× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 82374d3edab1ea7f1454a6ee726acba71e3925444ae9eb0ade64e29381c05feb
File name: graphstudio.exe
Detection ratio: 53 / 56
Analysis date: 2015-07-27 14:04:58 UTC ( 2 years, 7 months ago )
Antivirus Result Update
Ad-Aware Worm.Generic.227218 20150727
Yandex Worm.Koobface.CXL 20150726
AhnLab-V3 Win32/Koobface.worm.60928.B 20150727
ALYac Worm.Generic.227218 20150727
Antiy-AVL Worm[Net]/Win32.Koobface 20150727
Arcabit Worm.Generic.D37792 20150727
Avast Win32:MalOb-FE [Cryp] 20150727
AVG Cryptic.V 20150727
Avira (no cloud) WORM/Koobface.eye 20150727
AVware Worm.Win32.Koobface.Gen.3 (v) 20150727
Baidu-International Worm.Win32.Koobface.AUF 20150727
BitDefender Worm.Generic.227218 20150727
Bkav HW32.Packed.6588 20150727
CAT-QuickHeal Worm.Koobface.rw4 20150727
ClamAV Worm.Koobface-276 20150727
Comodo NetWorm.Win32.Koobface.~R 20150727
Cyren W32/Risk.YYSH-5030 20150727
DrWeb Trojan.Packed.19706 20150727
Emsisoft Worm.Generic.227218 (B) 20150727
ESET-NOD32 Win32/Koobface.NCL 20150727
F-Prot W32/MalwareF.ACSTV 20150727
F-Secure Worm.Generic.227218 20150727
Fortinet W32/Krap.AR!tr 20150727
GData Worm.Generic.227218 20150727
Ikarus Net-Worm.Win32.Koobface 20150727
Jiangmin Worm/Koobface.arm 20150726
K7AntiVirus Trojan ( 00111b3f1 ) 20150727
K7GW Trojan ( 00111b3f1 ) 20150727
Kaspersky Net-Worm.Win32.Koobface.eye 20150727
Kingsoft Worm.Koobface.(kcloud) 20150727
Malwarebytes Trojan.Agent 20150727
McAfee W32/Koobface.worm.gen.e 20150727
McAfee-GW-Edition BehavesLike.Win32.Backdoor.qc 20150726
Microsoft Worm:Win32/Koobface.gen!D 20150727
eScan Worm.Generic.227218 20150727
NANO-Antivirus Trojan.Win32.Koobface.lxyj 20150727
nProtect Worm/W32.Koobface.60928.C 20150727
Panda Generic Malware 20150727
Qihoo-360 Malware.Radar01.Gen 20150727
Rising PE:Trojan.Win32.Generic.11F0231A!300950298 20150722
Sophos AV Mal/Ramnit-ZZ 20150727
SUPERAntiSpyware Trojan.Agent/Gen-Koobface 20150727
Symantec Trojan.Sasfis 20150727
Tencent Win32.Worm-net.Koobface.Lkni 20150727
TheHacker W32/Koobface.eye 20150723
TotalDefense Win32/Koobface.C!generic 20150723
TrendMicro WORM_KUBFACE.SMF 20150727
TrendMicro-HouseCall WORM_KUBFACE.SMF 20150727
VBA32 Malware-Cryptor.Inject.gen 20150727
VIPRE Worm.Win32.Koobface.Gen.3 (v) 20150727
ViRobot Worm.Win32.Net-Koobface.60928.B[h] 20150727
Zillya Worm.Koobface.Win32.5310 20150727
Zoner I-Worm.Koobface.NCL 20150727
AegisLab 20150727
Alibaba 20150727
ByteHero 20150727
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Publisher MONOGRAM Mutimedia s.r.o.
Product MONOGRAM GraphStudio
Original name graphstudio.exe
Internal name graphstudio.exe
File version 0.3.2.0
Description GraphStudio
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2005-05-11 04:07:15
Entry Point 0x00001073
Number of sections 4
PE sections
PE imports
DragQueryFile
ShellExecuteA
wsprintfA
GetWindowTextLengthA
SetWindowTextA
LoadIconA
EndDialog
SetDlgItemTextA
IsDlgButtonChecked
SendMessageA
DialogBoxParamA
MessageBoxA
GetDlgItem
GetWindowTextA
CheckDlgButton
Number of PE resources by type
RT_ICON 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 3
PE resources
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

TimeStamp
2005:05:11 05:07:15+01:00

FileType
Win32 EXE

PEType
PE32

CodeSize
7168

LinkerVersion
4.6

FileTypeExtension
exe

InitializedDataSize
7168

SubsystemVersion
4.0

EntryPoint
0x1073

OSVersion
4.0

ImageVersion
5.1

UninitializedDataSize
43008

File identification
MD5 a17a76e2f0f8343bbd4c49c9eaef83a3
SHA1 9e6798bec7b5276b7b9daa57730c248e1e8180c0
SHA256 82374d3edab1ea7f1454a6ee726acba71e3925444ae9eb0ade64e29381c05feb
ssdeep
1536:hQoFBTYcRpDstAeRwO4mEJzo76TokKt64a6QYAeDy/fA2Z:WaJYcRpKAhO4Bx46EkKI4a6QYWntZ

authentihash 9026df9aad4174298899ad2f2c0a2be7216c744e93d349cdfeb5cee883dd5a17
imphash 250d8026ed9604c3bb2f6a89cf4c252a
File size 59.5 KB ( 60928 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Dynamic Link Library (generic) (43.5%)
Win32 Executable (generic) (29.8%)
Generic Win/DOS Executable (13.2%)
DOS Executable Generic (13.2%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
Tags
peexe

VirusTotal metadata
First submission 2010-02-08 15:48:10 UTC ( 8 years ago )
Last submission 2015-06-12 07:36:53 UTC ( 2 years, 8 months ago )
File names 001551221
A17A76E2F0F8343BBD4C49C9EAEF83A3
graphstudio.exe
aa
HkopqIEYj.lnk
4E7D6D7E00CA6C2AEEA300EB75CE29001E6083BE.exe
index.html@getexe=fb.84.ex
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!