× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 5970305d86f2d7fea4f2ab3d6f6ffceef1994a1e100243d951b8f158b1b860f4
Detection ratio: 5 / 40
Analysis date: 2010-04-23 06:16:41 UTC ( 8 years, 7 months ago )
Antivirus Result Update
McAfee FakeAlert-WwSec.e 20100423
Panda Suspicious file 20100422
Prevx Medium Risk Malware Downloader 20100423
Sunbelt FraudTool.Win32.SecurityTool (v) 20100423
Symantec Trojan.FakeAV!gen27 20100423
a-squared 20100423
AhnLab-V3 20100423
AntiVir 20100422
Antiy-AVL 20100421
Authentium 20100423
Avast 20100422
Avast5 20100422
AVG 20100422
BitDefender 20100423
CAT-QuickHeal 20100423
ClamAV 20100423
Comodo 20100423
DrWeb 20100423
eSafe 20100422
eTrust-Vet 20100422
F-Prot 20100423
F-Secure 20100423
Fortinet 20100421
GData 20100423
Ikarus 20100423
Jiangmin 20100422
Kaspersky 20100423
McAfee-GW-Edition 20100422
Microsoft 20100422
NOD32 20100422
Norman 20100422
nProtect 20100422
PCTools 20100423
Rising 20100422
Sophos AV 20100423
TheHacker 20100422
TrendMicro 20100422
VBA32 20100422
ViRobot 20100422
VirusBuster 20100422
The file being studied is a Portable Executable file! More specifically, it is a unknown file.
PE header basic information
Number of sections 4
PE sections
PE imports
LockResource
GetLastError
SetThreadIdealProcessor
TransactNamedPipe
GetStringTypeExA
ConvertDefaultLocale
GetModuleHandleA
HeapFree
InterlockedIncrement
SetLocaleInfoA
GetCurrentThread
SetFilePointer
ReadFile
OpenWaitableTimerA
InterlockedDecrement
CloseHandle
FreeResource
UpdateResourceA
GetUserDefaultLCID
ConnectNamedPipe
HeapAlloc
CreateFileA
GetFileAttributesExA
ExitProcess
OpenThread
RegisterWaitForSingleObject
FindResourceA
CreateNamedPipeA
LoadResource
SetThreadPriority
SetThreadContext
GetProcessHeap
File identification
MD5 a9c497511330afc276c13818ee593384
SHA1 a59e18550c3026ab684a4290c5cd4591dae51171
SHA256 5970305d86f2d7fea4f2ab3d6f6ffceef1994a1e100243d951b8f158b1b860f4
ssdeep
24576:r7BEPeso5snbw1ImnaT5ZNZlsQunBaWd:v6HoZC5ZNGn

File size 983.5 KB ( 1007104 bytes )
File type unknown
Magic literal

TrID Win32 Executable Generic (68.0%)
Generic Win/DOS Executable (15.9%)
DOS Executable Generic (15.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
VirusTotal metadata
First submission 2010-04-23 06:16:41 UTC ( 8 years, 7 months ago )
Last submission 2010-04-23 06:16:41 UTC ( 8 years, 7 months ago )
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!