Analysis Date2015-12-04 05:42:41
MD5042091c63c61e0acf17a6e2651adad09
SHA1f7e2e2f3bcf76db2261c3bfd7aae21b8d456f833

Static Details:

File typeMS-DOS executable, MZ for MS-DOS
Sectiontrac6 md5: 066037ca59fc65d0c0a6269fc771e27f sha1: de8d6a62f02c0501d0aeeadc97118c720d37cdb1 size: 8192
Sectiondat5 md5: 3ee6999170b62f9d8abd1455dfad895d sha1: 40823e4a303707901cad6c8dff6f50bd1e84038a size: 5120
Section.rsrv md5: e705e036023e6266c529f988784d3b4c sha1: 304ac3f2a23c08b22f2180afbf628e3ea3ed2915 size: 38400
Sectionneolit md5: 0f343b0931126a20f133d67c2b018a3b sha1: 60cacbf3d72e1e7834203da608037b1bf83b40e8 size: 1024
Timestamp2004-08-29 20:48:40
PEhash70ab880254b303b5d85e8189c5c98b5a8b21e103
IMPhashef2b77d79adcd1522dacfc5ca2bd7265
AVF-SecureTrojan.Agent.BOHQ
AVAuthentiumno_virus
AVMalwareBytesTrojan.Upatre
AVDr. WebTrojan.Upatre.9831
AVGrisoft (avg)Zbot.AJVW
AVMalwareBytesTrojan.Upatre
AVEset (nod32)Win32/Kryptik.EFKE
AVMicroWorld (escan)Trojan.Agent.BOHQ
AVTrend Microno_virus
AVClamAVno_virus
AVAd-AwareTrojan.Agent.BOHQ
AVEset (nod32)Win32/Kryptik.EFKE
AVBitDefenderTrojan.Agent.BOHQ
AVMicroWorld (escan)Trojan.Agent.BOHQ
AVAvira (antivir)TR/Crypt.Xpack.324197
AVAlwil (avast)Trojan-gen:Win32:Trojan-gen
AVFortinetW32/Kryptik.EFKE!tr
AVMicrosoft Security EssentialsTrojanDownloader:Win32/Upatre
AVIkarusTrojan.Kryptik
AVKasperskyTrojan-Downloader.Win32.Upatre.fmep
AVVirusBlokAda (vba32)no_virus
AVArcabit (arcavir)Trojan.Agent.BOHQ
AVMcafeeUpatre-FADQ!042091C63C61
AVTwisterTrojan.Girtk.EFKE.zckd
AVAvira (antivir)TR/Crypt.Xpack.324197
AVAlwil (avast)Trojan-gen:Win32:Trojan-gen
AVSymantecTrojan.Gen
AVFortinetW32/Kryptik.EFKE!tr
AVK7Trojan ( 004d73da1 )
AVMicrosoft Security EssentialsTrojanDownloader:Win32/Upatre
AVRisingno_virus
AVMcafeeUpatre-FADQ!042091C63C61
AVTwisterTrojan.Girtk.EFKE.zckd
AVAd-AwareTrojan.Agent.BOHQ
AVGrisoft (avg)Zbot.AJVW
AVSymantecTrojan.Gen
AVBitDefenderTrojan.Agent.BOHQ
AVK7Trojan ( 004d73da1 )
AVAuthentiumno_virus
AVFrisk (f-prot)no_virus
AVEmsisoftTrojan.Agent.BOHQ
AVZillya!no_virus
AVCAT (quickheal)TrojanDownloader.Upatre.r4
AVPadvishno_virus
AVBullGuardTrojan.Agent.BOHQ
AVCA (E-Trust Ino)no_virus
AVRisingno_virus
AVIkarusTrojan.Kryptik
AVFrisk (f-prot)no_virus

Runtime Details:

Network Details:


Raw Pcap

Strings