× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 4fedd2db356102ba1f768e10296062e8eca6cabef38cef14fd7e4c66538f26f4
Detection ratio: 33 / 41
Analysis date: 2010-05-19 09:18:21 UTC ( 8 years, 4 months ago )
Antivirus Result Update
a-squared Trojan-Spy.Win32.Insain!IK 20100510
AhnLab-V3 Win-Trojan/Xema.variant 20100518
AntiVir TR/Spy.Agent.NF 20100519
Antiy-AVL Trojan/Win32.Insain.gen 20100518
Avast Win32:Witkinat-B 20100518
Avast5 Win32:Witkinat-B 20100518
AVG Generic17.AXYY 20100518
BitDefender Trojan.Generic.KD.5031 20100519
CAT-QuickHeal Trojan.Witkinat.a 20100519
ClamAV Trojan.Dropper-24748 20100519
Comodo TrojWare.Win32.WintKinat.A 20100519
F-Secure Trojan.Generic.KD.5031 20100519
Fortinet W32/Insain.RH!tr 20100518
GData Trojan.Generic.KD.5031 20100519
Ikarus Trojan-Spy.Win32.Insain 20100519
Jiangmin TrojanSpy.Insain.fe 20100519
Kaspersky Trojan-Spy.Win32.Insain.rh 20100519
McAfee Witkinat 20100519
McAfee-GW-Edition Witkinat 20100518
Microsoft Trojan:Win32/Witkinat.A 20100518
NOD32 probably a variant of Win32/Witkinat.C 20100519
nProtect Trojan.Generic.KD.5031 20100519
Panda Generic Trojan 20100518
PCTools Trojan-PSW.Generic 20100519
Prevx High Risk Information Stealer 20100519
Sophos AV Mal/Generic-L 20100519
Sunbelt Trojan.Win32.Generic!BT 20100519
Symantec Infostealer 20100519
TheHacker Trojan/Spy.Insain.rh 20100517
TrendMicro TROJ_INSANE.SME 20100519
TrendMicro-HouseCall TROJ_INSANE.SME 20100519
VBA32 Trojan-Spy.Win32.Insain.rh 20100519
VirusBuster Trojan.Witkinat.FX 20100518
Authentium 20100519
DrWeb 20100519
eSafe 20100517
eTrust-Vet 20100518
F-Prot 20100518
Norman 20100518
Rising 20100519
ViRobot 20100519
The file being studied is a Portable Executable file! More specifically, it is a unknown file.
PE header basic information
Number of sections 3
PE sections
PE imports
SetTextColor
GetObjectA
GdiGetBatchLimit
SelectObject
DeleteDC
SetBkColor
EndPage
CreateCompatibleDC
lstrcatA
SetLastError
LoadLibraryA
GetProcAddress
GlobalFindAtomA
OutputDebugStringA
GlobalAddAtomA
FindResourceA
GlobalDeleteAtom
lstrlenA
MessageBeep
GetTopWindow
MessageBoxA
DialogBoxParamA
LoadIconA
CharUpperA
IsIconic
SetFocus
CharNextA
DestroyIcon
FlashWindow
RegisterWindowMessageA
ShowWindow
SetCursorPos
GetSysColorBrush
SetTimer
ShowCursor
GetMessagePos
SetWindowTextA
GetDesktopWindow
GetParent
File identification
MD5 7cbe9f53d7586794c1acbbfb96f9389b
SHA1 f906d57bf374b80d4e85b5b069bf68b6c5d507fa
SHA256 4fedd2db356102ba1f768e10296062e8eca6cabef38cef14fd7e4c66538f26f4
ssdeep
768:UtFIBVNdDd4G9Hhdv7UeEIBtnY7pT13D2JhSmj6e+fy7:UtFIR4G9BpU4nGpleT6E

File size 44.4 KB ( 45440 bytes )
File type unknown
Magic literal

TrID Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
VirusTotal metadata
First submission 2010-04-12 07:17:43 UTC ( 8 years, 5 months ago )
Last submission 2010-05-19 09:18:21 UTC ( 8 years, 4 months ago )
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!