× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 9228ab99655e903741995d4ea70253f5fb50c5a20e1961612d70eb82bf16a2c5
File name: 321A11EB90AD55F6E129CA944CCAE219
Detection ratio: 40 / 43
Analysis date: 2011-07-17 16:44:55 UTC ( 7 years, 4 months ago )
Antivirus Result Update
AhnLab-V3 Win-Trojan/Buzus.200704.S 20110717
AntiVir TR/Dropper.Gen 20110715
Avast Win32:Malware-gen 20110717
Avast5 Win32:Malware-gen 20110717
AVG Generic16.YOU 20110717
BitDefender Trojan.Generic.2966757 20110717
CAT-QuickHeal Trojan.Buzus.cyaf 20110717
ClamAV Trojan.Buzus-6723 20110717
Commtouch W32/Trojan2.LOCI 20110717
Comodo TrojWare.Win32.Buzus.cyaf 20110717
DrWeb Trojan.Packed.19879 20110717
Emsisoft Trojan.Win32.Buzus!IK 20110717
eSafe Win32.Trojan 20110717
eTrust-Vet Win32/FakeAlert.BCF 20110715
F-Prot W32/Trojan2.LOCI 20110717
F-Secure Trojan.Generic.2966757 20110717
Fortinet W32/Kolab.HQL!worm 20110717
GData Trojan.Generic.2966757 20110717
Ikarus Trojan.Win32.Buzus 20110717
Jiangmin Trojan/Buzus.dmo 20110714
K7AntiVirus Trojan 20110715
Kaspersky Trojan.Win32.Buzus.cyaf 20110717
McAfee W32/Pepa.worm 20110717
McAfee-GW-Edition W32/Pepa.worm 20110716
Microsoft VirTool:Win32/VBInject.gen!CU 20110717
NOD32 a variant of Win32/Injector.ANU 20110717
Norman W32/Buzus.ADQT 20110717
nProtect Trojan/W32.Buzus.200704.T 20110717
Panda Trj/Buzus.AH 20110717
PCTools Trojan.Generic 20110713
Rising Trojan.Win32.Generic.11E40FF1 20110715
Sophos AV Mal/Nyrate-A 20110717
Symantec Trojan Horse 20110717
TheHacker Trojan/Buzus.cyaf 20110717
TrendMicro TROJ_BUZUS.BFK 20110717
TrendMicro-HouseCall TROJ_BUZUS.BFK 20110717
VBA32 Trojan.Win32.Buzus.cyaf 20110715
VIPRE Trojan.Win32.VBInject.gen (v) 20110717
ViRobot Trojan.Win32.Buzus.200704.B 20110717
VirusBuster Trojan.Buzus!INiypUVLV6Q 20110716
Antiy-AVL 20110715
Prevx 20110717
SUPERAntiSpyware 20110717
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file.
FileVersionInfo properties
Product Project1
Original name Project1.exe
Internal name Project1
File version 1.00
PE header basic information
Number of sections 3
PE sections
PE imports
__vbaVarSub
_CIcos
_adj_fptan
__vbaVarMove
__vbaVarVargNofree
__vbaFreeVar
__vbaAryMove
__vbaLenBstr
__vbaStrVarMove
__vbaEnd
__vbaVarIdiv
__vbaFreeVarList
_adj_fdiv_m64
_adj_fprem1
__vbaRecAnsiToUni
__vbaResume
__vbaStrCat
__vbaVarCmpNe
__vbaRecDestruct
__vbaSetSystemError
__vbaHresultCheckObj
_adj_fdiv_m32
__vbaAryVar
__vbaAryDestruct
__vbaVarCmpGe
__vbaExitProc
__vbaVarPow
__vbaOnError
_adj_fdiv_m16i
__vbaObjSetAddref
_adj_fdivr_m16i
__vbaVarIndexLoad
_CIsin
__vbaErase
__vbaVarZero
__vbaVarCmpGt
__vbaChkstk
EVENT_SINK_AddRef
__vbaGenerateBoundsError
__vbaStrCmp
__vbaAryConstruct2
__vbaI2I4
DllFunctionCall
__vbaVarOr
_adj_fpatan
__vbaRedim
__vbaRecUniToAnsi
EVENT_SINK_Release
__vbaUI1I2
_CIsqrt
__vbaVarAnd
EVENT_SINK_QueryInterface
__vbaVarMul
__vbaExceptHandler
_adj_fprem
_adj_fdivr_m64
__vbaVarDiv
__vbaVarCmpLe
__vbaFPException
__vbaUbound
__vbaStrVarVal
__vbaVarCat
_CIlog
__vbaErrorOverflow
__vbaInStr
__vbaNew2
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaStrCopy
__vbaFreeStrList
__vbaVarCmpLt
__vbaDerefAry1
_adj_fdivr_m32
__vbaPowerR8
_adj_fdiv_r
__vbaI4Var
__vbaVarCmpEq
__vbaAryLock
__vbaVarAdd
__vbaVarDup
__vbaVarMod
__vbaVarCopy
__vbaFpI4
_CIatan
__vbaUI1Str
__vbaStrMove
__vbaAryCopy
_allmul
_CItan
__vbaAryUnlock
_CIexp
__vbaFreeObj
__vbaI4ErrVar
__vbaFreeStr
16 more function(s) imported by ordinal)
File identification
MD5 321a11eb90ad55f6e129ca944ccae219
SHA1 1178795407ab24c2743aeb319e75df5746e951a9
SHA256 9228ab99655e903741995d4ea70253f5fb50c5a20e1961612d70eb82bf16a2c5
ssdeep
6144:tQlvfb4dFhhu82E8lWdONcaGQzplZDUB:tziVlVQQzLJUB

File size 196.0 KB ( 200704 bytes )
File type Win32 EXE
Magic literal

TrID Win32 Executable Microsoft Visual Basic 6 (90.9%)
Win32 Executable Generic (6.1%)
Generic Win/DOS Executable (1.4%)
DOS Executable Generic (1.4%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
VirusTotal metadata
First submission 2010-01-12 03:26:15 UTC ( 8 years, 10 months ago )
Last submission 2011-07-17 16:44:55 UTC ( 7 years, 4 months ago )
File names 321A11EB90AD55F6E129CA944CCAE219
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!