× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: bef3861681a9524c5bfb3b9f5e2153b40bb7c30b79e85b7a0ac7787d8cb27c3c
Detection ratio: 34 / 40
Analysis date: 2010-01-30 13:17:55 UTC ( 9 years, 3 months ago )
Antivirus Result Update
a-squared Worm.Win32.Koobface!IK 20100130
AntiVir TR/Dldr.Agent.wtc 20100129
Antiy-AVL Worm/Win32.Koobface.gen 20100128
Authentium W32/Worm.BKUV 20100130
Avast Win32:Trojan-gen 20100130
AVG SHeur2.CHGW 20100130
CAT-QuickHeal I-Worm.Koobface.cxb 20100130
Comodo TrojWare.Win32.Trojan.Agent.Gen 20100130
DrWeb Win32.HLLW.Facebook.358 20100130
eTrust-Vet Win32/Koobface.B!generic 20100129
F-Prot W32/Worm.BKUV 20100129
F-Secure Suspicious:W32/Riskware!Online 20100129
Fortinet W32/Koobface.DAV!worm.im 20100130
GData Win32:Trojan-gen 20100130
Ikarus Worm.Win32.Koobface 20100130
Jiangmin Worm/Koobface.alc 20100128
K7AntiVirus Net-Worm.Win32.Koobface.dav 20100129
Kaspersky Net-Worm.Win32.Koobface.dav 20100130
McAfee W32/Koobface.worm.gen.ah 20100129
McAfee+Artemis W32/Koobface.worm.gen.ah 20100129
McAfee-GW-Edition Heuristic.BehavesLike.Win32.Downloader.H 20100130
Microsoft Worm:Win32/Koobface.gen!D 20100130
NOD32 Win32/Koobface.NCK 20100130
Norman W32/Koobface.FMW 20100130
PCTools Net-Worm.Koobface 20100130
Prevx High Risk Cloaked Malware 20100130
Rising Packer.Win32.Agent.bk 20100130
Sophos AV Mal/Generic-A 20100130
Sunbelt Trojan.Win32.Generic!SB.0 20100130
Symantec W32.Koobface.A 20100130
TheHacker Trojan/Koobface.nck 20100130
TrendMicro WORM_PKOOBF.SMC 20100130
VBA32 Net-Worm.Win32.Koobface.dav 20100129
VirusBuster Worm.Koobface.CRH 20100129
AhnLab-V3 20100130
BitDefender 20100130
ClamAV 20100130
nProtect 20100130
Panda 20100129
ViRobot 20100130
The file being studied is a Portable Executable file! More specifically, it is a unknown file.
PE header basic information
Number of sections 4
PE sections
PE imports
ImageList_Add
SaveDC
LoadLibraryA
GetProcAddress
ExitProcess
IsEqualGUID
VerQueryValueA
File identification
MD5 9f3303377a7a1bdd3bed34d8dac75230
SHA1 b00fbed4d562d7114be7891fe47e5e8f6b6f351d
SHA256 bef3861681a9524c5bfb3b9f5e2153b40bb7c30b79e85b7a0ac7787d8cb27c3c
ssdeep
768:3Ny5BV98YIWCMMBpREUsMrf7hGOTovdElib3KOoEk:3NGBVB0RBbdGOmdElib3KU

File size 41.5 KB ( 42496 bytes )
File type unknown
Magic literal

TrID Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
VirusTotal metadata
First submission 2010-01-22 06:36:38 UTC ( 9 years, 4 months ago )
Last submission 2010-01-30 13:17:55 UTC ( 9 years, 3 months ago )
Behaviour characterization
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!