× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 9d47bc27e78427638e184923e7df633c9cacee2c21ce14e47e00f937483eb83e
File name: 3_Crystal Internet Meter 2.0.exe
Detection ratio: 0 / 43
Analysis date: 2011-07-22 12:21:56 UTC ( 7 years, 9 months ago )
Antivirus Result Update
AhnLab-V3 20110722
AntiVir 20110722
Antiy-AVL 20110722
Avast 20110722
Avast5 20110722
AVG 20110722
BitDefender 20110722
CAT-QuickHeal 20110722
ClamAV 20110722
Commtouch 20110722
Comodo 20110722
DrWeb 20110722
Emsisoft 20110722
eSafe 20110721
eTrust-Vet 20110722
F-Prot 20110722
F-Secure 20110722
Fortinet 20110722
GData 20110722
Ikarus 20110722
Jiangmin 20110721
K7AntiVirus 20110721
Kaspersky 20110722
McAfee 20110722
McAfee-GW-Edition 20110721
Microsoft 20110722
NOD32 20110722
Norman 20110722
nProtect 20110722
Panda 20110721
PCTools 20110722
Prevx 20110722
Rising 20110722
Sophos AV 20110722
SUPERAntiSpyware 20110722
Symantec 20110722
TheHacker 20110722
TrendMicro 20110722
TrendMicro-HouseCall 20110722
VBA32 20110722
VIPRE 20110722
ViRobot 20110722
VirusBuster 20110721
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file.
Packers identified
PEiD UPX 2.90 [LZMA] -> Markus Oberhumer, Laszlo Molnar & John Reiser
PE header basic information
Number of sections 3
PE sections
PE imports
RegCloseKey
1 more function(s) imported by ordinal)
GetOpenFileNameA
DeleteObject
LoadLibraryA
GetProcAddress
ExitProcess
OleInitialize
SHGetMalloc
SetMenu
File identification
MD5 e36fbcdb7ca3fab1926f42d0e9d9b988
SHA1 1122170aecd10d23ac6d73d1533734714060b9b6
SHA256 9d47bc27e78427638e184923e7df633c9cacee2c21ce14e47e00f937483eb83e
ssdeep
24576:4wEN98ZgRNMsEhqirkBZSG3i4rdVvz80Lk73v6ZFPoPr:4WZkjtSGB5Q76voPr

File size 1.1 MB ( 1172159 bytes )
File type Win32 EXE
Magic literal

TrID WinRAR Self Extracting archive (87.0%)
UPX compressed Win32 Executable (5.1%)
Win32 EXE Yoda's Crypter (4.4%)
Win32 Executable Generic (1.4%)
Win32 Dynamic Link Library (generic) (1.2%)
Tags
upx

VirusTotal metadata
First submission 2011-07-10 05:29:16 UTC ( 7 years, 9 months ago )
Last submission 2011-07-22 12:21:56 UTC ( 7 years, 9 months ago )
File names 3_Crystal Internet Meter 2.0.exe
e36fbcdb7ca3fab1926f42d0e9d9b988
Crystal%20Internet%20Meter%202.0.exe
[27795]malware.exe.#
e36fbcdb7ca3fab1926f42d0e9d9b988_INF7566.tmp
Crystal Internet Meter 2.0.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!