Analysis Date2015-12-30 19:22:05
MD5694a63d7e07c1b4922a22e84b7f82b0b
SHA1708fe2336bcd327f08985b9befc6ee3c67de09b9

Static Details:

File typePE32 executable for MS Windows (GUI) Intel 80386 32-bit
Section.code md5: 6a804a3c38dda2ef4ec1e746f4672595 sha1: a0345065ea2338002093e67d8e364224600441f5 size: 8704
Section.text md5: af85cb10cfb7f47e9f33e4ddc0a5576a sha1: a2a9c25feadde45fc1eb3d7f3adce7965b264697 size: 24064
Section.rdata md5: d89557222ee8c7d77597bd2687191de4 sha1: a4709006021144d8acec7906619c30c857c996ca size: 512
Section.data md5: c7fed11f240024ef5bf6a1e206846b6a sha1: 8632898ed3b108d1dbe16d218b9d1223c4cfeeff size: 3584
Section.rsrc md5: c2eef4b892cf6275e82bc985fd81a19e sha1: 4eac54681d5b396d5329de003dd9aa6e32d97529 size: 4608
Timestamp1970-09-09 08:34:06
PEhash7d1cccf8f64f83efc12f41465ff44564a4a16ec3
IMPhash3734ec1de1c1350e51df259e6a5d8aaf
AVAd-AwareGen:Variant.Graftor.92557
AVGrisoft (avg)Dropper.Generic7.CMVF
AVCAT (quickheal)no_virus
AVIkarusTrojan-Spy.Win32.Zbot
AVAvira (antivir)TR/Spy.ZBot.ajoumea
AVK7Backdoor ( 04c506a71 )
AVClamAVno_virus
AVKasperskyTrojan.Win32.Generic
AVArcabit (arcavir)Gen:Variant.Graftor.92557
AVMalwareBytesno_virus
AVDr. WebTrojan.Winlock.6426
AVMcafeePWS-Zbot-FAOY!694A63D7E07C
AVBitDefenderGen:Variant.Graftor.92557
AVMicrosoft Security EssentialsTrojanDownloader:Win32/Cutwail
AVEmsisoftGen:Variant.Graftor.92557
AVMicroWorld (escan)Gen:Variant.Graftor.92557
AVAlwil (avast)Carberp-AOE [Trj]
AVEset (nod32)Win32/Injector.AKEK
AVRisingno_virus
AVBullGuardGen:Variant.Graftor.92557
AVFortinetW32/Tepfer.AAX!tr.pws
AVSymantecInfostealer
AVAuthentiumW32/Trojan.TDGM-6033
AVTrend MicroTROJ_FIDOBOT.SM0
AVFrisk (f-prot)no_virus
AVTwisterTrojan.B999667F96F75210
AVCA (E-Trust Ino)Win32/Inject.C!generic
AVVirusBlokAda (vba32)BScope.Malware-Cryptor.Zbot.2213
AVF-SecureGen:Variant.Graftor.92557
AVZillya!Trojan.Zbot.Win32.111540

Runtime Details:

Screenshot

Process
↳ C:\malware.exe

Network Details:


Raw Pcap

Strings