Analysis Date2015-11-04 15:53:45
MD5df66e4b8409c3620eab859fc6fa5a506
SHA1223123eb79ea69c947080c259e34322342748c05

Static Details:

File typePE32 executable for MS Windows (GUI) Intel 80386
Section.text md5: 4035ded37b9aa4430462430628f65a88 sha1: a60611449f933971c579f361cc138504702608d5 size: 7680
Section.data md5: 92d1de60af87c8affddfebbb2ddb5c95 sha1: e7cfd82dd8bfbcf90764ae6b1c1b0d7733ec0024 size: 4096
Section.rsrc md5: c5c64879846a9fcc0847c15c620e684c sha1: dfb64161845994df42c6b6a711ff275e68609aab size: 18432
Timestamp2014-03-31 02:37:13
PackerMicrosoft Visual C 2.0
AVPadvishno_virus
AVAvira (antivir)TR/Crypt.ZPACK.168148
AVMicroWorld (escan)Trojan.GenericKD.2424218
AVCAT (quickheal)Trojan.Kadena.B4
AVVirusBlokAda (vba32)no_virus
AVClamAVno_virus
AVMicrosoft Security EssentialsTrojanDownloader:Win32/Upatre.G
AVEmsisoftTrojan.GenericKD.2424218
AVMcafeeDownloader-FASG!DF66E4B8409C
AVBitDefenderTrojan.GenericKD.2424218
AVK7Trojan ( 004c29f41 )
AVGrisoft (avg)Agent.13.T
AVMalwareBytesTrojan.Upatre
AVFrisk (f-prot)W32/Upatre.Y.gen!Eldorado
AVZillya!Trojan.Kryptik.Win32.738559
AVRisingTrojan.Win32.Kryptik.af
AVSymantecDownloader.Upatre!gen5
AVArcabit (arcavir)Trojan.GenericKD.2424218
AVDr. WebTrojan.Upatre.1213
AVFortinetW32/Kryptic.ABGK!tr
AVCA (E-Trust Ino)no_virus
AVAd-AwareTrojan.GenericKD.2424218
AVBullGuardTrojan.GenericKD.2424218
AVF-SecureTrojan.GenericKD.2424218
AVKasperskyTrojan.Win32.Generic
AVTrend MicroTROJ_UP.8D74CC79
AVEset (nod32)Win32/Kryptik.DITV
AVAlwil (avast)Malware-gen:Win32:Malware-gen
AVAuthentiumW32/Upatre.Y.gen!Eldorado
AVIkarusTrojan.VB.Crypt
AVTwisterTrojan.Girtk.DITV.kxmq

Runtime Details:

Network Details:


Raw Pcap

Strings