× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 442486a22541eadb9573cb0b1681781e419776ccf47d00d314d5e67a8a6e0d9e
File name: aa
Detection ratio: 38 / 41
Analysis date: 2010-05-22 07:11:54 UTC ( 9 years ago )
Antivirus Result Update
a-squared Trojan-Dropper.Win32.VB!IK 20100510
AhnLab-V3 Win-Trojan/Koobface.38912 20100521
AntiVir TR/Dropper.Gen 20100521
Antiy-AVL Trojan/Win32.VB.gen 20100521
Authentium W32/Trojan2.MEWH 20100522
Avast Win32:Malware-gen 20100522
Avast5 Win32:Malware-gen 20100522
AVG Generic16.BMFB 20100522
BitDefender Trojan.Generic.3166666 20100522
CAT-QuickHeal Trojan.VB.abgz 20100521
Comodo TrojWare.Win32.Trojan.Agent.Gen 20100522
DrWeb Trojan.Siggen1.701 20100521
eSafe Win32.TRDropper 20100520
eTrust-Vet Win32/Koobface.KI 20100521
F-Prot W32/Trojan2.MEWH 20100522
F-Secure Trojan.Generic.3166666 20100522
Fortinet W32/VB.ABGZ!tr 20100521
GData Trojan.Generic.3166666 20100522
Ikarus Trojan-Dropper.Win32.VB 20100521
Jiangmin Trojan/VB.ueq 20100521
Kaspersky Trojan.Win32.VB.abgz 20100522
McAfee Generic VB.cy 20100522
McAfee-GW-Edition Heuristic.BehavesLike.Win32.Downloader.D 20100521
Microsoft TrojanDropper:Win32/Koobface.I 20100521
NOD32 Win32/Koobface.NCK 20100521
Norman W32/Koobface.GEP 20100521
nProtect Trojan.Generic.3166666 20100521
Panda Trj/Downloader.XKB 20100521
PCTools Trojan.Generic 20100522
Prevx Medium Risk Malware 20100522
Rising Trojan.Win32.Generic.51FAB1AD 20100522
Sophos AV Troj/Agent-MMO 20100522
Sunbelt Win32.Malware!Drop 20100522
Symantec Trojan Horse 20100522
TrendMicro TROJ_VB.JKA 20100522
TrendMicro-HouseCall TROJ_VB.JKA 20100522
VBA32 SScope.Trojan.VB.0155 20100521
VirusBuster Trojan.VB.IMOH 20100521
ClamAV 20100522
TheHacker 20100520
ViRobot 20100522
The file being studied is a Portable Executable file! More specifically, it is a unknown file.
PE header basic information
Number of sections 3
PE sections
PE imports
LoadLibraryA
GetProcAddress
VirtualProtect
VirtualAlloc
VirtualFree
ExitProcess
1 more function(s) imported by ordinal)
CallWindowProcA
File identification
MD5 f655f4d9d2b7b492d4269b64c71e5152
SHA1 4ba138b5ee886c93786d9dad95706875d6e90e83
SHA256 442486a22541eadb9573cb0b1681781e419776ccf47d00d314d5e67a8a6e0d9e
ssdeep
768:L95ufHqXUTGuYRTE66RqJsoHHsrkrESSLm5oL21UrNIfA:L95ufqPuYRTET0J/M8ReSyJWA

File size 38.0 KB ( 38912 bytes )
File type unknown
Magic literal

TrID UPX compressed Win32 Executable (43.8%)
Win32 EXE Yoda's Crypter (38.1%)
Win32 Executable Generic (12.2%)
Generic Win/DOS Executable (2.8%)
DOS Executable Generic (2.8%)
VirusTotal metadata
First submission 2010-02-15 20:05:05 UTC ( 9 years, 3 months ago )
Last submission 2010-05-22 07:11:54 UTC ( 9 years ago )
File names BapD.dot
aa
YR6ba.7z
Behaviour characterization
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!