Virus Total Results:
Antivirus Version Last Update Result
a-squared 4.0.0.101 2009.05.12 -
AhnLab-V3 5.0.0.2 2009.05.12 -
AntiVir 7.9.0.166 2009.05.12 -
Antiy-AVL 2.0.3.1 2009.05.12 -
Authentium 5.1.2.4 2009.05.12 -
Avast 4.8.1335.0 2009.05.11 -
AVG 8.5.0.327 2009.05.11 -
BitDefender 7.2 2009.05.12 -
CAT-QuickHeal 10.00 2009.05.12 (Suspicious) - DNAScan
ClamAV 0.94.1 2009.05.12 -
Comodo 1157 2009.05.08 -
DrWeb 5.0.0.12182 2009.05.12 -
eSafe 7.0.17.0 2009.05.10 Suspicious File
eTrust-Vet 31.6.6500 2009.05.11 -
F-Prot 4.4.4.56 2009.05.11 -
F-Secure 8.0.14470.0 2009.05.12 -
Fortinet 3.117.0.0 2009.05.12 -
GData 19 2009.05.12 -
Ikarus T3.1.1.49.0 2009.05.12 -
K7AntiVirus 7.10.732 2009.05.11 -
Kaspersky 7.0.0.125 2009.05.12 -
McAfee 5612 2009.05.11 -
McAfee+Artemis 5612 2009.05.11 -
McAfee-GW-Edition 6.7.6 2009.05.12 -
Microsoft 1.4602 2009.05.12 -
NOD32 4066 2009.05.12 -
Norman 6.01.05 2009.05.11 -
nProtect 2009.1.8.0 2009.05.12 -
Panda 10.0.0.14 2009.05.11 -
PCTools 4.4.2.0 2009.05.07 -
Prevx 3.0 2009.05.12 -
Rising 21.29.11.00 2009.05.12 -
Sophos 4.41.0 2009.05.12 -
Sunbelt 3.2.1858.2 2009.05.12 -
Symantec 1.4.4.12 2009.05.12 -
TheHacker 6.3.4.1.324 2009.05.09 -
TrendMicro 8.950.0.1092 2009.05.12 -
ViRobot 2009.5.12.1730 2009.05.12 -
VirusBuster 4.6.5.0 2009.05.11 -
Additional information
File size: 466432 bytes
MD5...: 8f70feebb7511f41e47a36defcf6f021
SHA1..: 785189c087a0f79703388fb386491fd2642b261d
SHA256: 61b9e2f5f2776e0dc57fff9de7407ed004b3ac467316a1c082 80df36b7baec55
SHA512: 9abee31dd7e9a583a22ad75d2e4d90a2640008aea4f2e45c46 35cd3fe3f3dbb7
54b453a47679c8427c0b9ef86b5871c0937cb43372052ea8e9 c2324932355925
ssdeep: 12288:R++D7fMU+oALxsiUWMJ61DDfFwpsC5ANz0yc+3oAJlgW :RpUsGxEWvlDfF
I7c0yV3of
PEiD..: PECompact 2.xx --> BitSum Technologies
TrID..: File type identification
Win32 EXE PECompact compressed (v2.x) (48.0%)
Win32 EXE PECompact compressed (generic) (33.8%)
Win32 Executable Generic (6.9%)
Win32 Dynamic Link Library (generic) (6.1%)
Win16/32 Executable Delphi generic (1.6%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x1000
timedatestamp.....: 0x4a043994 (Fri May 08 13:54:28 2009)
machinetype.......: 0x14c (I386)
( 2 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x144000 0x6a000 8.00 2f2039b10ad5dd2217252a253067e10c
.rsrc 0x145000 0x8000 0x7a00 6.72 ff79716462d02d5f6e1215830d634f52
( 12 imports )
> kernel32.dll: LoadLibraryA, GetProcAddress, VirtualAlloc, VirtualFree
> oleaut32.dll: SysFreeString
> advapi32.dll: RegQueryValueExA
> user32.dll: GetKeyboardType
> gdi32.dll: UnrealizeObject
> version.dll: VerQueryValueA
> ole32.dll: CreateStreamOnHGlobal
> comctl32.dll: _TrackMouseEvent
> shell32.dll: Shell_NotifyIconA
> comdlg32.dll: GetOpenFileNameA
> wsock32.dll: WSACleanup
> winmm.dll: timeGetTime
( 0 exports )
PDFiD.: -
RDS...: NSRL Reference Data Set
-
packers (Kaspersky): PE_Patch.PECompact, PecBundle, PECompact
packers (F-Prot): PecBundle, PECompact
|