× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 82f583a340baa5a1dca3c1046588f8df05fb301d8af287adb7c24e67599534b8
File name: 82f583a340baa5a1dca3c1046588f8df05fb301d8af287adb7c24e67599534b8
Detection ratio: 15 / 57
Analysis date: 2015-08-25 16:21:21 UTC ( 3 years, 6 months ago ) View latest
Antivirus Result Update
Ad-Aware Gen:Variant.Symmi.55675 20150825
Arcabit Trojan.Symmi.DD97B 20150825
Avast Win32:Rootkit-gen [Rtk] 20150825
Avira (no cloud) TR/Crypt.ZPACK.177463 20150825
BitDefender Gen:Variant.Symmi.55675 20150825
Bkav HW32.Packed.60E8 20150825
Emsisoft Gen:Variant.Symmi.55675 (B) 20150825
ESET-NOD32 Win32/Spy.Zbot.ABW 20150825
F-Secure Gen:Variant.Symmi.55675 20150825
Fortinet W32/Zbot.ABW!tr.spy 20150825
GData Gen:Variant.Symmi.55675 20150825
Kaspersky Trojan-PSW.Win32.Tepfer.pswwaq 20150825
eScan Gen:Variant.Symmi.55675 20150825
Panda Trj/CI.A 20150825
Sophos AV Mal/Generic-S 20150825
AegisLab 20150825
Yandex 20150822
AhnLab-V3 20150825
Alibaba 20150825
ALYac 20150825
Antiy-AVL 20150825
AVG 20150825
AVware 20150825
Baidu-International 20150825
ByteHero 20150825
CAT-QuickHeal 20150825
ClamAV 20150825
CMC 20150825
Comodo 20150825
Cyren 20150825
DrWeb 20150825
F-Prot 20150825
Ikarus 20150825
Jiangmin 20150823
K7AntiVirus 20150825
K7GW 20150825
Kingsoft 20150825
Malwarebytes 20150825
McAfee 20150825
McAfee-GW-Edition 20150825
Microsoft 20150825
NANO-Antivirus 20150825
nProtect 20150825
Qihoo-360 20150825
Rising 20150824
SUPERAntiSpyware 20150825
Symantec 20150824
Tencent 20150825
TheHacker 20150824
TotalDefense 20150825
TrendMicro 20150825
TrendMicro-HouseCall 20150825
VBA32 20150825
VIPRE 20150825
ViRobot 20150825
Zillya 20150825
Zoner 20150825
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2008-11-13 10:32:04
Entry Point 0x00058C98
Number of sections 4
PE sections
PE imports
ImmSetCompositionStringW
ImmGetConversionStatus
ImmNotifyIME
ImmGetCandidateListW
ImmGetIMEFileNameA
ImmGetStatusWindowPos
ImmGetDescriptionA
ImmEscapeW
ImmCreateContext
ImmGetCompositionStringA
ImmInstallIMEA
ImmEscapeA
ImmGetDescriptionW
ImmGetOpenStatus
ImmEnumRegisterWordA
ImmGetCompositionStringW
ImmGetConversionListW
ImmUnregisterWordW
ImmGetGuideLineA
ImmGetRegisterWordStyleW
ImmGetGuideLineW
ImmRegisterWordA
ImmGetCompositionFontW
ImmEnumRegisterWordW
ImmSetCompositionFontW
ImmIsUIMessageA
ImmConfigureIMEA
ImmSetCompositionWindow
ImmDestroyContext
ImmGetCandidateWindow
ImmConfigureIMEW
ImmGetProperty
ImmSetCompositionFontA
ImmSetStatusWindowPos
ImmUnregisterWordA
ImmReleaseContext
ImmSetOpenStatus
ImmAssociateContext
GetStartupInfoA
GetModuleHandleA
LoadLibraryExW
TransparentBlt
GradientFill
_except_handler3
__p__fmode
_acmdln
_exit
__p__commode
__setusermatherr
exit
_XcptFilter
__getmainargs
_initterm
_controlfp
_adjust_fdiv
__set_app_type
WindowFromAccessibleObject
LresultFromObject
GetRoleTextW
ObjectFromLresult
