× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: a52344814b68b7d3a3cdd5b7fb4f73f4b4b98e0caeed9c8c85ad52ff2e05e1ce
File name: InstallInternetDefender_722.exe
Detection ratio: 4 / 42
Analysis date: 2011-03-02 17:41:19 UTC ( 3 years, 1 month ago ) View latest
Antivirus Result Update
Emsisoft Trojan-Downloader.Fakealert!IK 20110302
Ikarus Trojan-Downloader.Fakealert 20110302
Prevx High Risk Cloaked Malware 20110302
eSafe Win32.Corrupt.Ag 20110302
AVG 20110302
AhnLab-V3 20110302
AntiVir 20110302
Antiy-AVL 20110302
Avast 20110223
Avast5 20110223
BitDefender 20110302
CAT-QuickHeal 20110301
ClamAV 20110302
Commtouch 20110302
DrWeb 20110302
F-Prot 20110302
F-Secure 20110302
Fortinet 20110302
GData 20110302
Jiangmin 20110302
K7AntiVirus 20110302
Kaspersky 20110302
McAfee 20110302
McAfee-GW-Edition 20110302
Microsoft 20110302
NOD32 20110302
Norman 20110301
PCTools 20110302
Panda 20110302
Rising 20110302
SUPERAntiSpyware 20110302
Sophos 20110302
Symantec 20110302
TheHacker 20110302
TrendMicro 20110302
TrendMicro-HouseCall 20110302
VBA32 20110302
VIPRE 20110302
ViRobot 20110302
VirusBuster 20110302
eTrust-Vet 20110302
nProtect 20110215
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file.
PE header basic information
Number of sections 7
PE sections
PE imports
RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
ImageList_AddMasked
ImageList_Create
ImageList_Destroy
InitCommonControls
CreateBrushIndirect
CreateFontIndirectA
DeleteObject
GetDeviceCaps
SelectObject
SetBkColor
SetBkMode
SetTextColor
CloseHandle
CompareFileTime
CopyFileA
CreateDirectoryA
CreateFileA
CreateProcessA
CreateThread
DeleteFileA
ExitProcess
ExpandEnvironmentStringsA
FindClose
FindFirstFileA
FindNextFileA
FreeLibrary
GetCommandLineA
GetCurrentProcess
GetDiskFreeSpaceA
GetExitCodeProcess
GetFileAttributesA
GetFileSize
GetFullPathNameA
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetPrivateProfileStringA
GetProcAddress
GetShortPathNameA
GetSystemDirectoryA
GetTempFileNameA
GetTempPathA
GetTickCount
GetVersion
GetWindowsDirectoryA
GlobalAlloc
GlobalFree
GlobalLock
GlobalUnlock
LoadLibraryA
LoadLibraryExA
MoveFileA
MulDiv
MultiByteToWideChar
ReadFile
RemoveDirectoryA
SearchPathA
SetCurrentDirectoryA
SetErrorMode
SetFileAttributesA
SetFilePointer
SetFileTime
Sleep
WaitForSingleObject
WriteFile
WritePrivateProfileStringA
lstrcatA
lstrcmpA
lstrcmpiA
lstrcpynA
lstrlenA
CoCreateInstance
CoTaskMemFree
OleInitialize
OleUninitialize
SHBrowseForFolderA
SHFileOperationA
SHGetFileInfoA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
ShellExecuteA
AppendMenuA
BeginPaint
CallWindowProcA
CharNextA
CharPrevA
CheckDlgButton
CloseClipboard
CreateDialogParamA
CreatePopupMenu
CreateWindowExA
DefWindowProcA
DestroyWindow
DialogBoxParamA
DispatchMessageA
DrawTextA
EmptyClipboard
EnableMenuItem
EnableWindow
EndDialog
EndPaint
ExitWindowsEx
FillRect
FindWindowExA
GetClassInfoA
GetClientRect
GetDC
GetDlgItem
GetDlgItemTextA
GetMessagePos
GetSysColor
GetSystemMenu
GetSystemMetrics
GetWindowLongA
GetWindowRect
InvalidateRect
IsWindow
IsWindowEnabled
IsWindowVisible
LoadBitmapA
LoadCursorA
LoadImageA
MessageBoxIndirectA
OpenClipboard
PeekMessageA
PostQuitMessage
RegisterClassA
ScreenToClient
SendMessageA
SendMessageTimeoutA
SetClassLongA
SetClipboardData
SetCursor
SetDlgItemTextA
SetForegroundWindow
SetTimer
SetWindowLongA
SetWindowPos
SetWindowTextA
ShowWindow
SystemParametersInfoA
TrackPopupMenu
wsprintfA
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA
File identification
MD5 6950dba9f13e88bd74f7d181f1fe3889
SHA1 7dd02f6cbcf0b33e14741bd99adfaa25a47ad86b
SHA256 a52344814b68b7d3a3cdd5b7fb4f73f4b4b98e0caeed9c8c85ad52ff2e05e1ce
ssdeep
3072:QrF5AooDmlkutfAJgC6vvpHhXNqTysEDk:Qssjt06vhBdhg

File size 124.7 KB ( 127690 bytes )
File type Win32 EXE
Magic literal

TrID InstallShield setup (46.1%)
Win32 Executable MS Visual C++ (generic) (40.4%)
Win32 Executable Generic (9.1%)
Generic Win/DOS Executable (2.1%)
DOS Executable Generic (2.1%)
VirusTotal metadata
First submission 2011-03-02 17:41:19 UTC ( 3 years, 1 month ago )
Last submission 2011-03-07 07:11:09 UTC ( 3 years, 1 month ago )
File names InstallInternetDefender_722.exe
6950dba9f13e88bd74f7d181f1fe3889
6950dba9
install_internetdefender.exe
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!