Hey, hatte heute mal ein wenig Langeweile und da hab ich mal ein wenig im Internet gesurft und hab ein einsames AutoIt-Script gefunden und mal fertiggestellt...
Hoffe ihr könnt es gebrauchen
Download:
Viel Spaß
Coladose
Hoffe ihr könnt es gebrauchen
Download:
Viel Spaß
Coladose
Virustest :
Antivirus Version letzte aktualisierung Ergebnis
a-squared 4.5.0.50 2010.02.28 -
AhnLab-V3 5.0.0.2 2010.02.28 -
AntiVir 8.2.1.176 2010.02.26 -
Antiy-AVL 2.0.3.7 2010.02.26 -
Authentium 5.2.0.5 2010.02.28 -
Avast 4.8.1351.0 2010.02.28 -
Avast5 5.0.332.0 2010.02.28 -
AVG 9.0.0.730 2010.02.28 -
BitDefender 7.2 2010.02.28 -
CAT-QuickHeal 10.00 2010.02.27 -
ClamAV 0.96.0.0-git 2010.02.28 -
Comodo 4091 2010.02.28 -
DrWeb 5.0.1.12222 2010.02.28 -
eSafe 7.0.17.0 2010.02.28 -
eTrust-Vet 35.2.7331 2010.02.26 -
F-Prot 4.5.1.85 2010.02.28 -
F-Secure 9.0.15370.0 2010.02.27 -
Fortinet 4.0.14.0 2010.02.28 -
GData 19 2010.02.28 -
Ikarus T3.1.1.80.0 2010.02.28 -
Jiangmin 13.0.900 2010.02.28 -
K7AntiVirus 7.10.984 2010.02.26 -
Kaspersky 7.0.0.125 2010.02.28 -
McAfee 5906 2010.02.28 -
McAfee+Artemis 5906 2010.02.28 -
McAfee-GW-Edition 6.8.5 2010.02.28 -
Microsoft 1.5502 2010.02.28 -
NOD32 4903 2010.02.28 -
Norman 6.04.08 2010.02.28 Autoit_gen.A
nProtect 2009.1.8.0 2010.02.28 -
Panda 10.0.2.2 2010.02.28 -
PCTools 7.0.3.5 2010.02.28 -
Prevx 3.0 2010.02.28 -
Rising 22.36.06.04 2010.02.28 -
Sophos 4.50.0 2010.02.28 -
Sunbelt 5708 2010.02.28 -
Symantec 20091.2.0.41 2010.02.28 Suspicious.Insight
TheHacker 6.5.1.7.215 2010.02.28 -
TrendMicro 9.120.0.1004 2010.02.28 -
VBA32 3.12.12.2 2010.02.26 -
ViRobot 2010.2.27.2206 2010.02.27 -
VirusBuster 5.0.27.0 2010.02.28 -
weitere Informationen
File size: 363379 bytes
MD5...: 58ab65c4804e96e1f3ec4529727ae04d
SHA1..: c88e6b411afd2de4125c7c66ce6499539efb5949
SHA256: 5cc501aa50ce67763debd668c14e4b8af4bf0bf7b7d3764595 571ef273138454
ssdeep: 6144:5uzYwKuEcWPawThMeOhMzm5UKaxxmYrNmIAUxRbLIehwe J369A5NH5/yDmP
dttLd:kzYwKuEYUhoMO+xxmYrkwDDV69GZ/TPz
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0xb3ed0
timedatestamp.....: 0x4b509352 (Fri Jan 15 16:09:54 2010)
machinetype.......: 0x14c (I386)
( 3 sections )
name viradd virsiz rawdsiz ntrpy md5
UPX0 0x1000 0x71000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
UPX1 0x72000 0x43000 0x42200 7.93 c2dd80dcaa405ea123e3b045feca3633
.rsrc 0xb5000 0x6000 0x5600 5.64 87f28bd3af44e02de06dd742b43024ed
( 16 imports )
> KERNEL32.DLL: LoadLibraryA, GetProcAddress, VirtualProtect, VirtualAlloc, VirtualFree, ExitProcess
> ADVAPI32.dll: GetAce
> COMCTL32.dll: ImageList_Remove
> COMDLG32.dll: GetSaveFileNameW
> GDI32.dll: LineTo
> MPR.dll: WNetGetConnectionW
> ole32.dll: CoInitialize
> OLEAUT32.dll: -
> PSAPI.DLL: EnumProcesses
> SHELL32.dll: DragFinish
> USER32.dll: GetDC
> USERENV.dll: LoadUserProfileW
> VERSION.dll: VerQueryValueW
> WININET.dll: FtpOpenFileW
> WINMM.dll: timeGetTime
> WSOCK32.dll: -
( 0 exports )
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: UPX compressed Win32 Executable (39.5%)
Win32 EXE Yoda's Crypter (34.3%)
Win32 Executable Generic (11.0%)
Win32 Dynamic Link Library (generic) (9.8%)
Generic Win/DOS Executable (2.5%)
packers (Kaspersky): PE_Patch.UPX, UPX
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..:
original name: n/a
internal name: n/a
