× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 4cd2e550f3aa26fc96d9fb4b5183f3665fccc3d97b6111a31de2ffb41e4eb5fe
File name: EC1EBB410026E2C8F0FF0155C352F7001C00533B.exe
Detection ratio: 6 / 41
Analysis date: 2009-09-30 11:10:34 UTC ( 4 years, 6 months ago ) View latest
Antivirus Result Update
Comodo Heur.Packed.Unknown 20090929
McAfee+Artemis Artemis!16CD89320E2F 20090929
Panda Suspicious file 20090930
Prevx Medium Risk Malware Dropper 20090930
Rising Packer.Win32.Mian007.a 20090930
eSafe Suspicious File 20090929
AVG 20090930
AhnLab-V3 20090929
AntiVir 20090930
Antiy-AVL 20090930
Authentium 20090930
Avast 20090929
BitDefender 20090930
CAT-QuickHeal 20090930
ClamAV 20090930
DrWeb 20090930
F-Prot 20090930
F-Secure 20090930
Fortinet 20090930
GData 20090930
Ikarus 20090930
Jiangmin 20090927
K7AntiVirus 20090929
Kaspersky 20090930
McAfee 20090929
McAfee-GW-Edition 20090930
Microsoft 20090923
NOD32 20090930
Norman 20090929
PCTools 20090929
Sophos 20090930
Sunbelt 20090930
Symantec 20090930
TheHacker 20090930
TrendMicro 20090930
VBA32 20090929
ViRobot 20090930
VirusBuster 20090929
a-squared 20090930
eTrust-Vet 20090929
nProtect 20090930
The file being studied is a Portable Executable file! More specifically, it is a unknown file.
PE header basic information
Number of sections 6
PE sections
PE imports
ImageList_BeginDrag
ImageList_DragMove
ImageList_GetDragImage
ImageList_SetBkColor
ImageList_ReplaceIcon
free
_fpreset
memcpy
strrchr
_fileno
WNetCloseEnum
WNetGetConnectionW
WNetEnumResourceA
WNetOpenEnumA
WNetGetConnectionA
calloc
__dllonexit
_errno
_wtoi
localtime
MCIWndCreateA
CoTaskMemFree
StringFromCLSID
DoDragDrop
OleSetClipboard
ProgIDFromCLSID
AppendMenuW
CopyImage
CreatePopupMenu
CharPrevW
CallWindowProcA
GetIconInfo
EnumChildWindows
GetCapture
LoadCursorA
PostMessageW
GetQueueStatus
DestroyCursor
EnableScrollBar
EqualRect
FindWindowExA
GetScrollRange
wsprintfA
MessageBoxA
GetWindowTextA
InsertMenuA
GetWindowDC
RegisterWindowMessageA
UnregisterHotKey
IsDialogMessageA
LockWindowUpdate
ScrollDC
SetWindowRgn
SetScrollInfo
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA
timeSetEvent
mmioRead
waveOutPrepareHeader
sndPlaySoundA
waveInUnprepareHeader
OpenPrinterA
ClosePrinter
DocumentPropertiesA
EnumPrintersA
WSAStartup
File identification
MD5 16cd89320e2f7772df5b9495806ffe00
SHA1 4e58a12a9f722be0712517a0475fda60a8e94fdc
SHA256 4cd2e550f3aa26fc96d9fb4b5183f3665fccc3d97b6111a31de2ffb41e4eb5fe
ssdeep
3072:QFVh+/cCpy17YSzZzEFjZOGUUyiQ9LYLa8LH6VYA3ek:QMFpxSlUjZvULj90aKHm7

File size 124.0 KB ( 126976 bytes )
File type unknown
Magic literal

TrID Win32 Executable Generic (38.4%)
Win32 Dynamic Link Library (generic) (34.1%)
Win16/32 Executable Delphi generic (9.3%)
Generic Win/DOS Executable (9.0%)
DOS Executable Generic (9.0%)
VirusTotal metadata
First submission 2009-09-30 10:11:55 UTC ( 4 years, 6 months ago )
Last submission 2009-10-23 00:33:58 UTC ( 4 years, 6 months ago )
File names
Behaviour characterization
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!