× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 2c63cc8a12d5ecb7e2f9da1069355bd9d26e3c76c45d83ead241d6c40759340a
File name: F5AA17AAD6160B6B70B2379F6C073F39
Detection ratio: 38 / 43
Analysis date: 2011-07-15 01:51:44 UTC ( 7 years, 3 months ago )
Antivirus Result Update
AhnLab-V3 Win-Trojan/Pakes.40448.P 20110714
AntiVir TR/Crypt.ZPACK.Gen 20110714
Avast Win32:FakeAlert-MG [Trj] 20110714
Avast5 Win32:FakeAlert-MG [Trj] 20110714
AVG Generic17.BYPA 20110714
BitDefender Trojan.Generic.KD.12076 20110715
CAT-QuickHeal Trojan.Pakes.oej 20110713
ClamAV Trojan.Agent-164863 20110714
Commtouch W32/Trojan2.MMXP 20110714
Comodo TrojWare.Win32.Trojan.Agent.Gen 20110715
DrWeb Trojan.Inject.8402 20110715
Emsisoft Trojan.Win32.Pakes!IK 20110715
eTrust-Vet Win32/Tnega.CKP 20110714
F-Prot W32/Trojan2.MMXP 20110714
F-Secure Trojan.Generic.KD.12076 20110714
GData Trojan.Generic.KD.12076 20110715
Ikarus Trojan.Win32.Pakes 20110715
Jiangmin Trojan/Pakes.krf 20110714
K7AntiVirus Trojan 20110714
Kaspersky Trojan.Win32.Pakes.oej 20110715
McAfee Generic.dx!ssu 20110715
McAfee-GW-Edition Generic.dx!ssu 20110714
Microsoft Trojan:Win32/Pugeju.gen!A 20110714
NOD32 a variant of Win32/Kryptik.EIK 20110715
Norman W32/Crypt.AJFP 20110714
nProtect Trojan/W32.Agent.40448.JL 20110714
Panda Trj/Pakes.EB 20110714
PCTools Trojan.Gen 20110713
Rising Trojan.Win32.Generic.125DAC0C 20110714
Sophos AV Mal/EncPk-PM 20110715
Symantec Trojan.Gen 20110715
TheHacker Trojan/Pakes.oej 20110714
TrendMicro TROJ_PAKES.ZAE 20110714
TrendMicro-HouseCall TROJ_PAKES.ZAE 20110715
VBA32 Trojan-Injector.162 20110714
VIPRE Trojan.Win32.Agent.abzlz 20110715
ViRobot Trojan.Win32.Pakes.40448.I 20110714
VirusBuster Trojan.Pakes!hlDqRyacoH8 20110714
Antiy-AVL 20110714
eSafe 20110714
Fortinet 20110715
Prevx 20110715
SUPERAntiSpyware 20110715
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file.
PE header basic information
Number of sections 4
PE sections
PE imports
GetProcAddress
LoadLibraryA
LocalAlloc
VirtualProtectEx
LocalFree
LoadResource
FreeResource
GetLastError
FindClose
ExitProcess
FreeLibrary
GetComputerNameW
GetModuleHandleA
GetProcessId
GetStartupInfoA
File identification
MD5 f5aa17aad6160b6b70b2379f6c073f39
SHA1 049285671e707ad594311958b106124cfdb4f21b
SHA256 2c63cc8a12d5ecb7e2f9da1069355bd9d26e3c76c45d83ead241d6c40759340a
ssdeep
768:5DzXA/YPwX8bqYxVd6vVUvd1fazue9mzwNrymtbrNiOS40k:5HA0wX8bqw36vVmd1IBgwpymtNiOS2

File size 39.5 KB ( 40448 bytes )
File type Win32 EXE
Magic literal

TrID Win32 Executable Generic (68.0%)
Generic Win/DOS Executable (15.9%)
DOS Executable Generic (15.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
VirusTotal metadata
First submission 2010-05-15 19:32:19 UTC ( 8 years, 5 months ago )
Last submission 2011-07-15 01:51:44 UTC ( 7 years, 3 months ago )
File names aa
bWqcs1s.odt
9XHeICIs0o.xltx
9yv5T8B.bz2
F5AA17AAD6160B6B70B2379F6C073F39
9yxHFc78lR.7z
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!