AccessibleChildren
GetStateTextW
AccessibleObjectFromWindow
GetRoleTextA
RasSetEntryPropertiesA
RasDeleteEntryW
RasGetConnectStatusW
RasRenameEntryW
RasHangUpA
RasCreatePhonebookEntryW
RasGetErrorStringA
RasEnumDevicesA
RasGetEntryPropertiesW
RasGetConnectStatusA
RasDeleteEntryA
RasCreatePhonebookEntryA
RasGetProjectionInfoA
RasEditPhonebookEntryW
RasGetCountryInfoW
SetupAddToSourceListW
SetupDiGetSelectedDriverW
SetupFindFirstLineA
SetupSetDirectoryIdExW
SetupDiSelectOEMDrv
SetupGetMultiSzFieldA
SetupDiGetSelectedDriverA
SetupAddToSourceListA
SetupDiOpenDeviceInfoW
SetupGetMultiSzFieldW
SetupGetInfFileListA
SetupDiDeleteDeviceInfo
SetupQuerySourceListW
SetupOpenInfFileW
SetupQueueDefaultCopyW
SetupDeleteErrorA
SetupDiGetClassInstallParamsA
SetupQuerySourceListA
SetupDiChangeState
SetupSetPlatformPathOverrideW
SetupDiGetHwProfileList
SetupQueueDefaultCopyA
SetupTerminateFileLog
SetupSetPlatformPathOverrideA
SetupDiGetClassDescriptionW
SetupRemoveFromDiskSpaceListA
SetupGetLineCountA
SetupDiInstallClassExA
SetupDiAskForOEMDisk
SetupQueueRenameSectionW
SetupDiClassNameFromGuidExA
SetupDiClassNameFromGuidA
SetupFindFirstLineW
SetupDiCreateDeviceInterfaceRegKeyW
SetupDiClassGuidsFromNameExA
SetupAddToDiskSpaceListW
SetupDiCreateDeviceInterfaceRegKeyA
SetupDiClassNameFromGuidW
SetupGetSourceFileSizeA
SetupDiClassNameFromGuidExW
SetupOpenMasterInf
SetupDiGetDeviceRegistryPropertyW
SetupDiDestroyDriverInfoList
SetupAddToDiskSpaceListA
SetupDiRemoveDeviceInterface
SetupDiSetSelectedDevice
SetupDiGetDriverInfoDetailA
SetupInstallFilesFromInfSectionW
SetupDiRegisterCoDeviceInstallers
SetupGetLineCountW
SetupGetFieldCount
SetupDiGetDriverInfoDetailW
SetupDiSetDriverInstallParamsW
SetupFreeSourceListW
SetupSetDirectoryIdA
SetupDiBuildClassInfoListExW
SetupDiOpenClassRegKeyExA
SetupDiGetHwProfileFriendlyNameW
SetupQuerySpaceRequiredOnDriveW
SetupDiGetDriverInstallParamsW
SetupDiCreateDeviceInterfaceW
SetupAdjustDiskSpaceListA
SetupGetInfInformationW
SetupDiBuildClassInfoListExA
SetupPromptReboot
SetupSetDirectoryIdW
SetupDiDestroyDeviceInfoList
SetupDiBuildDriverInfoList
SetupFreeSourceListA
SetupAdjustDiskSpaceListW
SetupDiGetDriverInstallParamsA
SetupDiCreateDeviceInterfaceA
SetupDiGetClassImageList
SetupQuerySpaceRequiredOnDriveA
SetupGetInfFileListW
SetupGetFileCompressionInfoW
SetupOpenLog
SetupDiSetDeviceInstallParamsA
SetupCommitFileQueueW
SetupDiGetDeviceInstanceIdA
SetupQueryInfVersionInformationA
SetupDiOpenDeviceInterfaceRegKey
SetupDiGetClassDevsA
SetupDiCreateDeviceInfoListExW
SetupDiOpenClassRegKeyExW
SetupCommitFileQueueA
SetupGetFileCompressionInfoA
SetupDiCreateDeviceInfoListExA
SetupGetStringFieldW
SetupDiGetClassDevsW
SetupDiGetDeviceInstanceIdW
SetupQueryInfVersionInformationW
SetupDiSetDeviceInstallParamsW
SetupDiOpenDevRegKey
SetupDiSetSelectedDriverA
SetupIterateCabinetW
SetupAddInstallSectionToDiskSpaceListW
