× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: f4d74dbadd6aa02a7df659d0c7967e4e756fa8364c4031d38afa3e8b5277439b
File name: D573E5C38F2AF341E712EBC147A33AB0
Detection ratio: 35 / 43
Analysis date: 2011-07-27 03:39:36 UTC ( 6 years, 11 months ago )
Antivirus Result Update
AhnLab-V3 Trojan/Win32.Agent2 20110727
AntiVir TR/Dropper.Gen 20110727
Avast Win32:MalOb-FH [Cryp] 20110726
Avast5 Win32:MalOb-FH [Cryp] 20110726
AVG Agent2.AICV.dropper 20110727
BitDefender Trojan.Generic.3200911 20110727
CAT-QuickHeal Trojan.Agent2.cnky 20110726
ClamAV Trojan.Agent-141236 20110727
Commtouch W32/SuspPack.BV.gen!Eldorado 20110727
DrWeb Trojan.Siggen.52964 20110727
Emsisoft Trojan.Win32.Obfuscated!IK 20110727
eSafe Win32.TrojanHorse 20110726
eTrust-Vet Win32/Cutwail.AYL 20110726
F-Prot W32/SuspPack.BV.gen!Eldorado 20110727
F-Secure Trojan.Generic.3200911 20110727
GData Trojan.Generic.3200911 20110727
Ikarus Trojan.Win32.Obfuscated 20110727
Jiangmin Trojan/Agent.dlfr 20110726
K7AntiVirus Trojan 20110726
Kaspersky Trojan.Win32.Agent2.cnky 20110727
McAfee Generic.dx!mlb 20110727
McAfee-GW-Edition Generic.dx!mlb 20110726
Microsoft Trojan:Win32/Sefnit.A 20110726
NOD32 Win32/Agent.QRF 20110727
Norman W32/Suspicious_Gen2.HBJZM 20110726
nProtect Gen:Variant.Kazy.5461 20110726
Panda Trj/CI.A 20110726
PCTools Adware.VirtuMonde!rem 20110727
Sophos AV Mal/Generic-L 20110727
Symantec Adware.VirtuMonde 20110727
TrendMicro TROJ_GEN.RFFE1H4 20110727
TrendMicro-HouseCall TROJ_GEN.RFFE1H4 20110727
VIPRE Trojan.Win32.Generic!BT 20110727
ViRobot Trojan.Win32.Sinowal.74332 20110727
VirusBuster Trojan.Sinowal!xxxvSI2yx5E 20110726
Antiy-AVL 20110726
Comodo 20110727
Fortinet 20110726
Prevx 20110727
Rising 20110725
SUPERAntiSpyware 20110727
TheHacker 20110726
VBA32 20110726
The file being studied is a Portable Executable file! More specifically, it is a Win32 EXE file.
PE header basic information
Number of sections 5
PE sections
PE imports
RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA
ImageList_AddMasked
ImageList_Destroy
ImageList_Create
1 more function(s) imported by ordinal)
SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject
CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
SetFileTime
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation
EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance
File identification
MD5 d573e5c38f2af341e712ebc147a33ab0
SHA1 cf851cd65c52d969ed2d9faafb16eb94ba72198f
SHA256 f4d74dbadd6aa02a7df659d0c7967e4e756fa8364c4031d38afa3e8b5277439b
ssdeep
1536:EpgpHzb9dZVX9fHMvG0D3XJgMCcGFlT6V4uLM4C6lArh4ByJg2Ftx2:ygXdZt9P6D3XJgMCcKlTg4uo4CIAlHY

File size 72.6 KB ( 74332 bytes )
File type Win32 EXE
Magic literal

TrID Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
VirusTotal metadata
First submission 2010-01-20 13:26:52 UTC ( 8 years, 5 months ago )
Last submission 2011-07-27 03:39:36 UTC ( 6 years, 11 months ago )
File names D573E5C38F2AF341E712EBC147A33AB0
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!