Analysis Date2015-06-16 09:56:18
MD56af18a30e86a866e6819384989da226f
SHA170fdfe1f659bca0b80e19e12a21fdeacf4085a93

Static Details:

File typePE32 executable for MS Windows (GUI) Intel 80386 32-bit
Section.text md5: 7fca2ac237aa41c8e9eec65e67d6329d sha1: e58689d23efe9de4950aec6faf9c9013606840a9 size: 483328
Section.data md5: 620f0b67a91f7f74151bc5be745b7110 sha1: 1ceaf73df40e531df3bfb26b4fb7cd95fb7bff1d size: 4096
Section.rsrc md5: 50963a17e47bfc337eb6eeaa88376212 sha1: 0542450a1e92c2533f7209ff584c24a0ee01e51a size: 4096
Timestamp2015-04-08 20:49:12
VersionLegalCopyright: Nero AG
InternalName: Rahmendefinition2 Essstörung
FileVersion: 1.00
CompanyName: NirSoft
LegalTrademarks: Nero AG
ProductName: Nero AG
ProductVersion: 1.00
FileDescription: Nero AG
OriginalFilename: Rahmendefinition2 Essstörung.exe
PackerMicrosoft Visual Basic v5.0
PEhashbc2fd0c23c2e1f211e652935ff97c115c4f5ebae
IMPhash4cc49b462b8844b59a0f40a223d5c2c4
AVVirusBlokAda (vba32)no_virus
AVZillya!Trojan.VBKryjetor.Win32.658
AVArcabit (arcavir)Gen:Variant.Kazy.612643
AVMicrosoft Security EssentialsTrojan:Win32/Dynamer!ac
AVMcafeeRDN/Generic.dx!dql
AVAlwil (avast)Malware-gen:Win32:Malware-gen
AVDr. WebTrojan.Betabot.3
AVMalwareBytesTrojan.Agent.NNAGen
AVAvira (antivir)TR/Dropper.VB.30380
AVEmsisoftGen:Variant.Kazy.612643
AVBitDefenderGen:Variant.Kazy.612643
AVFortinetW32/BXYL!tr
AVCAT (quickheal)Trojan.VB.r3
AVKasperskyTrojan.Win32.VBKryjetor.vlb
AVMicroWorld (escan)Gen:Variant.Kazy.612643
AVAuthentiumW32/Trojan.UXHV-5026
AVGrisoft (avg)Inject2.BYWU
AVFrisk (f-prot)no_virus
AVTrend Microno_virus
AVIkarusTrojan.Injector
AVBullGuardGen:Variant.Kazy.612643
AVCA (E-Trust Ino)no_virus
AVF-SecureGen:Variant.Kazy.612643
AVRisingno_virus
AVEset (nod32)Win32/Injector.BXYL
AVClamAVno_virus
AVPadvishno_virus
AVSymantecTrojan.Gen
AVTwisterno_virus
AVK7Trojan ( 004bd1601 )
AVAd-AwareGen:Variant.Kazy.612643

Runtime Details:

Screenshot

Process
↳ C:\malware.exe

Creates FileC:\Documents and Settings\Administrator\Local Settings\Temp\~DFB650.tmp

Network Details:


Raw Pcap

Strings