ArcadeFAQSearchLogin
Register
It is currently Mon Dec 28, 2009 2:25 am

View unanswered posts | View active topics


Board index » Malware Analysis » Analyze Malwares

All times are UTC + 5:30 hours [ DST ]


Welcome
Welcome to <strong>Malware Analysis Forum</strong>.

You are currently viewing our boards as a guest, which gives you limited access to view most discussions and access our other features. By joining our free community, you will have access to post topics, communicate privately with other members (PM), respond to polls, upload content, and access many other special features. Registration is fast, simple, and absolutely free, so please, <a href="/profile.php?mode=register">join our community today</a>!


Post new topic Reply to topic  Page 1 of 1
  [ 1 post ] 
  Previous topic | Next topic 
Author Message
maliciousbrains
 Post subject: 9e9d72893711d4b00fb002f7a443c9b5 --> AtnvrsInstall.exe
PostPosted: Sun May 11, 2008 1:12 pm 
Offline
Site Admin
User avatar

Joined: Thu Mar 27, 2008 1:06 pm
Posts: 163
Location: India
File Name: AtnvrsInstall.exe
Download Link: hxxp://antivirus-scanner.com/1/?g=1&ag= ... &affid=233
File size: 56080 bytes
MD5...: 9e9d72893711d4b00fb002f7a443c9b5
SHA1..: 1cbfd477de539be072bf3a28441ea1adc694dc47
SHA256: 9c9446d0e4b704beacb90bc8d8471ebf7352f0b1a8b2120e7de3e8735ba03f42
SHA512: 4af9093d7ce616fb2a3bce59f15119fd01e1462d040a37f98547996515ba64e8
bb0c39698265ea1a873f85bb0d002d90a8a8930c7ff1b742f241d087ce287fd0
PEiD..: UPX 2.90 [LZMA] -> Markus Oberhumer, Laszlo Molnar & John Reiser
PEInfo: PE Structure information

VirusTotal Result: 2/31 (6.46%)
Scanned on 05.11.2008 08:32:10 (CET)
eSafe 7.0.15.0 2008.05.09 suspicious Trojan/Worm
Kaspersky 7.0.0.125 2008.05.11 not-a-virus:Downloader.Win32.FraudLoad.ar

PE Structure information

Base data
entrypointaddress.: 0x421d80
timedatestamp.....: 0x4824b0be (Fri May 09 20:14:54 2008)
machinetype.......: 0x14c (I386)

3 PE sections
name viradd virsiz rawdsiz ntrpy md5
UPX0 0x1000 0x16000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
UPX1 0x17000 0xb000 0xb000 7.91 a06952f04d15eec680820d7baca247ab
.rsrc 0x22000 0x2000 0x1200 3.71 dbf4ad05c824e539c61d9ec0f2d6a087

( 10 imports )
> KERNEL32.DLL: LoadLibraryA, GetProcAddress, VirtualProtect, VirtualAlloc, VirtualFree, ExitProcess
> ADVAPI32.dll: RegOpenKeyA
> GDI32.dll: BitBlt
> MFC42.DLL: -
> MSVCRT.dll: atoi
> ole32.dll: CreateStreamOnHGlobal
> OLEPRO32.DLL: -
> SETUPAPI.dll: SetupIterateCabinetA
> SHELL32.dll: Shell_NotifyIconA
> USER32.dll: GetDC


Rogue Application

_________________
.:: MaliciousBrains ::.
http://www.malwareinfo.org

There are no patches or service packs for IGNORANCE!!

Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  Page 1 of 1
  [ 1 post ] 

Board index » Malware Analysis » Analyze Malwares

All times are UTC + 5:30 hours [ DST ]

Who is online

Users browsing this forum: No registered users and 0 guests

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
cron
Donate Now
Donate Now
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
Hosted by FreeForums.org | Create a free forum