× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: dffe1a48132a8a87ff9021c269c84faba6c1a5cfb79a3dafa0622898868fb1df
File name: Scanner-9139_2009-1692.exe
Detection ratio: 2 / 41
Analysis date: 2009-09-11 16:48:37 UTC ( 4 years, 10 months ago ) View latest
Antivirus Result Update
CAT-QuickHeal Win32.Packed.Katusha.e.8 20090911
Comodo Heur.Packed.Unknown 20090911
AVG 20090911
AhnLab-V3 20090911
AntiVir 20090911
Antiy-AVL 20090911
Authentium 20090911
Avast 20090910
BitDefender 20090911
ClamAV 20090911
DrWeb 20090911
F-Prot 20090910
F-Secure 20090911
Fortinet 20090911
GData 20090911
Ikarus 20090911
Jiangmin 20090911
K7AntiVirus 20090911
Kaspersky 20090911
McAfee 20090910
McAfee+Artemis 20090910
McAfee-GW-Edition 20090911
Microsoft 20090911
NOD32 20090911
Norman 20090911
PCTools 20090911
Panda 20090910
Prevx 20090911
Rising 20090911
Sophos 20090911
Sunbelt 20090911
Symantec 20090911
TheHacker 20090910
TrendMicro 20090911
VBA32 20090911
ViRobot 20090911
VirusBuster 20090911
a-squared 20090911
eSafe 20090910
eTrust-Vet 20090911
nProtect 20090911
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file.
PE header basic information
Number of sections 8
PE sections
PE imports
CreateMutexW
ReadConsoleW
ReadConsoleA
CreateThread
OpenFileMappingA
CreateFileA
CreateMutexA
CopyFileExW
CopyFileA
FindFirstFileA
CreateProcessA
GetComputerNameA
FindResourceA
CreateDirectoryA
CopyFileW
CopyFileExW
GetComputerNameA
WriteFile
GlobalFree
CopyFileA
DeleteFileA
AddAtomA
ReadFile
GetFileSize
DeleteFileW
CreateFileA
CopyFileExA
GetStdHandle
FindResourceA
ReadConsoleA
CreateMutexW
CreateMutexW
CopyFileA
DeleteFileW
OpenFile
CreateFileA
DeleteFileA
CopyFileW
AddAtomA
GlobalFree
GetFileSize
GetComputerNameA
OpenFileMappingA
FindFirstFileA
CreateMutexA
CreateThread
FindResourceA
FindResourceW
GetConsoleMode
GetFileTime
AddAtomA
ExitThread
CreateMutexA
CreateDirectoryA
GetFileTime
CopyFileExA
GetStdHandle
CreateFileA
CopyFileW
GetComputerNameA
CreateProcessA
GetConsoleMode
GlobalFree
ReadConsoleW
CreateDirectoryA
GetComputerNameA
CopyFileA
GetStdHandle
DeleteFileA
CreateProcessA
GetFileTime
WriteFile
CreateMutexW
FindResourceA
OpenFileMappingA
ReadConsoleA
FindResourceW
CopyFileExW
GlobalFree
File identification
MD5 648f61dcacce90e3711595edc61e71e4
SHA1 1de8e5940511ef74baab3f640841d3219eb28f9d
SHA256 dffe1a48132a8a87ff9021c269c84faba6c1a5cfb79a3dafa0622898868fb1df
ssdeep
1536:/kpbVQ6cL+GpU4468TYiMi4APmbPdvwDoviZDIpPCvqGb3R+1ppt3GkA7:/y5QLBq446niU+SwDo6K0Fb3Oppt3Gk

File size 172.0 KB ( 176128 bytes )
File type Win32 EXE
Magic literal

TrID Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
VXD Driver (0.1%)
VirusTotal metadata
First submission 2009-09-11 16:48:37 UTC ( 4 years, 10 months ago )
Last submission 2011-08-26 22:46:41 UTC ( 2 years, 10 months ago )
File names 648F61DCACCE90E3711595EDC61E71E4
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!