× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 59948b31c0ec7d9ba51c29b5c47b6219bbebad8d7e926647f508ee51c3ecda5d
File name: 9D5DE2E74CC5B97595261F6997B38539
Detection ratio: 35 / 43
Analysis date: 2011-07-16 22:09:24 UTC ( 7 years, 6 months ago )
Antivirus Result Update
AhnLab-V3 Win-Trojan/Refpron.36864.LV 20110716
AntiVir TR/Click.Refpron.H.342 20110715
Avast Win32:Refpron-BA [Trj] 20110716
Avast5 Win32:Refpron-BA [Trj] 20110716
AVG Clicker.AIXP 20110716
BitDefender Trojan.Generic.4161726 20110716
CAT-QuickHeal TrojanClicker.Refpron.tc 20110716
Commtouch W32/Refpron.H.gen!Eldorado 20110716
Comodo TrojWare.Win32.TrojanClicker.Refpron.~dy06 20110716
DrWeb Trojan.Click.63227 20110716
Emsisoft Trojan-Clicker.Win32.Refpron!IK 20110716
eSafe Win32.GenVB.Refpron 20110714
eTrust-Vet Win32/Refpron.PS 20110715
F-Prot W32/Refpron.H.gen!Eldorado 20110715
F-Secure Trojan.Generic.4161726 20110716
GData Trojan.Generic.4161726 20110716
Ikarus Trojan-Clicker.Win32.Refpron 20110716
Jiangmin TrojanClicker.Refpron.nf 20110714
K7AntiVirus Riskware 20110715
Kaspersky Trojan-Clicker.Win32.Refpron.tc 20110716
McAfee AdClicker-IJ.gen 20110716
McAfee-GW-Edition Heuristic.LooksLike.Trojan.Click.Refpron.I 20110716
Microsoft TrojanClicker:Win32/Refpron.H 20110716
NOD32 Win32/TrojanClicker.VB.NOT 20110716
Norman W32/Clicker.A 20110716
Panda Generic Trojan 20110716
PCTools Trojan.Gen 20110713
Sophos AV Mal/VB-BK 20110716
SUPERAntiSpyware Trojan.Agent/Gen-Koobface[Bonkers] 20110716
Symantec Trojan.Gen 20110716
TheHacker Trojan/Clicker.Refpron.tc 20110716
TrendMicro TROJ_CLIKER.SMA 20110716
TrendMicro-HouseCall TROJ_CLIKER.SMA 20110716
VIPRE Trojan.Win32.Generic!BT 20110716
VirusBuster Trojan.CL.Refpron!yVa2dAelwtw 20110716
Antiy-AVL 20110715
ClamAV 20110716
Fortinet 20110716
nProtect 20110716
Prevx 20110717
Rising 20110715
VBA32 20110715
ViRobot 20110716
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file.
FileVersionInfo properties
Publisher qvrrbfmhtrq utdjmx
Product feig jlgyucb jfph
Original name dbkje.exe
Internal name dbkje
File version 6.02.0006
PE header basic information
Number of sections 3
PE sections
PE imports
MethCallEngine
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ProcCallEngine
16 more function(s) imported by ordinal)
File identification
MD5 9d5de2e74cc5b97595261f6997b38539
SHA1 d14f13fe49862bc444826f9768ff158b8234b5a2
SHA256 59948b31c0ec7d9ba51c29b5c47b6219bbebad8d7e926647f508ee51c3ecda5d
ssdeep
768:sJ9EWK/HWV40sMFuSL/5s06TAfVZjI7Y7ZPJT:sAuV40sMXzIcdV

File size 36.0 KB ( 36864 bytes )
File type Win32 EXE
Magic literal

TrID Win32 Executable Generic (68.0%)
Generic Win/DOS Executable (15.9%)
DOS Executable Generic (15.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
VirusTotal metadata
First submission 2010-05-19 23:32:37 UTC ( 8 years, 8 months ago )
Last submission 2011-07-16 22:09:24 UTC ( 7 years, 6 months ago )
File names 9D5DE2E74CC5B97595261F6997B38539
aa
VuCTWu_.xml
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!