Analysis Date2015-07-27 18:52:28
MD59334bbd17a3809ee51f409192204d2fc
SHA16314386ce75eb6671dcec39293614a7e0873399a

Static Details:

File typePE32 executable for MS Windows (GUI) Intel 80386 32-bit
Section.round md5: eb160c696d2c266bfbeb2e215b221c5e sha1: 0fe1b1b32bc88aa52a50b4d97bbc5ffeb11d638a size: 12800
Section.data md5: fe14212a383bcdbd8af3272179e9ac35 sha1: c9c2309b72e623be7759e9e077b0b5d23c41f070 size: 2560
Section.gdi md5: 765c0b3f3557bd65bad8378f1e6b6f52 sha1: a4a055efa5c1c8da123b67263a8e92ba5e22692e size: 512
Section.rdata md5: eeffb30b65b1f3f7c2256c8294173d21 sha1: 28f812ca232d6f405001b89e1844800cda54564a size: 15872
Section.reloc md5: b50663ad7ee6b58dea3cd7a3596b2a35 sha1: 0e55beeecf255391f8d548aad4ced2790affbb96 size: 2048
Section.same md5: 2ace528a7dc2af1a3957acc497c709ef sha1: 51ffaf7343f590935046936ba290b2491d914d58 size: 10240
Timestamp2012-07-20 20:25:01
PEhash4c20660982ffd13f9d619075cfbd457b7dd06259
IMPhash3add19ab153b26544915d3ae1b1b50ce
AVRisingno_virus
AVMcafeePWS-Zbot.gen.hv
AVAvira (antivir)TR/Barys.6008
AVTwisterTrojan.0000558BEC83EC0C@.mg
AVAd-AwareGen:Variant.Kazy.81900
AVAlwil (avast)Kryptik-JIB [Trj]
AVEset (nod32)Win32/TrojanDownloader.Zurgop.AV
AVGrisoft (avg)Win32/Cryptor
AVSymantecTrojan.Gen.2
AVFortinetW32/Poxter.A!tr
AVBitDefenderGen:Variant.Kazy.81900
AVK7Password-Stealer ( 003f06421 )
AVMicrosoft Security EssentialsDDoS:Win32/Dofoil.A
AVMicroWorld (escan)Gen:Variant.Kazy.81900
AVMalwareBytesTrojan.Rogdsa.Gen
AVAuthentiumW32/Falab.F.gen!Eldorado
AVFrisk (f-prot)W32/Falab.F.gen!Eldorado
AVIkarusTrojan-Spy.Win32.Zbot
AVEmsisoftGen:Variant.Kazy.81900
AVZillya!Trojan.Jorik.Win32.112405
AVKasperskyTrojan.Win32.Generic
AVTrend MicroTSPY_ZBOT.SM3T
AVCAT (quickheal)no_virus
AVVirusBlokAda (vba32)Malware-Cryptor.General.3
AVPadvishno_virus
AVBullGuardGen:Variant.Kazy.81900
AVArcabit (arcavir)Gen:Variant.Kazy.81900
AVClamAVno_virus
AVDr. WebBackDoor.Tishop
AVF-SecureGen:Variant.Kazy.81900
AVCA (E-Trust Ino)Win32/Zbot.AM!generic

Runtime Details:

Screenshot

Process
↳ C:\malware.exe

Network Details:


Raw Pcap

Strings