× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 96d8785619e539dd26cf3145f0b559e64cb835537e99602ad0ef8c0ed59bde8e
File name: aa
Detection ratio: 38 / 41
Analysis date: 2010-06-14 16:16:12 UTC ( 7 years, 10 months ago )
Antivirus Result Update
a-squared Trojan.Win32.FakeAV!IK 20100614
AhnLab-V3 Trojan/Win32.Shutdowner 20100614
AntiVir TR/Dropper.Gen 20100614
Authentium W32/FakeAlert.BI.gen!Eldorado 20100613
Avast NSIS:FakeAV-G 20100614
Avast5 NSIS:FakeAV-G 20100614
AVG Generic17.BQLF 20100614
BitDefender Trojan.Generic.3988115 20100614
CAT-QuickHeal Trojan.Shutdowner.ecc 20100614
ClamAV Trojan.FakeAV-463 20100614
Comodo TrojWare.Win32.ShutDowner.NSIS 20100614
DrWeb Trojan.Fakealert.14894 20100614
eSafe Win32.TRDropper 20100613
eTrust-Vet Win32/Shutdowner.C 20100614
F-Prot W32/FakeAlert.BI.gen!Eldorado 20100613
F-Secure Trojan.Generic.3988115 20100614
Fortinet W32/A.BQ!tr.dldr 20100614
GData Trojan.Generic.3988115 20100614
Ikarus Trojan.Win32.FakeAV 20100614
Kaspersky Trojan.Win32.Shutdowner.ehz 20100614
McAfee Generic FakeAlert!dy 20100614
McAfee-GW-Edition Artemis!73E336590CD2 20100614
Microsoft Trojan:Win32/PrivacyCenter 20100614
NOD32 Win32/Adware.PrivacyCenter.BF 20100614
Norman W32/FakeAV.P!genr 20100613
nProtect Trojan/W32.Agent.1970363 20100614
Panda Trj/Zlob.KH 20100613
PCTools RogueAntiSpyware.Generic 20100614
Prevx High Risk Cloaked Malware 20100614
Rising Trojan.Win32.FakeAV.box 20100613
Sophos AV Mal/FakeAV-AA 20100614
Sunbelt Trojan.Win32.Generic!BT 20100614
Symantec PrivacyCenter 20100614
TheHacker Trojan/Shutdowner.ecc 20100612
TrendMicro Mal_FakeAV-12 20100614
TrendMicro-HouseCall Mal_FakeAV-12 20100614
VBA32 Trojan.Win32.FraudPack.atoy 20100614
VirusBuster Trojan.Shutdowner.YN 20100614
Antiy-AVL 20100611
Jiangmin 20100613
ViRobot 20100614
The file being studied is a Portable Executable file! More specifically, it is a unknown file.
PE header basic information
Number of sections 5
PE sections
PE imports
RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA
ImageList_AddMasked
ImageList_Destroy
ImageList_Create
1 more function(s) imported by ordinal)
SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject
CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
SetFileTime
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA
CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation
EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
File identification
MD5 73e336590cd22a41ef8b98c096c5b607
SHA1 3cb3cb5762c4136f2564d4a8a48cb1ee1d49b0b5
SHA256 96d8785619e539dd26cf3145f0b559e64cb835537e99602ad0ef8c0ed59bde8e
ssdeep
49152:dFMhLIi1of1A5pdzU0UhWsFNeYirKmwaOcV:dFMh8N9Q3z0+drKmZ

File size 1.9 MB ( 1970363 bytes )
File type unknown
Magic literal

TrID Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
VirusTotal metadata
First submission 2010-05-04 23:29:12 UTC ( 7 years, 11 months ago )
Last submission 2010-06-14 16:16:12 UTC ( 7 years, 10 months ago )
File names MrBBZNv0.bin
aa
3TXictieG.docx
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!