× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: e6ab10fbfc27b8590a34ddb92d75ddd07baabe4b14b55bdb556485f15f28fadc
Detection ratio: 15 / 41
Analysis date: 2010-02-10 02:01:25 UTC ( 9 years ago )
Antivirus Result Update
AntiVir Worm/Koobface.eyf 20100209
AVG SHeur2.CKMA 20100209
CAT-QuickHeal (Suspicious) - DNAScan 20100209
DrWeb Win32.HLLW.Facebook.558 20100209
eTrust-Vet Win32/Koobface.C!generic 20100209
Kaspersky Net-Worm.Win32.Koobface.eyf 20100210
McAfee-GW-Edition Worm.Koobface.eyf 20100209
Microsoft Worm:Win32/Koobface.U 20100209
NOD32 Win32/Koobface.NCL 20100209
nProtect Worm/W32.Koobface.45568.B 20100209
Rising Packer.Win32.Agent.bk 20100209
Sophos AV Sus/UnkPack-C 20100209
Symantec Suspicious.Insight 20100209
TheHacker W32/Koobface.eyf 20100210
TrendMicro WORM_KUBFACE.SMF 20100209
a-squared 20100209
AhnLab-V3 20100209
Antiy-AVL 20100209
Authentium 20100209
Avast 20100209
BitDefender 20100210
ClamAV 20100210
Comodo 20100210
eSafe 20100209
F-Prot 20100209
F-Secure 20100210
Fortinet 20100209
GData 20100210
Ikarus 20100209
Jiangmin 20100208
K7AntiVirus 20100208
McAfee 20100209
McAfee+Artemis 20100209
Norman 20100209
Panda 20100209
PCTools 20100209
Prevx 20100210
Sunbelt 20100210
VBA32 20100209
ViRobot 20100210
VirusBuster 20100209
The file being studied is a Portable Executable file! More specifically, it is a unknown file.
PE header basic information
Number of sections 4
PE sections
PE imports
DragQueryFile
ShellExecuteA
MessageBoxA
SetDlgItemTextA
IsDlgButtonChecked
GetWindowTextLengthA
SetWindowTextA
LoadIconA
SendMessageA
GetWindowTextA
GetDlgItem
EndDialog
DialogBoxParamA
CheckDlgButton
wsprintfA
File identification
MD5 8ec98ac0a16e1a0417035ce80e3a0544
SHA1 a56b3766639dc896e54485024dfcc94ceed60a7a
SHA256 e6ab10fbfc27b8590a34ddb92d75ddd07baabe4b14b55bdb556485f15f28fadc
ssdeep
768:FdL5p1Vcceu5XYvJYZNxc1D9NTe2GQEq9Qnan6QoX3LtZyC0:FdL5n/eqLTODHTIQEqqnC6QoX3LWC

File size 44.5 KB ( 45568 bytes )
File type unknown
Magic literal

TrID Win32 Dynamic Link Library (generic) (65.4%)
Generic Win/DOS Executable (17.2%)
DOS Executable Generic (17.2%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
VirusTotal metadata
First submission 2010-02-10 02:01:25 UTC ( 9 years ago )
Last submission 2010-02-10 02:01:25 UTC ( 9 years ago )
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!