× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 363c22aaf2184718de7b0876aad7399d8ba8461c808495a249d1c33e66c55b40
Detection ratio: 36 / 41
Analysis date: 2010-05-19 06:47:33 UTC ( 8 years ago )
Antivirus Result Update
a-squared Trojan.Win32.Bredolab!IK 20100510
AhnLab-V3 Win-Trojan/Bredolab.24064.EO 20100518
AntiVir BDS/Bredolab.drn.6 20100518
Antiy-AVL Backdoor/Win32.Bredolab.gen 20100518
Authentium W32/Bredolab.T.gen!Eldorado 20100519
Avast Win32:Bredolab-DA 20100518
Avast5 Win32:Bredolab-DA 20100518
AVG BackDoor.Generic12.BDTY 20100518
BitDefender Gen:Variant.Bredo.2 20100519
CAT-QuickHeal Win32.Packed.Krap.x.4 20100519
Comodo TrojWare.Win32.PkdKrap.X 20100519
eTrust-Vet Win32/ASuspect.HDBDA 20100518
F-Prot W32/Bredolab.T.gen!Eldorado 20100518
F-Secure Gen:Variant.Bredo.2 20100519
Fortinet W32/Bredolab.DRN!tr.bdr 20100518
GData Gen:Variant.Bredo.2 20100519
Ikarus Trojan.Win32.Bredolab 20100519
Jiangmin Backdoor/Bredolab.cdq 20100519
Kaspersky Backdoor.Win32.Bredolab.drn 20100519
McAfee BackDoor-EOE 20100519
McAfee-GW-Edition BackDoor-EOE 20100518
Microsoft TrojanDownloader:Win32/Waledac.C 20100518
NOD32 a variant of Win32/Kryptik.DPV 20100519
Norman W32/FakeAV.BI!genr 20100518
nProtect Gen:Variant.Bredo.2 20100518
Panda Trj/Sinowal.DW 20100518
PCTools HeurEngine.MaliciousPacker 20100519
Prevx High Risk Cloaked Malware 20100519
Sophos AV Mal/EncPk-KW 20100519
Sunbelt Packed.Win32.Krap.x (v) 20100519
Symantec Packed.Generic.265 20100519
TheHacker Trojan/Kryptik.dpv 20100517
TrendMicro TROJ_BREDO.SMX 20100519
TrendMicro-HouseCall TROJ_BREDO.SMX 20100519
VBA32 BScope.Trojan.MTA.0328 20100518
VirusBuster Trojan.Bredolab.Gen!Pac.4 20100518
ClamAV 20100519
DrWeb 20100518
eSafe 20100517
Rising 20100518
ViRobot 20100519
The file being studied is a Portable Executable file! More specifically, it is a unknown file.
PE header basic information
Number of sections 4
PE sections
PE imports
GetDeviceCaps
LineTo
SetBkMode
GetBkColor
SelectObject
SetPixel
ExtTextOutA
GetStockObject
SetROP2
CreateCompatibleDC
CreateSolidBrush
GetProcAddress
LoadLibraryA
GetLastError
GetModuleHandleA
GetFileSize
GetStdHandle
LocalFree
CloseHandle
Sleep
GlobalFree
lstrcpyA
GetTickCount
CreateEventA
lstrlenA
_initterm
wcschr
rand
memmove
_exit
__set_app_type
_acmdln
__setusermatherr
exit
__getmainargs
__p__fmode
__p__commode
_except_handler3
_c_exit
toupper
GetClientRect
SetFocus
MessageBoxA
TranslateMessage
BeginPaint
File identification
MD5 73259ad4a723d1bc1b0006449b067ca4
SHA1 a31eb324df5287a3728a532716515dc3382fad70
SHA256 363c22aaf2184718de7b0876aad7399d8ba8461c808495a249d1c33e66c55b40
ssdeep
192:Ugpti6TqUZqtCf/JMGxEdvwNkAXX+EBa7bu2kv89Ch/XJckW:UgzTDqMyVqJBwbcE9GRW

File size 23.5 KB ( 24064 bytes )
File type unknown
Magic literal

TrID Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
VirusTotal metadata
First submission 2010-04-12 07:17:45 UTC ( 8 years, 1 month ago )
Last submission 2010-05-19 06:47:33 UTC ( 8 years ago )
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!