SetupTermDefaultQueueCallback
SetupRemoveInstallSectionFromDiskSpaceListA
SetupDiGetDeviceInfoListDetailA
SetupDiMoveDuplicateDevice
SetupRemoveInstallSectionFromDiskSpaceListW
SetupDiGetDeviceInfoListDetailW
SetupDiGetClassDescriptionExA
SetupIterateCabinetA
SetupAddInstallSectionToDiskSpaceListA
SetupDiLoadClassIcon
SetupDiSetDeviceRegistryPropertyA
SetupDiBuildClassInfoList
SetupDiCancelDriverInfoSearch
SetupCopyOEMInfW
SetupFindNextLine
SetupDiRemoveDevice
SetupDiSetDeviceRegistryPropertyW
SetupGetBinaryField
SetupCloseLog
SetupLogFileW
SetupCopyOEMInfA
SetupDiRegisterDeviceInfo
SetupDiCallClassInstaller
SetupDiGetHwProfileFriendlyNameExW
SetupQueryFileLogA
SetupDiSetSelectedDriverW
SetupGetIntField
SetupGetSourceInfoW
SetupAddSectionToDiskSpaceListA
SetupDiGetWizardPage
SetupDiEnumDriverInfoA
SetupGetSourceInfoA
SetupOpenAppendInfFileA
SetupFindNextMatchLineW
SetupQueryFileLogW
SetupDiGetDeviceInterfaceAlias
SetupQueueCopySectionW
SetupQueueDeleteSectionA
SetupAddSectionToDiskSpaceListW
SetupGetInfInformationA
SetupDiOpenDeviceInterfaceA
SetupDestroyDiskSpaceList
SetupGetStringFieldA
SetupDiGetActualSectionToInstallA
SetupRemoveSectionFromDiskSpaceListW
SetupDiClassGuidsFromNameW
SetupDiGetINFClassW
SetupRemoveSectionFromDiskSpaceListA
SetupDiGetActualSectionToInstallW
SetupScanFileQueueW
SetupDiOpenDeviceInterfaceW
SetupDefaultQueueCallbackA
SetupDiClassGuidsFromNameA
SetupDiGetClassBitmapIndex
SetupLogErrorA
SetupQueueRenameW
SetupQueryInfFileInformationA
SetupDiInstallDeviceInterfaces
SetupRemoveFileLogEntryW
SetupInstallFileExW
SetupCloseFileQueue
SetupDiGetClassImageListExA
SetupLogErrorW
SetupInstallFilesFromInfSectionA
SetupDiSetClassInstallParamsA
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW
SetupQueueCopyA
SetupInstallServicesFromInfSectionA
SetupSetSourceListA
SetupDiUnremoveDevice
SetupInstallServicesFromInfSectionW
SetupScanFileQueueA
SetupQueueCopyW
SetupDiGetDeviceInterfaceDetailA
SetupDecompressOrCopyFileA
SetupQueueRenameA
SetupSetSourceListW
SetupDiSelectBestCompatDrv
SetupDiGetHwProfileListExA
SetupQueueCopySectionA
SetupCopyErrorA
SetupDiGetClassImageIndex
SetupInitializeFileLogW
SetupDiGetDeviceRegistryPropertyA
SetupQueueDeleteA
SetupCopyErrorW
SetupGetTargetPathA
SetupDiGetHwProfileListExW
SetupDiGetDeviceInfoListClass
SetupInitDefaultQueueCallback
SetupRemoveFromSourceListA
SetupDiEnumDriverInfoW
SetupInitializeFileLogA
SetupInstallServicesFromInfSectionExW
SetupDiGetDeviceInstallParamsA
SetupDiCreateDeviceInfoW
SetupDiCreateDevRegKeyW
SetupDiOpenClassRegKey
SetupDeleteErrorW
SetupDiGetDeviceInstallParamsW
SetupDiCreateDevRegKeyA
SetupGetLineTextW
SetupGetSourceFileLocationA
SetupDiInstallClassA
SetupQueryDrivesInDiskSpaceListA
SetupInstallFileW
SetupGetLineByIndexW
SetupDiGetClassDevPropertySheetsA
SetupCreateDiskSpaceListA
SetupGetLineByIndexA
