× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: e6cd4dfdca1355c9a251b2a839766b03239e48f4262599abd78ff4ca92588aed
Detection ratio: 13 / 41
Analysis date: 2010-02-09 13:27:53 UTC ( 8 years, 11 months ago )
Antivirus Result Update
AntiVir Worm/Koobface.eyf 20100209
AVG SHeur2.CKMA 20100209
CAT-QuickHeal (Suspicious) - DNAScan 20100209
eTrust-Vet Win32/Koobface.C!generic 20100209
Kaspersky Net-Worm.Win32.Koobface.eyf 20100209
McAfee-GW-Edition Worm.Koobface.eyf 20100209
Microsoft Worm:Win32/Koobface.U 20100209
nProtect Worm/W32.Koobface.45568.B 20100209
Rising Packer.Win32.Agent.bk 20100209
Sophos AV Sus/UnkPack-C 20100209
Symantec Suspicious.Insight 20100209
TheHacker W32/Koobface.eyf 20100209
TrendMicro WORM_KUBFACE.SMF 20100209
a-squared 20100209
AhnLab-V3 20100209
Antiy-AVL 20100209
Authentium 20100209
Avast 20100209
BitDefender 20100209
ClamAV 20100209
Comodo 20100209
DrWeb 20100209
eSafe 20100207
F-Prot 20100208
F-Secure 20100209
Fortinet 20100209
GData 20100209
Ikarus 20100209
Jiangmin 20100208
K7AntiVirus 20100208
McAfee 20100208
McAfee+Artemis 20100208
NOD32 20100209
Norman 20100209
Panda 20100207
PCTools 20100209
Prevx 20100209
Sunbelt 20100209
VBA32 20100208
ViRobot 20100209
VirusBuster 20100209
The file being studied is a Portable Executable file! More specifically, it is a unknown file.
PE header basic information
Number of sections 4
PE sections
PE imports
DragQueryFile
ShellExecuteA
MessageBoxA
SetDlgItemTextA
IsDlgButtonChecked
GetWindowTextLengthA
SetWindowTextA
LoadIconA
SendMessageA
GetWindowTextA
GetDlgItem
EndDialog
DialogBoxParamA
CheckDlgButton
wsprintfA
File identification
MD5 547fce512d107c2c46e65e2e9690a4b2
SHA1 6b5f7035ee728947856a11b50bf02ac56f522916
SHA256 e6cd4dfdca1355c9a251b2a839766b03239e48f4262599abd78ff4ca92588aed
ssdeep
768:/dL5p1Vcceu5XYvJYZNxc1D9NTe2GQEq9Qnan6QoX3LtZyC0:/dL5n/eqLTODHTIQEqqnC6QoX3LWC

File size 44.5 KB ( 45568 bytes )
File type unknown
Magic literal

TrID Win32 Dynamic Link Library (generic) (65.4%)
Generic Win/DOS Executable (17.2%)
DOS Executable Generic (17.2%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
VirusTotal metadata
First submission 2010-02-09 13:27:53 UTC ( 8 years, 11 months ago )
Last submission 2010-02-09 13:27:53 UTC ( 8 years, 11 months ago )
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!