloc
GetStringTypeA
ExitProcess
_snprintf
fprintf
__setusermatherr
_exit
fseek
_local_unwind2
_wcsnicmp
wcsncat
_wfsopen
_wmkdir
_except_handler3
_ltow
wcstok
GetFileVersionInfoA
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueA
File identification
MD5 87136fc7e41ebe0b122aa98590630ee6
SHA1 f2edb0a7feae32ee665e76bec53c8f6b5af0d671
SHA256 2b808bf1a0783225d847bef7e287b138321233f492a5401e5ac70d5c83b0bcf7
ssdeep
6144:JW7rZck3+92/EbJJHHsSNeX1ap3sqzzGczSo:crSUOJx3Aap37zDzSo

File size 210.5 KB ( 215552 bytes )
File type Win32 EXE
Magic literal

TrID Win32 Executable Generic (38.4%)
Win32 Dynamic Link Library (generic) (34.2%)
Clipper DOS Executable (9.1%)
Generic Win/DOS Executable (9.0%)
DOS Executable Generic (9.0%)
VirusTotal metadata
First submission 2009-09-22 21:00:56 UTC ( 4 years, 7 months ago )
Last submission 2011-08-15 01:13:20 UTC ( 2 years, 8 months ago )
File names 87136FC7E41EBE0B122AA98590630EE6
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!