SetupQueryDrivesInDiskSpaceListW
SetupGetLineTextA
SetupGetSourceFileLocationW
SetupDiGetClassDevsExW
SetupQueueDeleteSectionW
SetupQueueDeleteW
SetupInstallFileA
SetupDiDestroyClassImageList
PathRemoveBackslashA
PathIsDirectoryA
SHRegGetUSValueW
SHRegGetUSValueA
PathGetDriveNumberW
PathIsRelativeW
PathIsDirectoryW
PathRemoveBackslashW
PathCompactPathExW
PathMakePrettyW
SHRegGetBoolUSValueW
StrCSpnA
SHDeleteValueA
PathMakePrettyA
SHDeleteValueW
StrCSpnW
SHRegGetBoolUSValueA
SHEnumKeyExA
StrToIntA
PathIsRootA
StrIsIntlEqualW
PathSetDlgItemPathW
SHEnumKeyExW
StrToIntW
SHRegOpenUSKeyW
PathFindFileNameW
StrPBrkA
PathRemoveBlanksA
PathQuoteSpacesW
SHRegOpenUSKeyA
SHDeleteEmptyKeyA
PathRemoveBlanksW
PathFileExistsA
StrPBrkW
PathRemoveArgsA
PathIsContentTypeW
SHSetValueW
PathIsUNCA
PathParseIconLocationA
SHGetValueA
SHRegEnumUSKeyW
PathCanonicalizeA
PathIsUNCW
PathParseIconLocationW
PathFindExtensionW
PathRemoveArgsW
PathCanonicalizeW
SHRegEnumUSKeyA
SHGetValueW
PathAppendA
StrCSpnIW
StrToIntExW
PathIsRootW
PathAddBackslashA
PathFindFileNameA
SHEnumValueW
PathAddBackslashW
StrCatW
StrToIntExA
StrCSpnIA
StrCmpIW
PathMatchSpecA
PathQuoteSpacesA
PathRelativePathToW
PathGetDriveNumberA
SHDeleteKeyW
PathIsUNCServerShareA
PathIsFileSpecW
PathRemoveFileSpecW
PathIsUNCServerW
StrCpyW
PathIsFileSpecA
SHDeleteKeyA
PathAppendW
SHRegEnumUSValueW
PathIsUNCServerA
PathRemoveFileSpecA
StrCmpW
PathAddExtensionA
PathGetArgsA
PathIsUNCServerShareW
PathAddExtensionW
PathGetArgsW
PathIsPrefixA
StrSpnW
PathFindExtensionA
StrSpnA
PathIsPrefixW
PathCompactPathW
PathCombineA
PathStripToRootA
PathCompactPathA
PathStripToRootW
PathMakeSystemFolderW
PathCombineW
PathIsRelativeA
SHCreateShellPalette
PathUnmakeSystemFolderW
PathStripPathW
PathCommonPrefixW
SHRegQueryUSValueA
SHRegSetUSValueA
SHRegDeleteEmptyUSKeyA
SHRegSetUSValueW
PathCommonPrefixA
SHRegQueryUSValueW
PathStripPathA
SHRegDeleteEmptyUSKeyW
SHRegCloseUSKey
PathMatchSpecW
StrDupW
PathUnquoteSpacesW
PathIsURLA
SHRegWriteUSValueA
PathUnquoteSpacesA
PathIsURLW
StrDupA
PathBuildRootW
SHSetValueA
SHRegWriteUSValueW
StrFormatByteSizeA
StrNCatW
PathIsSameRootW
StrNCatA
StrFormatByteSizeW
SHRegDeleteUSValueA
StrTrimW
PathFileExistsW
PathFindOnPathW
PathIsSystemFolderW
PathFindOnPathA
SHOpenRegStreamA
StrTrimA
PathRemoveExtensionW
SHRegCreateUSKeyW
PathRenameExtensionW
SHQueryInfoKeyW
ChrCmpIW
SHRegCreateUSKeyA
PathRenameExtensionA
StrFromTimeIntervalW
ChrCmpIA
PathSkipRootA
PathFindNextComponentW
SHQueryValueExA
PathSearchAndQualifyW
SHQueryValueExW
PathSkipRootW
PathFindNextComponentA
PathSearchAndQualifyA
SetKeyboardState
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerInstallFileA
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueA
Number of PE resources by type
RT_ICON 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH JAMAICA 3
PE resources
ExifTool file metadata
SubsystemVersion
4.0

