× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 9ad6f8500009ecf4356e71eca07038fd9c00e80c36fa1b6c3768b8cffe04144f
File name: CTSURun
Detection ratio: 49 / 54
Analysis date: 2014-10-29 19:53:22 UTC ( 3 years, 10 months ago )
Antivirus Result Update
Ad-Aware Gen:Heur.Krypt.1 20141029
Yandex Worm.Koobface!sUAmSe8oc1k 20141028
AhnLab-V3 Win-Trojan/Koobface.Gen 20141029
Antiy-AVL Worm[Net]/Win32.Koobface 20141029
Avast Win32:MalOb-FE [Cryp] 20141029
AVG Cryptic.T 20141029
Avira (no cloud) TR/Dldr.Agent.wtc 20141029
AVware Worm.Win32.Koobface.Gen.3 (v) 20141029
BitDefender Gen:Heur.Krypt.1 20141029
Bkav W32.KoobFaceLB.Trojan 20141027
CAT-QuickHeal Win32.Worm.Koobface.gen!D.4 20141029
ClamAV Worm.Koobface-273 20141029
CMC Net-Worm.Win32.Koobface!O 20141029
Comodo NetWorm.Win32.Koobface.~R 20141029
Cyren W32/Koobface.J.gen!Eldorado 20141029
DrWeb Trojan.Packed.19706 20141029
Emsisoft Gen:Heur.Krypt.1 (B) 20141029
ESET-NOD32 Win32/Koobface.NCK 20141029
F-Prot W32/Worm.BKUV 20141029
F-Secure Gen:Heur.Krypt.1 20141029
Fortinet W32/Krap.AR!tr 20141029
GData Gen:Heur.Krypt.1 20141029
Ikarus Trojan.Crypt 20141029
Jiangmin Worm/Koobface.alc 20141028
K7AntiVirus NetWorm ( 0013424d1 ) 20141029
K7GW NetWorm ( 0013424d1 ) 20141029
Kaspersky Net-Worm.Win32.Koobface.eyx 20141029
Kingsoft Worm.Koobface.(kcloud) 20141029
Malwarebytes Worm.KoobFace 20141029
McAfee W32/Koobface.worm.gen.ah 20141029
McAfee-GW-Edition W32/Koobface.worm.gen.ah 20141029
Microsoft Worm:Win32/Koobface.gen!D 20141029
eScan Gen:Heur.Krypt.1 20141029
NANO-Antivirus Trojan.Win32.Koobface.mcgk 20141029
Norman Koobface.FMW 20141029
nProtect Worm/W32.Koobface.42496.F 20141029
Qihoo-360 Win32/Trojan.1b4 20141029
Rising PE:Worm.Win32.Koobface.jk!1075351485 20141029
Sophos AV Mal/FakeSpy-A 20141029
Symantec W32.Koobface 20141029
Tencent Win32.Worm-net.Koobface.Hsie 20141029
TheHacker Trojan/Koobface.nck 20141028
TotalDefense Win32/Koobface.B!generic 20141029
TrendMicro WORM_KUBFACE.SMF 20141029
TrendMicro-HouseCall WORM_KUBFACE.SMF 20141029
VBA32 Malware-Cryptor.Win32.General.4.1 20141029
VIPRE Worm.Win32.Koobface.Gen.3 (v) 20141029
ViRobot Worm.Win32.Net-Koobface.42496.C 20141029
Zillya Worm.Koobface.Win32.5154 20141029
AegisLab 20141029
Baidu-International 20141027
ByteHero 20141029
SUPERAntiSpyware 20141029
Zoner 20141029
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file for the Windows GUI subsystem.
FileVersionInfo properties
Copyright
Copyright (c) Creative Technology Ltd., 2003-2007. All rights reserved.

Publisher Creative Technology Ltd.
Product CTSURun
Original name CTSURun.exe
Internal name CTSURun
File version 1.0.3.0
Description CTSURun
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2005-05-11 09:42:10
Entry Point 0x00001035
Number of sections 4
PE sections
PE imports
LoadLibraryA
ExitProcess
GetProcAddress
ImageList_Add
SaveDC
IsEqualGUID
VerQueryValueA
Number of PE resources by type
RT_ICON 1
RT_VERSION 1
RT_GROUP_ICON 1
Number of PE resources by language
ENGLISH US 3
PE resources
ExifTool file metadata
MIMEType
application/octet-stream

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

TimeStamp
2005:05:11 10:42:10+01:00

FileType
Win32 EXE

PEType
PE32

CodeSize
6656

LinkerVersion
5.13

FileAccessDate
2014:10:29 20:54:33+01:00

EntryPoint
0x1035

InitializedDataSize
6656

SubsystemVersion
4.0

ImageVersion
5.1

OSVersion
4.0

FileCreateDate
2014:10:29 20:54:33+01:00

UninitializedDataSize
26112

File identification
MD5 96445d03c103c68db662d857a6f8a19c
SHA1 af9924154b2ab5b8c610295110dce550e27a04f1
SHA256 9ad6f8500009ecf4356e71eca07038fd9c00e80c36fa1b6c3768b8cffe04144f
ssdeep
768:nNy5BV98YIWCMMBpREUsMrf7hGOTovdElib3KOoEk:nNGBVB0RBbdGOmdElib3KU

authentihash 4ed014a3b978d1aafdd824483f900d09fb3547607314cc7158dfc3c60ee8a833
imphash 794502258742eebf4cef711cafe28f83
File size 41.5 KB ( 42496 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Dynamic Link Library (generic) (43.5%)
Win32 Executable (generic) (29.8%)
Generic Win/DOS Executable (13.2%)
DOS Executable Generic (13.2%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
Tags
peexe

VirusTotal metadata
First submission 2010-01-20 19:28:45 UTC ( 8 years, 8 months ago )
Last submission 2010-01-20 19:28:45 UTC ( 8 years, 8 months ago )
File names 9ad6f8500009ecf4356e71eca07038fd9c00e80c36fa1b6c3768b8cffe04144f
aa
G8SIrPLXxr.exe
CTSURun.exe
CTSURun
IiWgs.xml
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!