VirusTotal is an on-line service that you can submit suspicious files and it will run it through all the A-V products that it knows.
The link to threatexpert.com was dead
| File TorrentPrivacy.exe received on 05.11.2009 11:23:20 (CET) | |||
| Antivirus | Version | Last Update | Result |
| a-squared | 4.0.0.101 | 2009.05.11 | Downloader.Delphi!IK |
| AhnLab-V3 | 5.0.0.2 | 2009.05.11 | - |
| AntiVir | 7.9.0.166 | 2009.05.11 | DR/Delphi.Gen |
| Antiy-AVL | 2.0.3.1 | 2009.05.11 | - |
| Authentium | 5.1.2.4 | 2009.05.10 | - |
| Avast | 4.8.1335.0 | 2009.05.10 | - |
| AVG | 8.5.0.327 | 2009.05.11 | PSW.Banker5.KDS |
| BitDefender | 7.2 | 2009.05.11 | - |
| CAT-QuickHeal | 10.00 | 2009.05.09 | Win32.TrojanSpy.Banker.aww.a |
| ClamAV | 0.94.1 | 2009.05.11 | - |
| Comodo | 1157 | 2009.05.08 | Unclassified Malware |
| DrWeb | 5.0.0.12182 | 2009.05.11 | - |
| eSafe | 7.0.17.0 | 2009.05.10 | Win32.DRDelphi |
| eTrust-Vet | 31.6.6497 | 2009.05.08 | - |
| F-Prot | 4.4.4.56 | 2009.05.10 | - |
| F-Secure | 8.0.14470.0 | 2009.05.11 | - |
| Fortinet | 3.117.0.0 | 2009.05.11 | - |
| GData | 19 | 2009.05.11 | - |
| Ikarus | T3.1.1.49.0 | 2009.05.11 | Downloader.Delphi |
| K7AntiVirus | 7.10.729 | 2009.05.08 | - |
| Kaspersky | 7.0.0.125 | 2009.05.11 | - |
| McAfee | 5611 | 2009.05.10 | - |
| McAfee+Artemis | 5611 | 2009.05.10 | Artemis!2E37E5F89629 |
| McAfee-GW-Edition | 6.7.6 | 2009.05.11 | - |
| Microsoft | 1.4602 | 2009.05.11 | - |
| NOD32 | 4064 | 2009.05.11 | - |
| Norman | 6.01.05 | 2009.05.08 | Banker.EIWW |
| nProtect | 2009.1.8.0 | 2009.05.11 | - |
| Panda | 10.0.0.14 | 2009.05.10 | Suspicious file |
| PCTools | 4.4.2.0 | 2009.05.07 | - |
| Prevx | 3.0 | 2009.05.11 | - |
| Rising | 21.29.02.00 | 2009.05.11 | - |
| Sophos | 4.41.0 | 2009.05.11 | Mal/Inet-Fam |
| Sunbelt | 3.2.1858.2 | 2009.05.09 | - |
| Symantec | 1.4.4.12 | 2009.05.11 | - |
| TheHacker | 6.3.4.1.324 | 2009.05.09 | - |
| TrendMicro | 8.950.0.1092 | 2009.05.11 | - |
| VBA32 | 3.12.10.4 | 2009.05.11 | - |
| ViRobot | 2009.5.11.1728 | 2009.05.11 | - |
| VirusBuster | 4.6.5.0 | 2009.05.10 | - |
| Additional information | |||
| File size: 601088 bytes | |||
| MD5...: 2e37e5f89629be35a281802e36b967d2 | |||
| SHA1..: 3efdffdf3f43f78931c19085e31fca4423798bb2 | |||
| SHA256: b6a0b92fed40df5f5f80c4c7764603f916426f25d6d325b02c518e1d3eaee045 | |||
| SHA512: 03f3f7bab1d2bd1860ae07493081e4f3994a27bb7645d51f9ec77c2d6d543370 ba97cb27314ff92b35f3d4c5f07f58320fd7b018161d7115337050a4186c223e | |||
| ssdeep: 12288:kAaUK050Gy2HlRscolDlXiefWF6HegnkreyLR3Lg5mZfWKGBj:sUz5U2Hl ucUEeeybIlLR3OAu | |||
| PEiD..: PECompact 2.xx --> BitSum Technologies | |||
| TrID..: File type identification Win32 EXE PECompact compressed (v2.x) (48.0%) Win32 EXE PECompact compressed (generic) (33.8%) Win32 Executable Generic (6.9%) Win32 Dynamic Link Library (generic) (6.1%) Win16/32 Executable Delphi generic (1.6%) | |||
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x1000 timedatestamp.....: 0x2a425e19 (Fri Jun 19 22:22:17 1992) machinetype.......: 0x14c (I386) ( 2 sections ) name viradd virsiz rawdsiz ntrpy md5 CODE 0x1000 0x3b0000 0x8f800 8.00 2d4a01639e877b41eed63ccc36e38a1e .rsrc 0x3b1000 0x3000 0x3000 5.61 a4ef8e9b27138077875000f8f4c6e8ad ( 1 imports ) > kernel32.dll: LoadLibraryA, GetProcAddress, VirtualAlloc, VirtualFree ( 0 exports ) | |||
| PDFiD.: - | |||
| RDS...: NSRL Reference Data Set - | |||
| ThreatExpert info: www.threatexpert.com/report.aspx?md5= 2e37e5f89629be35a281802e36b967d2 | |||
| packers (Kaspersky): PE_Patch.PECompact, PecBundle, PECompact | |||
| packers (F-Prot): PecBundle, PECompact | |||
The link to threatexpert.com was dead
No comments:
Post a Comment