file version.: 3, 3, 4, 0
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
packers (F-Prot): UPX
a-squared 4.5.0.50 2010.02.28 -
AhnLab-V3 5.0.0.2 2010.02.28 -
AntiVir 8.2.1.176 2010.02.26 -
Antiy-AVL 2.0.3.7 2010.02.26 -
Authentium 5.2.0.5 2010.02.28 -
Avast 4.8.1351.0 2010.02.28 -
Avast5 5.0.332.0 2010.02.28 -
AVG 9.0.0.730 2010.02.28 -
BitDefender 7.2 2010.02.28 -
CAT-QuickHeal 10.00 2010.02.27 -
ClamAV 0.96.0.0-git 2010.02.28 -
Comodo 4091 2010.02.28 -
DrWeb 5.0.1.12222 2010.02.28 -
eSafe 7.0.17.0 2010.02.28 -
eTrust-Vet 35.2.7331 2010.02.26 -
F-Prot 4.5.1.85 2010.02.28 -
F-Secure 9.0.15370.0 2010.02.27 -
Fortinet 4.0.14.0 2010.02.28 -
GData 19 2010.02.28 -
Ikarus T3.1.1.80.0 2010.02.28 -
Jiangmin 13.0.900 2010.02.28 -
K7AntiVirus 7.10.984 2010.02.26 -
Kaspersky 7.0.0.125 2010.02.28 -
McAfee 5906 2010.02.28 -
McAfee+Artemis 5906 2010.02.28 -
McAfee-GW-Edition 6.8.5 2010.02.28 -
Microsoft 1.5502 2010.02.28 -
NOD32 4903 2010.02.28 -
Norman 6.04.08 2010.02.28 Autoit_gen.A
nProtect 2009.1.8.0 2010.02.28 -
Panda 10.0.2.2 2010.02.28 -
PCTools 7.0.3.5 2010.02.28 -
Prevx 3.0 2010.02.28 -
Rising 22.36.06.04 2010.02.28 -
Sophos 4.50.0 2010.02.28 -
Sunbelt 5708 2010.02.28 -
Symantec 20091.2.0.41 2010.02.28 Suspicious.Insight
TheHacker 6.5.1.7.215 2010.02.28 -
TrendMicro 9.120.0.1004 2010.02.28 -
VBA32 3.12.12.2 2010.02.26 -
ViRobot 2010.2.27.2206 2010.02.27 -
VirusBuster 5.0.27.0 2010.02.28 -
weitere Informationen
File size: 363379 bytes
MD5...: 58ab65c4804e96e1f3ec4529727ae04d
SHA1..: c88e6b411afd2de4125c7c66ce6499539efb5949
SHA256: 5cc501aa50ce67763debd668c14e4b8af4bf0bf7b7d3764595 571ef273138454
ssdeep: 6144:5uzYwKuEcWPawThMeOhMzm5UKaxxmYrNmIAUxRbLIehwe J369A5NH5/yDmP
dttLd:kzYwKuEYUhoMO+xxmYrkwDDV69GZ/TPz
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0xb3ed0
timedatestamp.....: 0x4b509352 (Fri Jan 15 16:09:54 2010)
machinetype.......: 0x14c (I386)
( 3 sections )
name viradd virsiz rawdsiz ntrpy md5
UPX0 0x1000 0x71000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
UPX1 0x72000 0x43000 0x42200 7.93 c2dd80dcaa405ea123e3b045feca3633
.rsrc 0xb5000 0x6000 0x5600 5.64 87f28bd3af44e02de06dd742b43024ed
( 16 imports )
> KERNEL32.DLL: LoadLibraryA, GetProcAddress, VirtualProtect, VirtualAlloc, VirtualFree, ExitProcess
> ADVAPI32.dll: GetAce
> COMCTL32.dll: ImageList_Remove
> COMDLG32.dll: GetSaveFileNameW
> GDI32.dll: LineTo
> MPR.dll: WNetGetConnectionW
> ole32.dll: CoInitialize
> OLEAUT32.dll: -
> PSAPI.DLL: EnumProcesses
> SHELL32.dll: DragFinish
> USER32.dll: GetDC
> USERENV.dll: LoadUserProfileW
> VERSION.dll: VerQueryValueW
> WININET.dll: FtpOpenFileW
> WINMM.dll: timeGetTime
> WSOCK32.dll: -
( 0 exports )
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: UPX compressed Win32 Executable (39.5%)
Win32 EXE Yoda's Crypter (34.3%)
Win32 Executable Generic (11.0%)
Win32 Dynamic Link Library (generic) (9.8%)
Generic Win/DOS Executable (2.5%)
packers (Kaspersky): PE_Patch.UPX, UPX
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..:
original name: n/a
internal name: n/a
file version.: 3, 3, 4, 0
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
packers (F-Prot): UPX
-> Ich habs mit AutiIt gemacht, desswegen die 2 Funde
BIIIGG CREDITZ TO: --->Oscar<---
BIIIGG CREDITZ TO: --->Oscar<---