× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: efc55670c4bdb510b5d0da47c787c54c67d13339d02442bfbd5f8f531e54dc6a
File name: obsorbu.exe
Detection ratio: 35 / 55
Analysis date: 2015-12-27 22:49:58 UTC ( 1 year, 5 months ago ) View latest
Antivirus Result Update
Ad-Aware Trojan.GenericKD.2941254 20151224
Yandex Trojan.Diple!NTUuFjfmvZk 20151226
AhnLab-V3 Trojan/Win32.MDA 20151227
ALYac Gen:Variant.Graftor.263684 20151227
Antiy-AVL Trojan[Backdoor]/Win32.Hlux 20151227
Arcabit Trojan.Graftor.D40604 20151227
Avast Win32:Malware-gen 20151227
AVG Inject3.UUV 20151227
Baidu-International Trojan.Win32.Injector.COUI 20151227
BitDefender Gen:Variant.Graftor.263684 20151227
Bkav W32.LakisiatAN.Trojan 20151227
DrWeb Trojan.PWS.Stealer.16721 20151227
Emsisoft Gen:Variant.Graftor.263684 (B) 20151227
ESET-NOD32 a variant of Win32/Injector.COUI 20151227
F-Secure Trojan.GenericKD.2941254 20151225
Fortinet W32/COUI!tr 20151227
GData Gen:Variant.Graftor.263684 20151227
Jiangmin Trojan.Generic.ifvs 20151227
K7AntiVirus Trojan ( 004da02d1 ) 20151227
K7GW Trojan ( 004da02d1 ) 20151227
Kaspersky Backdoor.Win32.Hlux.fjaz 20151227
Malwarebytes Ransom.CryptoWall 20151227
McAfee Artemis!F149EC1A43CB 20151227
McAfee-GW-Edition BehavesLike.Win32.Almanahe.tc 20151227
Microsoft Backdoor:Win32/Kelihos 20151227
eScan Gen:Variant.Graftor.263684 20151227
NANO-Antivirus Trojan.Win32.Stealer.dzigzp 20151227
nProtect Trojan.GenericKD.2941254 20151224
Panda Trj/CI.A 20151227
Qihoo-360 HEUR/QVM20.1.Malware.Gen 20151227
Rising PE:Malware.Generic(Thunder)!1.A1C4 [F] 20151227
Sophos Mal/Generic-S 20151227
Symantec Suspicious.Cloud.9 20151227
TrendMicro TROJ_GEN.R047C0DLP15 20151227
Zillya Adware.Agent.Win32.87601 20151227
AegisLab 20151227
Alibaba 20151208
Avira (no cloud) 20151227
AVware 20151227
ByteHero 20151227
CAT-QuickHeal 20151226
ClamAV 20151227
CMC 20151217
Comodo 20151227
Cyren 20151227
F-Prot 20151227
Ikarus 20151227
SUPERAntiSpyware 20151227
Tencent 20151227
TheHacker 20151227
TrendMicro-HouseCall 20151227
VBA32 20151225
VIPRE 20151227
ViRobot 20151227
Zoner 20151227
PCAP parents
File identification
MD5 f149ec1a43cbaf9c005f4897648378c0
SHA1 8a22e314a739e3fc9b6f17954c00789849a41001
SHA256 efc55670c4bdb510b5d0da47c787c54c67d13339d02442bfbd5f8f531e54dc6a
ssdeep
24576:6r7J+ZIZCC80aH5FdkFdk6YAuEeZzQ8TZCORXWtOWnul:g7cSzqpb6FGRYAkG

authentihash b2c20978c969caeeaba1c8ffeddebe702a1ad4090dc7e06a035dc13ef8decbe6
File size 1.0 MB ( 1082231 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable (generic) (52.9%)
Generic Win/DOS Executable (23.5%)
DOS Executable Generic (23.5%)
Tags
peexe

VirusTotal metadata
First submission 2015-12-21 19:23:22 UTC ( 1 year, 5 months ago )
Last submission 2015-12-29 11:54:40 UTC ( 1 year, 4 months ago )
File names obsorbu.exe
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Created processes
Opened mutexes
Runtime DLLs
UDP communications