× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: a8c8bd91c9591e1906339a79ba6b8a159661bfd16861ea2576e0a3f0aca3fbb8
File name: aa
Detection ratio: 33 / 41
Analysis date: 2010-05-05 03:01:53 UTC ( 8 years, 8 months ago )
Antivirus Result Update
a-squared Packed.Win32.Katusha!IK 20100505
AhnLab-V3 Win-Trojan/Fakeav.82432.C 20100505
AntiVir TR/Renos.KG 20100504
Authentium W32/FakeAlert.5!Maximus 20100505
Avast Win32:MalOb-AS 20100504
Avast5 Win32:MalOb-AS 20100504
AVG Downloader.Generic9.BTBO 20100504
BitDefender Trojan.Renos.PFG 20100505
Comodo TrojWare.Win32.Trojan.Agent.Gen 20100505
DrWeb Trojan.Packed.20088 20100505
eTrust-Vet Win32/FakeCodec.C!generic 20100504
F-Prot W32/FakeAlert.5!Maximus 20100505
F-Secure Trojan.Renos.PFG 20100505
Fortinet W32/Zlob.ZPS!tr 20100503
GData Trojan.Renos.PFG 20100505
Ikarus Packed.Win32.Katusha 20100505
Kaspersky Packed.Win32.Katusha.m 20100505
McAfee Generic Dropper.tm 20100505
McAfee-GW-Edition Heuristic.LooksLike.Trojan.Renos.I 20100504
Microsoft TrojanDownloader:Win32/Renos.KO 20100504
NOD32 Win32/TrojanDownloader.FakeAlert.AXF 20100504
Norman W32/Smalltroj.YLOB 20100504
nProtect Trojan.Renos.PFG 20100504
Panda Trj/Zlob.PS 20100504
Prevx Medium Risk Malware Downloader 20100505
Sophos AV Mal/TibsPk-A 20100504
Sunbelt VirTool.Win32.Obfuscator.hg!b (v) 20100504
Symantec SpywareStrike 20100505
TheHacker Trojan/Katusha.m 20100503
TrendMicro TROJ_RENOS.SMDV 20100504
TrendMicro-HouseCall TROJ_RENOS.SMDV 20100505
ViRobot Trojan.Win32.Downloader.82432.AB 20100504
VirusBuster Trojan.Codecpack.Gen.4 20100504
Antiy-AVL 20100430
CAT-QuickHeal 20100504
ClamAV 20100504
eSafe 20100503
Jiangmin 20100504
PCTools 20100504
Rising 20100504
VBA32 20100504
The file being studied is a Portable Executable file! More specifically, it is a unknown file.
PE header basic information
Number of sections 3
PE sections
PE imports
RegDeleteKeyA
ImageList_DragShowNolock
ImageList_Remove
ImageList_Add
ImageList_Draw
lstrcpyA
DeleteCriticalSection
SetFilePointer
WideCharToMultiByte
GetFileSize
GetSystemDefaultLangID
GetLastError
WriteFile
GetLocaleInfoA
HeapAlloc
LoadLibraryA
LockResource
GetACP
SetThreadLocale
LocalReAlloc
LoadLibraryExA
MoveFileA
GetCurrentProcess
ExitProcess
FindResourceA
SetEndOfFile
WaitForSingleObject
lstrcmpiA
GetFullPathNameA
ExitThread
HeapDestroy
HeapFree
GetVersionExA
FreeLibrary
GetLocalTime
VirtualAllocEx
GlobalAlloc
SetErrorMode
FreeResource
LocalAlloc
VirtualFree
GetCPInfo
GetVersion
GetProcAddress
ResetEvent
GetStringTypeA
SizeofResource
SetLastError
GetModuleHandleA
CreateFileA
lstrcatA
GlobalAddAtomA
VirtualAlloc
GetCurrentThread
GetThreadLocale
lstrlenA
GetUserDefaultLCID
GetDateFormatA
DeleteFileA
EnumCalendarInfoA
Sleep
GetFileType
GetCurrentProcessId
GetOEMCP
GetTickCount
RaiseException
InitializeCriticalSection
GetCommandLineA
MulDiv
GetStartupInfoA
malloc
memmove
acos
strcmp
MkParseDisplayName
CoCreateGuid
GetHGlobalFromStream
CoDisconnectObject
CoReleaseMarshalData
CLSIDFromProgID
Shell_NotifyIconA
DragQueryFileA
SHGetDiskFreeSpaceA
SHGetSpecialFolderLocation
SHGetFileInfoA
DefWindowProcA
GetCursor
GetKeyNameTextA
GetForegroundWindow
GetDC
GetIconInfo
CallWindowProcA
HideCaret
FillRect
TrackPopupMenu
EndPaint
CharLowerA
GetClientRect
GetDesktopWindow
GetLastActivePopup
SetWindowPos
GetDlgItem
GetScrollRange
GetClassInfoA
GetWindowTextA
GetDCEx
IsMenu
GetFocus
GetCursorPos
GetActiveWindow
CreateWindowExA
GetClipboardData
GetCapture
GetClassLongA
GetScrollPos
GetMessagePos
VerQueryValueA
File identification
MD5 c7fff42f08684e4d1d15b7a20297fe4a
SHA1 ef8c599243876ec4d0c1ecfdbea084b0c4e866b8
SHA256 a8c8bd91c9591e1906339a79ba6b8a159661bfd16861ea2576e0a3f0aca3fbb8
ssdeep
1536:X7844eFtvHLfQE4ieCQ9sZV044EqEWH+ufB+cU+kxL/8O0vAkIfxqhCgz:L8FoHF4QF6F5R9B+n+w/3qAkZh

File size 80.5 KB ( 82432 bytes )
File type unknown
Magic literal

TrID Win32 Executable Generic (58.4%)
Clipper DOS Executable (13.8%)
Generic Win/DOS Executable (13.7%)
DOS Executable Generic (13.7%)
VXD Driver (0.2%)
VirusTotal metadata
First submission 2010-05-02 11:10:33 UTC ( 8 years, 8 months ago )
Last submission 2010-05-05 03:01:53 UTC ( 8 years, 8 months ago )
File names Lyv0IH.tiff
kOuvWYzNXl.bz2
aa
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!