× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: f31bdf99cc964eb9979bc8974a69d9f0ecc809a19b8b0dea9d53b86dce8ce889
File name: bbucolor.exe
Detection ratio: 24 / 41
Analysis date: 2010-01-11 22:14:08 UTC ( 4 years, 6 months ago ) View latest
Antivirus Result Update
AVG PSW.Generic7.ABFG 20100111
AntiVir DR/PSW.QQPass.kvg 20100111
Antiy-AVL Trojan/Win32.QQPass.gen 20100111
Authentium W32/TrojanX.CEGP 20100111
Avast Win32:Trojan-gen 20100111
BitDefender Trojan.Generic.2500067 20100111
Comodo UnclassifiedMalware 20100111
F-Prot W32/TrojanX.CEGP 20100110
F-Secure Trojan.Generic.2500067 20100111
GData Trojan.Generic.2500067 20100111
Ikarus Trojan-PWS.Win32.QQPass 20100111
Jiangmin Trojan/PSW.QQPass.xrk 20100111
Kaspersky Trojan-PSW.Win32.QQPass.kvg 20100111
McAfee+Artemis Artemis!1745A9EBADF6 20100111
McAfee-GW-Edition Trojan.Dropper.PSW.QQPass.kvg 20100111
Microsoft PWS:Win32/Inido!rts 20100111
NOD32 probably a variant of Win32/PSW.IM 20100111
PCTools Trojan-PSW.Generic 20100111
Panda Trj/CI.A 20100111
Sophos Mal/Generic-A 20100111
Symantec Infostealer 20100111
TrendMicro TROJ_VB.HOT 20100111
a-squared Trojan-PWS.Win32.QQPass!IK 20100111
eSafe Win32.DRPSW.QQPass.K 20100111
AhnLab-V3 20100111
CAT-QuickHeal 20100111
ClamAV 20100111
DrWeb 20100111
Fortinet 20100109
K7AntiVirus 20100111
McAfee 20100111
Norman 20100111
Prevx 20100111
Rising 20100111
Sunbelt 20100111
TheHacker 20100111
VBA32 20100111
ViRobot 20100111
VirusBuster 20100111
eTrust-Vet 20100111
nProtect 20100111
The file being studied is a Portable Executable file! More specifically, it is a unknown file.
PE header basic information
Number of sections 8
PE sections
PE imports
InitCommonControls
GetCurrentThreadId
LocalSize
LocalReAlloc
ExitProcess
UnhandledExceptionFilter
RtlUnwind
RaiseException
TlsSetValue
TlsGetValue
LocalFree
LocalAlloc
GetModuleHandleA
FreeLibrary
WriteFile
VirtualFree
VirtualAlloc
SizeofResource
LockResource
LoadResource
LoadLibraryA
GetTempPathA
GetTempFileNameA
GetProcAddress
GetModuleFileNameA
GetCommandLineA
FreeResource
FreeLibrary
FindResourceA
DeleteFileA
CreateFileA
CloseHandle
MessageBoxA
GetActiveWindow
File identification
MD5 1745a9ebadf6814883c9fe2cb0d18807
SHA1 7ec5640e86413e4b9c08001b355920b1cbbadb65
SHA256 f31bdf99cc964eb9979bc8974a69d9f0ecc809a19b8b0dea9d53b86dce8ce889
ssdeep

File size 172.9 KB ( 177096 bytes )
File type unknown
Magic literal

TrID Win32 Executable Generic (38.4%)
Win32 Dynamic Link Library (generic) (34.1%)
Win16/32 Executable Delphi generic (9.3%)
Generic Win/DOS Executable (9.0%)
DOS Executable Generic (9.0%)
VirusTotal metadata
First submission 2009-06-01 18:58:33 UTC ( 5 years, 1 month ago )
Last submission 2010-01-15 03:28:25 UTC ( 4 years, 6 months ago )
File names
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!