× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 7610cbbcdb965687779a67177c78c9da16ab1c536a40f3d5926a91c1950feb2d
Detection ratio: 29 / 41
Analysis date: 2010-02-21 03:16:59 UTC ( 9 years, 3 months ago )
Antivirus Result Update
a-squared Trojan.Win32.FakeAV!IK 20100220
AntiVir TR/Drop.RKit.yxw 20100219
Antiy-AVL Packed/Win32.Krap.gen 20100219
Authentium W32/FakeAlert.FB.gen!Eldorado 20100220
Avast Win32:Malware-gen 20100221
AVG Generic16.AZQI 20100221
BitDefender Trojan.Generic.3084690 20100221
CAT-QuickHeal Trojan.Agent.ATV 20100219
Comodo TrojWare.Win32.Trojan.Agent.Gen 20100221
eTrust-Vet Win32/FakeCodec!generic 20100220
F-Prot W32/FakeAlert.FB.gen!Eldorado 20100220
GData Trojan.Generic.3084690 20100221
Ikarus Trojan.Win32.FakeAV 20100220
Jiangmin Packed.Krap.bjrj 20100220
K7AntiVirus Trojan.Win32.Malware.1 20100220
Kaspersky Packed.Win32.Krap.an 20100217
McAfee+Artemis Artemis!604BDC75B799 20100220
McAfee-GW-Edition Heuristic.LooksLike.Trojan.Fakealert.H 20100219
Microsoft Trojan:Win32/Alureon.CO 20100221
NOD32 a variant of Win32/Kryptik.BZM 20100220
PCTools Trojan.Farfli 20100220
Prevx Medium Risk Malware 20100221
Rising Packer.Win32.Agent.GEN 20100211
Sophos AV Mal/Generic-A 20100221
Sunbelt Trojan.Win32.Generic!BT 20100220
Symantec Trojan.Farfli 20100221
TheHacker Trojan/FakeAV.gen 20100220
TrendMicro TROJ_FAKEAL.SMDP 20100220
VirusBuster Trojan.DR.RKit.M 20100220
AhnLab-V3 20100220
ClamAV 20100221
DrWeb 20100220
eSafe 20100218
F-Secure 20100219
Fortinet 20100220
McAfee 20100220
Norman 20100220
nProtect 20100220
Panda 20100220
VBA32 20100221
ViRobot 20100219
The file being studied is a Portable Executable file! More specifically, it is a unknown file.
PE header basic information
Number of sections 4
PE sections
PE imports
CryptCreateHash
RegEnumValueA
GetLengthSid
RegSetValueA
CryptGenRandom
RegEnumKeyA
GetTokenInformation
RegEnumKeyExA
ChangeServiceConfigW
IsTextUnicode
IsValidAcl
RegFlushKey
RegQueryInfoKeyA
OpenThreadToken
IsValidSid
RegisterTraceGuidsW
RegSetValueExW
InitializeAcl
RegDeleteValueA
ResetEvent
ExitProcess
IsBadWritePtr
GlobalAlloc
GetExitCodeProcess
GetConsoleMode
GetCurrentThreadId
InitializeCriticalSectionAndSpinCount
GetVersionExW
WaitForSingleObject
GetTickCount
GetCurrentProcessId
LoadLibraryExA
SetFilePointer
GetModuleFileNameA
GetDriveTypeW
GetCommandLineW
GetSystemTimeAsFileTime
GetModuleHandleA
UnhandledExceptionFilter
ReleaseSemaphore
GetFileAttributesA
VirtualAlloc
__set_app_type
floor
__p__iob
__2@YAPAXI@Z
swprintf
_access
rand
strlen
__p__osver
malloc
__p__commode
srand
_rotr
iswalpha
bsearch
fseek
isleadbyte
_snprintf
fprintf
__setusermatherr
_ftol
_finite
ceil
_initterm
__p__fmode
_ltow
_isatty
CoRevertToSelf
CLSIDFromProgID
OleUninitialize
CoReleaseMarshalData
GetHGlobalFromStream
StgIsStorageFile
StgCreateDocfileOnILockBytes
OleLoadFromStream
CoRetireServer
CoGetObjectContext
MkParseDisplayName
CoUninitialize
StringFromIID
CoGetClassObject
GetWindowDC
IsIconic
DragObject
IsChild
RegisterClassExA
GetDC
GetSysColor
GetWindowTextW
GetWindowLongA
GetSysColorBrush
SetRect
EnableWindow
GetWindow
CreateWindowExA
PtInRect
LoadIconW
GetFocus
ReleaseDC
GetCapture
File identification
MD5 604bdc75b799ee268bfdba1172f12559
SHA1 23353bf1596c4d3fc8727f000b75fb159d1c11c7
SHA256 7610cbbcdb965687779a67177c78c9da16ab1c536a40f3d5926a91c1950feb2d
ssdeep
3072:tOpTav+7KCqQhCJSko9hSU2r/YI4fKI/vHymyWTfx:MpTff9AwI4/nSj

File size 146.0 KB ( 149504 bytes )
File type unknown
Magic literal

TrID Generic Win/DOS Executable (49.9%)
DOS Executable Generic (49.8%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
VirusTotal metadata
First submission 2010-01-20 00:55:12 UTC ( 9 years, 4 months ago )
Last submission 2010-02-21 03:16:59 UTC ( 9 years, 3 months ago )
Behaviour characterization
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!