× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 5caa3df48177744ea68ad96f00d528586ca210eb2b8c7deeb0f53e4121aa9968
File name: a7800a8aa5feaf15de2664f5dea80b14
Detection ratio: 30 / 54
Analysis date: 2014-08-29 08:09:29 UTC ( 4 years, 6 months ago )
Antivirus Result Update
Ad-Aware Gen:Variant.Zusy.104312 20140829
AhnLab-V3 Dropper/Win32.Necurs 20140828
AntiVir TR/Crypt.Xpack.83823 20140829
Antiy-AVL Trojan/Win32.Buzus 20140829
Avast Win32:Dropper-gen [Drp] 20140829
AVG Zbot.NFC 20140829
AVware Trojan.Win32.Generic!BT 20140829
BitDefender Gen:Variant.Zusy.104312 20140829
Comodo TrojWare.Win32.Injector.BKJR 20140829
Emsisoft Gen:Variant.Zusy.104312 (B) 20140829
ESET-NOD32 Win32/Spy.Zbot.ACB 20140829
F-Prot W32/Powessere.A.gen!Eldorado 20140829
F-Secure Gen:Variant.Zusy.104312 20140829
Fortinet W32/Zbot.ACB!tr.spy 20140829
GData Gen:Variant.Zusy.104312 20140829
Kaspersky Trojan.Win32.Buzus.tqeq 20140829
Kingsoft Win32.Troj.Generic.a.(kcloud) 20140829
Malwarebytes Trojan.AGent.VXGen 20140829
McAfee Ransom-FMN!A7800A8AA5FE 20140829
McAfee-GW-Edition Artemis!A7800A8AA5FE 20140828
Microsoft PWS:Win32/Zbot.gen!VM 20140829
eScan Gen:Variant.Zusy.104312 20140829
NANO-Antivirus Trojan.Win32.PMax.dehihs 20140829
Norman Kryptik.CEGT 20140828
Panda Trj/Chgt.D 20140828
Qihoo-360 Win32/Trojan.d21 20140829
Sophos AV Mal/Wonton-K 20140829
Tencent Win32.Trojan.Buzus.Lndw 20140829
TrendMicro TROJ_GEN.R0CBC0DHS14 20140829
TrendMicro-HouseCall TROJ_GEN.R0CBC0DHS14 20140829
AegisLab 20140829
Yandex 20140828
Baidu-International 20140829
Bkav 20140828
ByteHero 20140829
CAT-QuickHeal 20140828
ClamAV 20140828
CMC 20140828
Cyren 20140829
DrWeb 20140829
Ikarus 20140829
Jiangmin 20140828
K7AntiVirus 20140828
K7GW 20140828
nProtect 20140828
Rising 20140828
SUPERAntiSpyware 20140828
Symantec 20140829
TheHacker 20140829
TotalDefense 20140828
VBA32 20140828
ViRobot 20140829
Zillya 20140828
Zoner 20140826
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2014-08-26 18:29:35
Entry Point 0x00001D34
Number of sections 4
PE sections
Number of PE resources by type
RT_STRING 7
RT_GROUP_CURSOR 1
RT_FONT 1
RT_CURSOR 1
RT_DIALOG 1
Number of PE resources by language
NEUTRAL 8
ENGLISH US 2
ARABIC SYRIA 1
PE resources
File identification
MD5 a7800a8aa5feaf15de2664f5dea80b14
SHA1 c10f58b7b2545d5594955660b50729a3e6732237
SHA256 5caa3df48177744ea68ad96f00d528586ca210eb2b8c7deeb0f53e4121aa9968
ssdeep
3072:qe/1JJpNH1ysvj3T48tAmxUjlt6crX1i+Fjs6Zst2lHsg3QOCuicebSozk:qm9js8SmA9Q6ycvcut+JI

imphash fbbef5a920689a7632021ccebe78fe19
File size 412.3 KB ( 422203 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (67.3%)
Win32 Dynamic Link Library (generic) (14.2%)
Win32 Executable (generic) (9.7%)
Generic Win/DOS Executable (4.3%)
DOS Executable Generic (4.3%)
Tags
peexe

VirusTotal metadata
First submission 2014-08-29 08:09:29 UTC ( 4 years, 6 months ago )
Last submission 2014-08-29 08:09:29 UTC ( 4 years, 6 months ago )
File names a7800a8aa5feaf15de2664f5dea80b14
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!