× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: fa9c84dc84a8990179758ad3e428585964f337b954c22bbd694b65fdc48c25db
Detection ratio: 33 / 41
Analysis date: 2010-05-26 23:15:56 UTC ( 8 years, 11 months ago )
Antivirus Result Update
a-squared Virus.Win32.Injector!IK 20100510
AhnLab-V3 Win-Trojan/Downloader.70656.R 20100526
AntiVir TR/Dldr.JMVS.1 20100526
Antiy-AVL Worm/Win32.LolBot.gen 20100526
Avast Win32:Flot 20100526
Avast5 Win32:Flot 20100526
AVG Startpage.HGN 20100526
BitDefender Trojan.Downloader.JMVS 20100526
CAT-QuickHeal I-Worm.LolBot.a 20100526
Comodo UnclassifiedMalware 20100525
eSafe Win32.Downloader.Jmv 20100526
F-Secure Trojan.Downloader.JMVS 20100526
Fortinet W32/Injector.VHS!tr 20100526
GData Trojan.Downloader.JMVS 20100526
Ikarus Virus.Win32.Injector 20100526
Jiangmin Worm/LolBot.b 20100524
Kaspersky IM-Worm.Win32.LolBot.a 20100526
McAfee Generic StartPage!ci 20100526
McAfee-GW-Edition Generic StartPage!ci 20100526
Microsoft VirTool:Win32/Injector.gen!AR 20100526
NOD32 Win32/StartPage.NMH 20100526
Norman W32/Suspicious_Gen2.AESJA 20100526
nProtect Trojan.Downloader.JMVS 20100526
Panda Trj/CI.A 20100526
PCTools Downloader.Generic 20100526
Prevx Medium Risk Malware 20100526
Rising Trojan.Win32.Generic.51FAB2B6 20100526
Sophos AV Mal/Resdro-A 20100526
Symantec Downloader 20100526
TrendMicro TROJ_Gen.BZ30O5 20100526
TrendMicro-HouseCall TROJ_Gen.BZ30O5 20100526
VBA32 IM-Worm.Win32.LolBot.a 20100526
VirusBuster Worm.LolBot.B 20100526
Authentium 20100526
ClamAV 20100526
DrWeb 20100526
eTrust-Vet 20100526
F-Prot 20100526
Sunbelt 20100526
TheHacker 20100525
ViRobot 20100526
The file being studied is a Portable Executable file! More specifically, it is a unknown file.
FileVersionInfo properties
Copyright
Copyright (c) 2010

Original name n/a.exe
File version 1, 0, 0, 0
PE header basic information
Number of sections 4
PE sections
PE imports
ChooseFontA
SetBkMode
SelectObject
DeleteObject
SelectPalette
BitBlt
GetStartupInfoA
WriteConsoleA
lstrcmpiA
GetCurrentProcess
GetModuleHandleA
ReadProcessMemory
Sleep
GetModuleFileNameW
lstrlenW
WriteProcessMemory
GetCommandLineA
LoadLibraryA
OutputDebugStringA
GetModuleFileNameA
lstrcpyA
CreateMutexA
GetLastError
CreateThread
lstrcatA
WaitForSingleObject
GetProcAddress
ExitProcess
lstrlenA
lstrcmpA
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
memcpy
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_except_handler3
rand
strlen
atoi
strcpy
strtok
strcmp
getenv
strcat
__2@YAPAXI@Z
__3@YAXPAX@Z
memset
MessageBoxW
MessageBoxA
KillTimer
SetFocus
InsertMenuA
GetSubMenu
CreateWindowExA
ShowWindow
LoadMenuA
RegisterClassExA
DialogBoxParamA
TranslateMessage
VerQueryValueA
3 more function(s) imported by ordinal)
File identification
MD5 13e645be4428efa46bc8f381f05142f1
SHA1 b2c37e8113d4a0e96be72f2dbd3a54f3a40dc903
SHA256 fa9c84dc84a8990179758ad3e428585964f337b954c22bbd694b65fdc48c25db
ssdeep
1536:QmIqEiVBrUwR7lMRRN9SlREpz5tSuk8VaojeMq9:yakupMRRTSG5stSjeP

File size 69.0 KB ( 70656 bytes )
File type unknown
Magic literal

TrID Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
VirusTotal metadata
First submission 2010-03-02 12:46:36 UTC ( 9 years, 1 month ago )
Last submission 2010-05-26 23:15:56 UTC ( 8 years, 11 months ago )
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!