× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 56e7d86bfb902817d5637b4727c0734dbcaffb9b7d59b4fc226eef318c398e23
File name: IHLoader.exe
Detection ratio: 33 / 42
Analysis date: 2012-06-11 20:28:43 UTC ( 6 years, 7 months ago ) View latest
Antivirus Result Update
AhnLab-V3 Packed/Win32.Vmpbad 20120611
AntiVir TR/Black.Gen2 20120611
Antiy-AVL Trojan/Win32.Genome.gen 20120611
Avast Win32:PUP-gen [PUP] 20120611
AVG Win32/NSAnti 20120611
BitDefender Gen:Trojan.Heur.RP.yG0@a0GPGHgi 20120611
CAT-QuickHeal (Suspicious) - DNAScan 20120611
Comodo UnclassifiedMalware 20120611
DrWeb Trojan.Click2.25350 20120611
Emsisoft Virus.Win32.NSAnti!IK 20120611
eSafe Win32.TRBlack 20120610
F-Secure Gen:Trojan.Heur.RP.yG0@a0GPGHgi 20120611
Fortinet W32/Packed_VMProtect.AAH 20120611
GData Gen:Trojan.Heur.RP.yG0@a0GPGHgi 20120611
Ikarus Virus.Win32.NSAnti 20120611
Jiangmin Trojan/Generic.abmwf 20120611
K7AntiVirus Riskware 20120611
Kaspersky Trojan.Win32.Genome.afjau 20120611
McAfee Generic.dx!b2br 20120611
McAfee-GW-Edition Generic.dx!b2br 20120611
Microsoft VirTool:Win32/Obfuscator.XZ 20120607
NOD32 a variant of Win32/Packed.VMProtect.AAH 20120611
Norman W32/Troj_Generic.BFFRR 20120611
Panda Generic Trojan 20120611
PCTools HeurEngine.Vmpbad 20120611
Sophos AV Mal/Behav-363 20120611
Symantec Packed.Vmpbad!gen4 20120611
TheHacker Trojan/Genome.afjau 20120611
TrendMicro TROJ_GEN.R47C8DI 20120611
TrendMicro-HouseCall TROJ_GEN.R47C8DI 20120610
VBA32 Trojan.Genome.afjau 20120611
VIPRE VirTool.Win32.Obfuscator.XZ (v) 20120611
VirusBuster Trojan.Packed!ggD/BhjXWV8 20120611
ByteHero 20120531
ClamAV 20120611
Commtouch 20120611
F-Prot 20120611
nProtect 20120611
Rising 20120611
SUPERAntiSpyware 20120609
TotalDefense 20120611
ViRobot 20120611
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (C) 2011

Product Infinity Loader
Original name IHLoader.exe
Internal name VIPLoader
File version 1.7.1.1
Description Infinity Loader
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2012-04-15 17:58:50
Entry Point 0x0007A98C
Number of sections 8
PE sections
PE imports
CryptHashData
SetTextColor
GetAdaptersInfo
LocalFree
GetConsoleMode
LocalAlloc
GetModuleHandleA
ExitProcess
LoadLibraryA
GetModuleFileNameA
VariantClear
SHGetFolderPathA
MessageBoxA
GetDlgItemTextA
InternetSetOptionA
CoSetProxyBlanket
Number of PE resources by type
RT_ICON 12
RT_DIALOG 5
EXE 1
RT_MANIFEST 1
RT_VERSION 1
PNG 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 22
PE resources
ExifTool file metadata
SubsystemVersion
5.1

LinkerVersion
10.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
1.5.1.1

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
252928

EntryPoint
0x7a98c

OriginalFileName
IHLoader.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright (C) 2011

FileVersion
1.7.1.1

TimeStamp
2012:04:15 18:58:50+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
VIPLoader

ProductVersion
1.7.1.1

FileDescription
Infinity Loader

OSVersion
5.1

FileOS
Windows NT 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
InfinityHacks

CodeSize
107520

ProductName
Infinity Loader

ProductVersionNumber
1.5.1.1

FileTypeExtension
exe

ObjectFileType
Executable application

Execution parents
Compressed bundles
File identification
MD5 42f13590a92605c353051337817fbb61
SHA1 3f7fe17c8f8e4fbb4188cbf0d36ef546fc08237c
SHA256 56e7d86bfb902817d5637b4727c0734dbcaffb9b7d59b4fc226eef318c398e23
ssdeep
6144:dukOntaJWH4Xb9QFjRgdRZ/Z5acvOHgd3aqFHB2fH3aMnM7b3TOCD/tNtAYL:EpQJVXEmdLx5z2AVB2fXa3nbntA

authentihash c2dee569d7905cbbdecf75cddb98f07565c11dfc6e43555121fd10dfc1f48f83
imphash 54aa8a75e24b2b2dfd621448fb88fefd
File size 399.0 KB ( 408576 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (67.4%)
Win32 Dynamic Link Library (generic) (14.2%)
Win32 Executable (generic) (9.7%)
Generic Win/DOS Executable (4.3%)
DOS Executable Generic (4.3%)
Tags
peexe

VirusTotal metadata
First submission 2012-04-17 15:38:31 UTC ( 6 years, 9 months ago )
Last submission 2016-01-22 05:37:01 UTC ( 2 years, 12 months ago )
File names MIX.3D.exe
file-3866829_exe
42f13590a92605c353051337817fbb61
VIPLoader
InfinityHacks.exe
E06C7A970018CD7B3C1306E967A4B500B85E532E.exe
IHLoader.exe
file
56e7d86bfb902817d5637b4727c0734dbcaffb9b7d59b4fc226eef318c398e23.vir
JjQZ3877.docm
smona_56e7d86bfb902817d5637b4727c0734dbcaffb9b7d59b4fc226eef318c398e23.bin
aa
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!