VirusTotal is an on-line service that you can submit suspicious files and it will run it through all the A-V products that it knows.
The link to threatexpert.com was dead
| File TorrentPrivacy.exe received on 05.11.2009 11:23:20 (CET) | |||
| Antivirus | Version | Last Update | Result |
| a-squared | 4.0.0.101 | 2009.05.11 | Downloader.Delphi!IK |
| AhnLab-V3 | 5.0.0.2 | 2009.05.11 | - |
| AntiVir | 7.9.0.166 | 2009.05.11 | DR/Delphi.Gen |
| Antiy-AVL | 2.0.3.1 | 2009.05.11 | - |
| Authentium | 5.1.2.4 | 2009.05.10 | - |
| Avast | 4.8.1335.0 | 2009.05.10 | - |
| AVG | 8.5.0.327 | 2009.05.11 | PSW.Banker5.KDS |
| BitDefender | 7.2 | 2009.05.11 | - |
| CAT-QuickHeal | 10.00 | 2009.05.09 | Win32.TrojanSpy.Banker.aww.a |
| ClamAV | 0.94.1 | 2009.05.11 | - |
| Comodo | 1157 | 2009.05.08 | Unclassified Malware |
| DrWeb | 5.0.0.12182 | 2009.05.11 | - |
| eSafe | 7.0.17.0 | 2009.05.10 | Win32.DRDelphi |
| eTrust-Vet | 31.6.6497 | 2009.05.08 | - |
| F-Prot | 4.4.4.56 | 2009.05.10 | - |
| F-Secure | 8.0.14470.0 | 2009.05.11 | - |
| Fortinet | 3.117.0.0 | 2009.05.11 | - |
| GData | 19 | 2009.05.11 | - |
| Ikarus | T3.1.1.49.0 | 2009.05.11 | Downloader.Delphi |
| K7AntiVirus | 7.10.729 | 2009.05.08 | - |
| Kaspersky | 7.0.0.125 | 2009.05.11 | - |
| McAfee | 5611 | 2009.05.10 | - |
| McAfee+Artemis | 5611 | 2009.05.10 | Artemis!2E37E5F89629 |
| McAfee-GW-Edition | 6.7.6 | 2009.05.11 | - |
| Microsoft | 1.4602 | 2009.05.11 | - |
| NOD32 | 4064 | 2009.05.11 | - |
| Norman | 6.01.05 | 2009.05.08 | Banker.EIWW |
| nProtect | 2009.1.8.0 | 2009.05.11 | - |
| Panda | 10.0.0.14 | 2009.05.10 | Suspicious file |
| PCTools | 4.4.2.0 | 2009.05.07 | - |
| Prevx | 3.0 | 2009.05.11 | - |
| Rising | 21.29.02.00 | 2009.05.11 | - |
| Sophos | 4.41.0 | 2009.05.11 | Mal/Inet-Fam |
| Sunbelt | 3.2.1858.2 | 2009.05.09 | - |
| Symantec | 1.4.4.12 | 2009.05.11 | - |
| TheHacker | 6.3.4.1.324 | 2009.05.09 | - |
| TrendMicro | 8.950.0.1092 | 2009.05.11 | - |
| VBA32 | 3.12.10.4 | 2009.05.11 | - |
| ViRobot | 2009.5.11.1728 | 2009.05.11 | - |
| VirusBuster | 4.6.5.0 | 2009.05.10 | - |
| Additional information | |||
| File size: 601088 bytes | |||
| MD5...: 2e37e5f89629be35a281802e36b967d2 | |||
| SHA1..: 3efdffdf3f43f78931c19085e31fca4423798bb2 | |||
| SHA256: b6a0b92fed40df5f5f80c4c7764603f916426f25d6d325b02c518e1d3eaee045 | |||
| SHA512: 03f3f7bab1d2bd1860ae07493081e4f3994a27bb7645d51f9ec77c2d6d543370 ba97cb27314ff92b35f3d4c5f07f58320fd7b018161d7115337050a4186c223e | |||
| ssdeep: 12288:kAaUK050Gy2HlRscolDlXiefWF6HegnkreyLR3Lg5mZfWKGBj:sUz5U2Hl ucUEeeybIlLR3OAu | |||
| PEiD..: PECompact 2.xx --> BitSum Technologies | |||
| TrID..: File type identification Win32 EXE PECompact compressed (v2.x) (48.0%) Win32 EXE PECompact compressed (generic) (33.8%) Win32 Executable Generic (6.9%) Win32 Dynamic Link Library (generic) (6.1%) Win16/32 Executable Delphi generic (1.6%) | |||
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x1000 timedatestamp.....: 0x2a425e19 (Fri Jun 19 22:22:17 1992) machinetype.......: 0x14c (I386) ( 2 sections ) name viradd virsiz rawdsiz ntrpy md5 CODE 0x1000 0x3b0000 0x8f800 8.00 2d4a01639e877b41eed63ccc36e38a1e .rsrc 0x3b1000 0x3000 0x3000 5.61 a4ef8e9b27138077875000f8f4c6e8ad ( 1 imports ) > kernel32.dll: LoadLibraryA, GetProcAddress, VirtualAlloc, VirtualFree ( 0 exports ) | |||
| PDFiD.: - | |||
| RDS...: NSRL Reference Data Set - | |||
| ThreatExpert info: www.threatexpert.com/report.aspx?md5= 2e37e5f89629be35a281802e36b967d2 | |||
| packers (Kaspersky): PE_Patch.PECompact, PecBundle, PECompact | |||
| packers (F-Prot): PecBundle, PECompact | |||
The link to threatexpert.com was dead
No comments:
Post a Comment
Please do not enter links that are just promoting your own website or ones to those that you are shilling.
Comments with hyperlinks (that are not relevant to the original post) will be re-posted or deleted.
Sorry, this is to discourage "blog spam"