LinkerVersion
6.0

ImageVersion
0.0

FileSubtype
0

FileVersionNumber
0.188.150.76

UninitializedDataSize
0

LanguageCode
Neutral

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
1732608

EntryPoint
0x58c98

OriginalFileName
Viscose.exe

MIMEType
application/octet-stream

LegalCopyright
Copyright 1939

FileVersion
0.0.0.0

TimeStamp
2008:11:13 11:32:04+01:00

FileType
Win32 EXE

PEType
PE32

InternalName
Toy

FileDescription
Stoneless

OSVersion
4.0

FileOS
Windows NT 32-bit

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Berkeley Data Systems

CodeSize
360448

ProductName
Unity Bemuse

ProductVersionNumber
0.16.119.0

FileTypeExtension
exe

ObjectFileType
Executable application

File identification
MD5 a347e805d2a2699995d0de73e18ce0a5
SHA1 5a85c5db80b8db0c9cbd1f2e01834c615a31b678
SHA256 82f583a340baa5a1dca3c1046588f8df05fb301d8af287adb7c24e67599534b8
ssdeep
6144:RoJxv6Hx45YfXOeHB6+WgiWJeDUmmD4c5BoN4z8IWgg+Q0iEmCwuUbiJM:RoJxyR45YfXO8vlJeDXSkeAIWD+QbEmB

authentihash 66ffafa5044ac004af0ce8eb17cf850eca59db4f34390fb037c57532a100c5e3
imphash 7727a723d4aadd6530a2daa23113e954
File size 384.0 KB ( 393216 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable MS Visual C++ (generic) (67.3%)
Win32 Dynamic Link Library (generic) (14.2%)
Win32 Executable (generic) (9.7%)
Generic Win/DOS Executable (4.3%)
DOS Executable Generic (4.3%)
Tags
peexe

VirusTotal metadata
First submission 2015-08-25 16:21:21 UTC ( 3 years, 6 months ago )
Last submission 2015-08-28 14:14:34 UTC ( 3 years, 6 months ago )
File names 82f583a340baa5a1dca3c1046588f8df05fb301d8af287adb7c24e67599534b8_5A85C5DB80B8DB0C9CBD1F2E01834C615A31B678
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Created processes
Code injections in the following processes
Opened mutexes
Opened service managers
Runtime DLLs