× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: b90a6fe4475a71c4f0a29bb61a14c0bcbba16f32a7fcbcf30454030ceae11d37
File name: aa
Detection ratio: 24 / 41
Analysis date: 2010-05-19 22:33:26 UTC ( 8 years, 8 months ago )
Antivirus Result Update
a-squared Trojan.Win32.Koblu!IK 20100510
AntiVir TR/Koblu.dil 20100519
Avast Win32:Malware-gen 20100519
Avast5 Win32:Malware-gen 20100519
AVG Generic17.CDKS 20100519
BitDefender Trojan.Generic.KD.12655 20100519
Comodo TrojWare.Win32.Koblu.D 20100519
DrWeb Trojan.Siggen1.30499 20100519
F-Secure Trojan:W32/Agent.DIYW 20100519
GData Trojan.Generic.KD.12655 20100519
Ikarus Trojan.Win32.Koblu 20100519
Kaspersky Trojan.Win32.Koblu.dil 20100519
McAfee Generic.dx!stm 20100519
McAfee-GW-Edition Artemis!AFCB25177E5F 20100519
Microsoft Trojan:Win32/Sopiclick.A 20100519
NOD32 Win32/Sopiclick.AJ 20100519
Norman W32/Refpron.CNZ 20100519
nProtect Trojan.Generic.KD.12655 20100519
Panda Generic Trojan 20100519
Prevx Medium Risk Malware 20100519
Rising Trojan.PSW.Win32.OnlineGames.hpx 20100519
Sophos AV Troj/Koblu-D 20100519
Sunbelt Trojan.Win32.Generic!BT 20100519
ViRobot Trojan.Win32.Koblu.68608.B 20100519
AhnLab-V3 20100519
Antiy-AVL 20100519
Authentium 20100519
CAT-QuickHeal 20100519
ClamAV 20100519
eSafe 20100517
eTrust-Vet 20100519
F-Prot 20100519
Fortinet 20100519
Jiangmin 20100519
PCTools 20100519
Symantec 20100519
TheHacker 20100519
TrendMicro 20100519
TrendMicro-HouseCall 20100519
VBA32 20100519
VirusBuster 20100519
The file being studied is a Portable Executable file! More specifically, it is a unknown file.
PE header basic information
Number of sections 8
PE sections
PE imports
GetCurrentThreadId
LocalSize
LocalReAlloc
ExitProcess
UnhandledExceptionFilter
RtlUnwind
RaiseException
TlsSetValue
TlsGetValue
LocalFree
LocalAlloc
GetModuleHandleA
FreeLibrary
LoadLibraryExA
GetProcAddress
File identification
MD5 afcb25177e5ff4290263153ce81e6839
SHA1 84ec9e3df8cac31fb8983028cf921c0ba10ac5a2
SHA256 b90a6fe4475a71c4f0a29bb61a14c0bcbba16f32a7fcbcf30454030ceae11d37
ssdeep
1536:bhmdfeR/ZawaHLIBfat0xB2Wp4XeYgk3WDrEhWTh:1mdWR/ZfaHLIBfIa2WaXe+3wo4

File size 67.0 KB ( 68608 bytes )
File type unknown
Magic literal

TrID Win32 Executable Generic (38.4%)
Win32 Dynamic Link Library (generic) (34.1%)
Win16/32 Executable Delphi generic (9.3%)
Generic Win/DOS Executable (9.0%)
DOS Executable Generic (9.0%)
VirusTotal metadata
First submission 2010-05-18 16:48:02 UTC ( 8 years, 8 months ago )
Last submission 2010-05-19 22:33:26 UTC ( 8 years, 8 months ago )
File names zvGlixk.tmp
u8fvyuaAY.cpl
aa
m_RDtHEw.reg
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!