× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 8bbba0c1e54bb8273499d40169f42e060c918c0682c44b5f77e57608d65b0926
File name: aa
Detection ratio: 32 / 41
Analysis date: 2010-05-19 15:39:14 UTC ( 8 years, 6 months ago )
Antivirus Result Update
a-squared Trojan-PWS.Win32.QQPass!IK 20100510
AhnLab-V3 Trojan/Win32.QQFish 20100519
AntiVir TR/Spy.Gen 20100519
Antiy-AVL Trojan/Win32.QQFish.gen 20100519
Authentium W32/VBTrojan.4!Maximus 20100519
Avast Win32:Spyware-gen 20100519
Avast5 Win32:Spyware-gen 20100519
AVG PSW.Generic7.CBUH 20100519
BitDefender Trojan.Generic.3941301 20100519
CAT-QuickHeal TrojanPSW.QQFish.ik 20100519
DrWeb Trojan.PWS.Siggen.5449 20100519
F-Prot W32/VBTrojan.4!Maximus 20100518
F-Secure Trojan.Generic.3941301 20100519
Fortinet W32/BIA.IK!tr.pws 20100519
GData Trojan.Generic.3941301 20100519
Ikarus Trojan-PWS.Win32.QQPass 20100519
Jiangmin Trojan/PSW.QQFish.eh 20100519
Kaspersky Trojan-PSW.Win32.QQFish.ik 20100519
McAfee PWS-OnLineGames.ig 20100519
McAfee-GW-Edition Heuristic.BehavesLike.Win32.Downloader.A 20100519
Microsoft PWS:Win32/QQpass.CS 20100518
NOD32 a variant of Win32/PSW.QQFish.BB 20100519
nProtect Trojan.Generic.3941301 20100519
Panda Trj/Zlob.KH 20100519
PCTools Trojan.Fakemess 20100519
Prevx Medium Risk Malware 20100519
Rising Trojan.Win32.Generic.520501DC 20100519
Sophos AV Troj/PWS-BIA 20100519
Sunbelt Trojan.Win32.Generic!BT 20100519
Symantec Trojan.Fakemess 20100519
TrendMicro TSPY_QQFISH.SMD 20100519
TrendMicro-HouseCall TSPY_QQFISH.SMD 20100519
ClamAV 20100519
Comodo 20100519
eSafe 20100517
eTrust-Vet 20100519
Norman 20100519
TheHacker 20100519
VBA32 20100519
ViRobot 20100519
VirusBuster 20100519
The file being studied is a Portable Executable file! More specifically, it is a unknown file.
FileVersionInfo properties
Publisher www
Product www
Original name mode.exe
Internal name mode
File version 2.03.0003
PE header basic information
Number of sections 3
PE sections
PE imports
LoadLibraryA
GetProcAddress
VirtualProtect
VirtualAlloc
VirtualFree
ExitProcess
1 more function(s) imported by ordinal)
File identification
MD5 307b9df059f82e52f51623b96f8c46e7
SHA1 fc9222d5c692dbd0b8171de207f3d4a2daea4dfd
SHA256 8bbba0c1e54bb8273499d40169f42e060c918c0682c44b5f77e57608d65b0926
ssdeep
768:E4rR9PgOTv7bxpjaLybTEU36GZJgq5GFiG6jqrjMrAC09Sd1Kptle0oBy:E4rR913bxpjMybg5GZlfmjMkC0wd1KpR

File size 46.3 KB ( 47411 bytes )
File type unknown
Magic literal

TrID UPX compressed Win32 Executable (43.8%)
Win32 EXE Yoda's Crypter (38.1%)
Win32 Executable Generic (12.2%)
Generic Win/DOS Executable (2.8%)
DOS Executable Generic (2.8%)
VirusTotal metadata
First submission 2010-05-17 09:41:20 UTC ( 8 years, 6 months ago )
Last submission 2010-05-19 15:39:14 UTC ( 8 years, 6 months ago )
File names Q1tDUs75x.tar.gz
aa
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!