× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: e3d0448d710746aa99f704dd7945be477587c15b7b67dd6df4d94d0d690d1f2a
File name: 480B927B597C90BC62D3D603954C9A5B
Detection ratio: 33 / 43
Analysis date: 2011-08-09 12:00:25 UTC ( 6 years, 6 months ago )
Antivirus Result Update
AhnLab-V3 Win-Trojan/Xema.variant 20110808
Avast Win32:Malware-gen 20110809
Avast5 Win32:Malware-gen 20110809
AVG Delf.PMP 20110809
BitDefender Trojan.Generic.IS.141583 20110809
CAT-QuickHeal Trojan.Delf.tvc 20110809
ClamAV Trojan.Delf-9595 20110809
Commtouch W32/MalwareF.AYFT 20110809
Comodo UnclassifiedMalware 20110809
DrWeb Trojan.Siggen1.47042 20110809
Emsisoft Trojan-Dropper.Delf!IK 20110809
eSafe Win32.TRDropper 20110808
F-Prot W32/MalwareF.AYFT 20110809
F-Secure Trojan.Generic.IS.141583 20110809
GData Trojan.Generic.IS.141583 20110809
Ikarus Trojan-Dropper.Delf 20110809
Jiangmin Trojan/Delf.njh 20110808
McAfee Generic.dx!vpq 20110809
McAfee-GW-Edition Generic.dx!vpq 20110809
Microsoft Trojan:Win32/Trufip!rts 20110809
NOD32 probably a variant of Win32/Agent.IBSSSNP 20110809
Norman W32/Agent.OSJM 20110809
Panda Trj/Downloader.MDW 20110808
PCTools Trojan.Generic 20110809
Sophos AV Mal/Generic-L 20110809
Symantec Trojan Horse 20110809
TheHacker Trojan/Agent.cprn 20110807
TrendMicro TROJ_GEN.R47C3II 20110809
TrendMicro-HouseCall TROJ_GEN.R47C3II 20110809
VBA32 TrojanPSW.Magania.draa 20110808
VIPRE Trojan.Win32.Generic!BT 20110809
ViRobot Dropper.Agent.781240 20110809
VirusBuster Trojan.Delf!dOQrBHEoZCM 20110808
AntiVir 20110809
Antiy-AVL 20110809
eTrust-Vet 20110809
Fortinet 20110809
K7AntiVirus 20110802
Kaspersky 20110809
nProtect 20110809
Prevx 20110809
Rising 20110809
SUPERAntiSpyware 20110809
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file.
PE header basic information
Number of sections 3
PE sections
PE imports
CoInternetCreateZoneManager
RegQueryValueExA
ImageList_SetIconSize
PrintDlgA
UnrealizeObject
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
IsEqualGUID
SysFreeString
ShellExecuteExA
GetKeyboardType
VerQueryValueA
InternetSetOptionA
timeGetTime
OpenPrinterA
File identification
MD5 480b927b597c90bc62d3d603954c9a5b
SHA1 53cd8c292c3d9bcb4a0e8af30f1df592365b9151
SHA256 e3d0448d710746aa99f704dd7945be477587c15b7b67dd6df4d94d0d690d1f2a
ssdeep
12288:C0aIDG6w4fui0Ttau8rkLUfHHy/b7o1gHTZ+0btUSsnX6vSJ96Mm4nAb9Z:CVfWf09LUPHqb71zTbtUjXwSb6phZ

File size 762.9 KB ( 781240 bytes )
File type Win32 EXE
Magic literal

TrID Generic Win/DOS Executable (49.9%)
DOS Executable Generic (49.8%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
VirusTotal metadata
First submission 2010-02-01 10:00:45 UTC ( 8 years ago )
Last submission 2011-08-09 12:00:25 UTC ( 6 years, 6 months ago )
File names UAjsH_Fh.docm
480B927B597C90BC62D3D603954C9A5B
480b927b597c90bc62d3d603954c9a5b
aa
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!