× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 446d5913b7d8feb96a0fcd80c12660c5c2cf5167c2f3771696d72e614a17ece1
Detection ratio: 24 / 42
Analysis date: 2010-08-07 09:25:08 UTC ( 8 years, 5 months ago )
Antivirus Result Update
AhnLab-V3 Downloader/Win32.Bredolab 20100806
AntiVir BDS/Bredolab.gnp 20100806
AVG Cryptic.ATE 20100806
BitDefender Gen:Variant.Bredo.2 20100807
ClamAV Trojan.GenericBL.3232 20100807
DrWeb Trojan.Sniff.123 20100807
Emsisoft Trojan-Spy.Win32.Fitmu!IK 20100807
F-Secure Gen:Variant.Bredo.2 20100807
GData Gen:Variant.Bredo.2 20100807
Ikarus Trojan-Spy.Win32.Fitmu 20100807
McAfee Artemis!1563DDAFC7A7 20100807
McAfee-GW-Edition Artemis!1563DDAFC7A7 20100806
Microsoft TrojanSpy:Win32/Fitmu.B 20100807
NOD32 a variant of Win32/Kryptik.FVM 20100806
Norman W32/Bredolab.B!genr 20100806
nProtect Gen:Variant.Bredo.2 20100806
Panda Trj/CI.A 20100806
PCTools Downloader.Generic 20100807
Rising Trojan.Win32.Generic.5224588B 20100807
Sophos AV Mal/EncPk-QA 20100807
Sunbelt Trojan.Win32.Generic.pak!cobra 20100807
Symantec Downloader 20100807
TrendMicro TROJ_BREDOLAB.WV 20100807
TrendMicro-HouseCall TROJ_BREDOLAB.WV 20100807
Antiy-AVL 20100806
Authentium 20100807
Avast 20100806
Avast5 20100806
CAT-QuickHeal 20100807
Comodo 20100806
eSafe 20100805
eTrust-Vet 20100807
F-Prot 20100807
Fortinet 20100807
Jiangmin 20100807
Kaspersky 20100807
Prevx 20100807
SUPERAntiSpyware 20100807
TheHacker 20100807
VBA32 20100804
ViRobot 20100807
VirusBuster 20100806
The file being studied is a Portable Executable file! More specifically, it is a unknown file.
PE header basic information
Number of sections 4
PE sections
PE imports
RegQueryValueExA
RegCreateKeyExA
GetUserNameA
RegOpenKeyExA
IsTextUnicode
RegCloseKey
IsValidCodePage
DeleteFileA
GetDriveTypeA
GetCurrentThreadId
CloseHandle
FreeLibrary
Sleep
GetCommandLineA
GetModuleHandleA
GetProcessTimes
ExitThread
VirtualAlloc
GetCurrentProcessId
GetThreadPriority
GetCurrentProcess
GetCurrentThread
IsDebuggerPresent
LoadLibraryA
GetModuleFileNameA
GetStartupInfoA
TlsAlloc
BeginPaint
GetWindow
GetActiveWindow
ShowWindow
ReleaseDC
OpenIcon
GetFocus
GetSystemMetrics
GetWindowTextLengthA
GetClassLongA
GetWindowDC
GetForegroundWindow
UpdateWindow
CreateWindowExA
GetWindowTextA
RegisterClassA
GetWindowLongA
GetDC
IsWindowVisible
VerLanguageNameA
VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA
File identification
MD5 1563ddafc7a79f7d0a2e4bdd64abfa69
SHA1 98a2f708d80735ed23e372c5b77d1ebdf410fc39
SHA256 446d5913b7d8feb96a0fcd80c12660c5c2cf5167c2f3771696d72e614a17ece1
ssdeep
6144:UDLuX/dmMISeYa8x6N2boiHKBBdbQt+6W4SrIpMzG/HHHHHHHHp:KyPdmXmQGKBBdb9X4HHHHHHHH

File size 245.0 KB ( 250880 bytes )
File type unknown
Magic literal

TrID Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
VirusTotal metadata
First submission 2010-08-04 12:06:43 UTC ( 8 years, 5 months ago )
Last submission 2010-08-07 09:25:08 UTC ( 8 years, 5 months ago )
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!