× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: a60599f324b92e54f677984f4ab22068210736b85a43742561d046a1e28cc62b
File name: AEEDF9CB0D4C92D96B82DC23A89FAFCE
Detection ratio: 39 / 43
Analysis date: 2011-08-15 15:58:57 UTC ( 7 years, 8 months ago )
Antivirus Result Update
AhnLab-V3 Win-Trojan/Sasfis.18432.P 20110815
AntiVir TR/Sasfis.aegu 20110815
Avast Win32:Small-NGY [Trj] 20110815
Avast5 Win32:Small-NGY [Trj] 20110815
AVG Agent2.AIFQ 20110815
BitDefender Trojan.Generic.3030749 20110815
CAT-QuickHeal Trojan.Sasfis.aegu 20110813
ClamAV Trojan.Agent-143499 20110815
Commtouch W32/Trojan2.MEOV 20110815
Comodo Heur.Suspicious 20110815
DrWeb Trojan.Oficla.20 20110815
Emsisoft Trojan.Win32.Oficla!IK 20110815
eTrust-Vet Win32/Oficla.CV 20110815
F-Prot W32/Trojan2.MEOV 20110815
F-Secure Trojan:W32/Agent.NLG 20110815
Fortinet W32/Oficla.LR!tr 20110815
GData Trojan.Generic.3030749 20110815
Ikarus Trojan.Win32.Oficla 20110815
Jiangmin Trojan/Sasfis.gxl 20110815
K7AntiVirus Trojan 20110815
Kaspersky Trojan.Win32.Sasfis.aegu 20110815
McAfee Generic Dropper.qt 20110815
McAfee-GW-Edition Generic Dropper.qt 20110815
Microsoft Trojan:Win32/Oficla.H!dll 20110815
NOD32 Win32/Oficla.DH 20110815
Norman W32/Sasfis.D 20110815
nProtect Trojan/W32.Sasfis.18432.Q 20110815
Panda Adware/NaviPromo 20110815
PCTools Trojan.Sasfis 20110809
Rising Trojan.Win32.Generic.11E9CE18 20110815
Sophos AV Mal/Generic-L 20110815
Symantec Trojan.Sasfis 20110815
TheHacker Trojan/Sasfis.aegu 20110815
TrendMicro TROJ_SASFIS.SMF 20110815
TrendMicro-HouseCall TROJ_SASFIS.SMF 20110815
VBA32 Trojan.Win32.Sasfis.aegu 20110815
VIPRE Trojan.Win32.Generic!BT 20110815
ViRobot Trojan.Win32.Sasfis.18432.E 20110815
VirusBuster Trojan.Sasfis!5VWhEcxru28 20110815
Antiy-AVL 20110815
eSafe 20110814
Prevx 20110815
SUPERAntiSpyware 20110815
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file.
PE header basic information
Number of sections 4
PE sections
PE imports
GetModuleHandleA
__getmainargs
__p__environ
__p__fmode
__set_app_type
_cexit
signal
File identification
MD5 aeedf9cb0d4c92d96b82dc23a89fafce
SHA1 5e7ae0ae911728a3e0f3f7696c800fd3b6e7c9d8
SHA256 a60599f324b92e54f677984f4ab22068210736b85a43742561d046a1e28cc62b
ssdeep
384:z4kqW7wCV9brIXxnYxns325yA5ylwKLSbAKSWZV:Dn/VVUIyA5CXubAKSY

File size 18.0 KB ( 18432 bytes )
File type Win32 EXE
Magic literal

TrID Win16/32 Executable Delphi generic (33.9%)
Generic Win/DOS Executable (32.7%)
DOS Executable Generic (32.7%)
VXD Driver (0.5%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
VirusTotal metadata
First submission 2010-02-09 15:19:01 UTC ( 9 years, 2 months ago )
Last submission 2011-08-15 15:58:57 UTC ( 7 years, 8 months ago )
File names AEEDF9CB0D4C92D96B82DC23A89FAFCE
Vg1WDEP.ps1
iVQ4.dotm
aa
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!