× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 7b89c480f25f14b2bc744a141fb252d796bdcd90f77dcff7e4a8bce06963e508
File name: setup_build8_152.exe
Detection ratio: 5 / 41
Analysis date: 2009-09-03 18:20:00 UTC ( 7 years, 9 months ago ) View latest
Antivirus Result Update
AntiVir TR/Dldr.Fake.PS.14 20090903
McAfee-GW-Edition Trojan.Dldr.Fake.PS.14 20090903
Prevx Medium Risk Malware 20090903
Sophos Mal/Behav-321 20090903
TrendMicro TROJ_AGENT.PQAB 20090903
a-squared 20090903
AhnLab-V3 20090903
Antiy-AVL 20090903
Authentium 20090903
Avast 20090903
AVG 20090903
BitDefender 20090903
CAT-QuickHeal 20090902
ClamAV 20090903
Comodo 20090903
DrWeb 20090903
eSafe 20090903
eTrust-Vet 20090903
F-Prot 20090903
F-Secure 20090903
Fortinet 20090903
GData 20090903
Ikarus 20090903
Jiangmin 20090903
K7AntiVirus 20090903
Kaspersky 20090903
McAfee 20090903
McAfee+Artemis 20090903
Microsoft 20090903
NOD32 20090903
Norman 20090902
nProtect 20090903
Panda 20090903
PCTools 20090903
Rising 20090901
Sunbelt 20090902
Symantec 20090903
TheHacker 20090903
VBA32 20090903
ViRobot 20090903
VirusBuster 20090903
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file.
PE header basic information
Number of sections 5
PE sections
PE imports
RegCreateKeyExW
OpenServiceA
RegEnumValueW
OpenSCManagerW
TextOutW
MaskBlt
CreateCompatibleBitmap
CreatePalette
GetTextAlign
GetDIBits
GetEnhMetaFilePaletteEntries
CreatePatternBrush
EnumFontFamiliesExW
GetEnhMetaFileBits
SetEnhMetaFileBits
CreateICW
ScaleWindowExtEx
MaskBlt
lstrcmpW
ReadProcessMemory
ExitProcess
GetTempPathA
MulDiv
VirtualAlloc
FlushFileBuffers
CreateToolhelp32Snapshot
GetEnvironmentVariableA
GetTimeFormatA
GetCommandLineW
VirtualFree
TerminateProcess
WaitForSingleObject
SetCurrentDirectoryA
IsValidLocale
Module32Next
SystemTimeToFileTime
SetEnvironmentVariableA
FreeEnvironmentStringsW
_splitpath
__setusermatherr
__set_app_type
_CxxThrowException
_timezone
isxdigit
strcspn
_chsize
GetFileVersionInfoA
VerQueryValueA
VerQueryValueW
GetFileVersionInfoSizeW
File identification
MD5 aedd952609bd1c6056df337443fb951e
SHA1 8b09fa1e55e5e5501ed5b9f6833e71d04fb12b01
SHA256 7b89c480f25f14b2bc744a141fb252d796bdcd90f77dcff7e4a8bce06963e508
ssdeep
3072:uykUAAEKdIoGPojJI4SBRqZ3YTG7NtkvoRGECNznm+IbmagszuCcTMaZoPt9Y8rR:hYAE0IoQoj4BRk7k8GECNyrb/uC8MeG

File size 257.0 KB ( 263168 bytes )
File type Win32 EXE
Magic literal

TrID Win32 Executable Generic (38.4%)
Win32 Dynamic Link Library (generic) (34.2%)
Clipper DOS Executable (9.1%)
Generic Win/DOS Executable (9.0%)
DOS Executable Generic (9.0%)
VirusTotal metadata
First submission 2009-09-02 19:40:06 UTC ( 7 years, 9 months ago )
Last submission 2011-08-15 02:59:04 UTC ( 5 years, 10 months ago )
File names AEDD952609BD1C6056DF337443FB951E
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!