Results of upload to VT:
2008.11.1.0 2008.11.02 -
AntiVir 7.9.0.10 2008.11.02 TR/Small.jhy.5632
Authentium 5.1.0.4 2008.11.02 -
Avast 4.8.1248.0 2008.11.02 Win32:Trojan-gen {Other}
AVG 8.0.0.161 2008.11.02 -
BitDefender 7.2 2008.11.02 -
CAT-QuickHeal 9.50 2008.11.01 -
ClamAV 0.94.1 2008.11.02 -
DrWeb 4.44.0.09170 2008.11.02 -
eSafe 7.0.17.0 2008.11.02 -
eTrust-Vet 31.6.6185 2008.11.01 -
Ewido 4.0 2008.11.02 -
F-Prot 4.4.4.56 2008.11.02 -
F-Secure 8.0.14332.0 2008.11.02 -
Fortinet 3.117.0.0 2008.10.31 -
GData 19 2008.11.02 Win32:Trojan-gen {Other}
Ikarus T3.1.1.45.0 2008.11.02 Trojan.Small.jhy.5632
K7AntiVirus 7.10.514 2008.11.01 -
Kaspersky 7.0.0.125 2008.11.02 -
McAfee 5422 2008.11.02 -
Microsoft 1.4005 2008.11.02 -
Norman 5.80.02 2008.10.31 -
Panda 9.0.0.4 2008.11.02 -
PCTools 4.4.2.0 2008.11.02 -
Prevx1 V2 2008.11.02 -
Rising 21.01.62.00 2008.11.02 -
SecureWeb-Gateway 6.7.6 2008.11.02 Trojan.Small.jhy.5632
Sophos 4.35.0 2008.11.02 -
Sunbelt 3.1.1767.2 2008.10.31 -
Symantec 10 2008.11.02 -
TheHacker 6.3.1.1.135 2008.10.31 -
TrendMicro 8.700.0.1004 2008.10.31 -
VBA32 3.12.8.9 2008.11.02 -
ViRobot 2008.10.31.1446 2008.10.31 -
VirusBuster 4.5.11.0 2008.11.02 -
Additional information
File size: 5632 bytes
MD5...: 90d33bbd0728ee46a184894bc1576c9b
SHA1..: 980be43c75e9465adaf21613a3a6dc9e58962cf4
SHA256: db922b8adafa97829d1cb6e620b929832e204e1e3fe4b68f2dfc460fa4acd1f2
SHA512: 0b9a56ef2f462f078dfcc5089ae5f625811d66c2f6aa5dead34ec6586d579782
cfe7fc8c16fb82ce23c9c70c6fcf5cb1bd3a12fef7534a2fac79e8cdc2334f22
PEiD..: Armadillo v1.71
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x4017e2
timedatestamp.....: 0x3ed98478 (Sun Jun 01 04:43:36 2003)
machinetype.......: 0x14c (I386)
( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x97c 0xa00 6.04 6895717e56e6a8c8796fbb9a3a1d5f0b
.rdata 0x2000 0x37c 0x400 4.42 14149f80fee71a04f6b34d1bebd82a25
.data 0x3000 0x1f4 0x200 2.81 d016170842963e05c88b1dcf62491cd0
.rsrc 0x4000 0x200 0x200 2.72 81ad42278e07fe0536cec00e7199b9cd
( 3 imports )
> MSVCRT.dll: _controlfp, __2@YAPAXI@Z, _except_handler3, __p__commode, __set_app_type, __p__fmode, _initterm, _adjust_fdiv, __setusermatherr, exit, __getmainargs, _acmdln, strtok, _XcptFilter, _exit, __3@YAXPAX@Z
> KERNEL32.dll: GetProcAddress, GetStartupInfoA, GetModuleHandleA, GetExitCodeProcess, lstrcmpiA, WaitForSingleObject, Sleep, CreateFileA, CopyFileA, WriteFile, ReadFile, LoadLibraryA, OpenProcess, FreeLibrary, CloseHandle
> USER32.dll: FindWindowA
( 0 exports )
ThreatExpert info:
http://www.threatexpert.com/report.aspx?md5=90d33bbd0728ee46a184894bc1576c9b