Analysis Date2014-11-12 22:41:56
MD590e27e1b803876d356b1feca75b2337b
SHA1ba21ac33ae5a18a254b57b49abd244a8fa7eb0b2

Static Details:

File typePE32 executable for MS Windows (GUI) Intel 80386
PEhash6f3833f853466b03b87bc9da4e862506c816c7b0
IMPhash
AV360 Safeno_virus
AVAd-Awareno_virus
AVAlwil (avast)Cycbot-CD [Trj]
AVArcabit (arcavir)no_virus
AVAuthentiumno_virus
AVAvira (antivir)no_virus
AVBullGuardno_virus
AVCA (E-Trust Ino)no_virus
AVCAT (quickheal)no_virus
AVClamAVTrojan.Gbot-316
AVDr. WebBackDoor.Gbot.21
AVEmsisoftno_virus
AVEset (nod32)no_virus
AVFortinetno_virus
AVFrisk (f-prot)no_virus
AVF-Secureno_virus
AVGrisoft (avg)Cryptic.CMZ
AVIkarusBackdoor.Win32.Gbot
AVK7Backdoor ( 0022e4fb1 )
AVKasperskyBackdoor.Win32.Gbot.aid
AVMalwareBytesno_virus
AVMcafeeno_virus
AVMicrosoft Security Essentialsno_virus
AVMicroWorld (escan)no_virus
AVNormanno_virus
AVRisingno_virus
AVSophosno_virus
AVSymantecno_virus
AVTrend Microno_virus
AVVirusBlokAda (vba32)no_virus

Runtime Details:

Network Details:


Raw Pcap

Strings
.J.../.C$...
..I..J.../.C$...
..I.
jjjjjj
PS2p
QS0s
@.data
Hh(<(a
.isete
N\KLkl<^
`.rdata
!This program cannot be run in DOS mode.