× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 7acdb05355f53f18b530d226440423a75d01f56480c6d48195008c341534d965
File name: avdistr_75.exe
Detection ratio: 28 / 41
Analysis date: 2010-05-27 23:22:32 UTC ( 4 years, 1 month ago ) View latest
Antivirus Result Update
AVG Downloader.Generic9.BYVN 20100527
AhnLab-V3 Win-Trojan/Fakeav.230400.F 20100527
AntiVir TR/Dldr.FakeAV.ixp 20100527
Authentium W32/FakeAlert.5!Maximus 20100527
Avast Win32:Malware-gen 20100527
Avast5 Win32:Malware-gen 20100527
BitDefender Trojan.Generic.4067233 20100527
DrWeb Trojan.Fakealert.15944 20100527
F-Prot W32/FakeAlert.5!Maximus 20100527
F-Secure Trojan:W32/Agent.DJKA 20100527
GData Trojan.Generic.4067233 20100527
Ikarus Trojan.Win32.FakeAV 20100527
Kaspersky Trojan.Win32.FraudPack.axct 20100527
McAfee Generic FakeAlert!is 20100527
McAfee-GW-Edition Generic FakeAlert!is 20100527
Microsoft Trojan:Win32/FakeXPA 20100527
NOD32 Win32/Adware.Antivirus2009.AE 20100527
Norman W32/Renos.CCHL 20100527
PCTools Trojan.FakeAV 20100527
Panda Generic Trojan 20100527
Prevx Medium Risk Malware 20100527
Rising Trojan.Win32.Generic.52063C01 20100527
Sophos Mal/FakeAV-CX 20100527
Sunbelt Trojan.Win32.Generic!BT 20100527
Symantec Trojan.FakeAV!gen24 20100527
ViRobot Trojan.Win32.FakeXPA.230400.C 20100527
eTrust-Vet Win32/FakeAV.CMH 20100527
nProtect Trojan.Generic.4067233 20100527
Antiy-AVL 20100526
CAT-QuickHeal 20100527
ClamAV 20100527
Comodo 20100525
Fortinet 20100526
Jiangmin 20100527
TheHacker 20100527
TrendMicro 20100527
TrendMicro-HouseCall 20100527
VBA32 20100527
VirusBuster 20100527
a-squared 20100510
eSafe 20100527
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file.
Authenticode signature block
Product babb2__ProductVersion
Original name cbbcbacab
File version 0.2.3.0
PE header basic information
Number of sections 10
PE sections
PE imports
VerFindFileA
ImageList_Remove
ImageList_Create
ImageList_Read
ImageList_Write
ImageList_GetBkColor
ImageList_Destroy
ImageList_Add
ImageList_DragShowNolock
FindResourceA
GlobalAlloc
MoveFileA
MulDiv
ExitThread
CloseHandle
GetCommandLineA
GetLocalTime
EnumCalendarInfoA
LoadLibraryA
GetStringTypeW
GetCurrentProcess
ExitProcess
LocalFree
GetEnvironmentStrings
VirtualAlloc
File identification
MD5 5050804b1eea9e175c6a47e6589d36c4
SHA1 de11415cf268ed9c6bd3268639fb8e1a2159949f
SHA256 7acdb05355f53f18b530d226440423a75d01f56480c6d48195008c341534d965
ssdeep
3072:iDzsjY0XOybpYq1S4mySfT+/y9le4UzeN/AapfNcIl3yBV/wtao6pK+r:id0XOyb2rys6KnN/AAm2AV/AIz

File size 225.0 KB ( 230400 bytes )
File type Win32 EXE
Magic literal

TrID Win32 Executable Generic (68.0%)
Generic Win/DOS Executable (15.9%)
DOS Executable Generic (15.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
VirusTotal metadata
First submission 2010-05-25 09:03:42 UTC ( 4 years, 1 month ago )
Last submission 2011-07-17 07:01:21 UTC ( 2 years, 12 months ago )
File names 5050804B1EEA9E175C6A47E6589D36C4
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!