Detectie

Lady C.C
Lady C.C
în Discu355ii malware

Buna tuturor. Detectia a fost realizata de VIRUS TOTAL. Am atasat raportul mai jos. O zi buna!


Fisier: S-6-3-89-100018080-100021432-100023201-1501.com primit la data de 2009.02.07 16:20:32 (CET)


Status actual: încheiat


Rezultat: 16/39 (41.03%)


Antivirus Versiune Ultima actualizare Rezultat


a-squared 4.0.0.93 2009.02.07 Trojan.Win32.Alureon!IK


AhnLab-V3 5.0.0.2 2009.02.07 -


AntiVir 7.9.0.76 2009.02.06 RKit/TDss.eyj.142


Authentium 5.1.0.4 2009.02.07 W32/FakeAlert.3!Maximus


Avast 4.8.1335.0 2009.02.07 -


AVG 8.0.0.229 2009.02.06 Win32/Heur


BitDefender 7.2 2009.02.07 -


CAT-QuickHeal 10.00 2009.02.07 (Suspicious) - DNAScan


ClamAV 0.94.1 2009.02.07 -


Comodo 969 2009.02.07 -


DrWeb 4.44.0.09170 2009.02.07 -


eSafe 7.0.17.0 2009.02.05 -


eTrust-Vet 31.6.6346 2009.02.07 -


F-Prot 4.4.4.56 2009.02.06 W32/FakeAlert.3!Maximus


F-Secure 8.0.14470.0 2009.02.07 Rootkit.Win32.TDSS.eyj


Fortinet 3.117.0.0 2009.02.07 W32/TDSS.EYJ!tr.rkit


GData 19 2009.02.07 -


Ikarus T3.1.1.45.0 2009.02.07 Trojan.Win32.Alureon


K7AntiVirus 7.10.623 2009.02.07 -


Kaspersky 7.0.0.125 2009.02.07 Rootkit.Win32.TDSS.eyj


McAfee 5518 2009.02.07 -


McAfee+Artemis 5518 2009.02.06 Generic!Artemis


Microsoft 1.4306 2009.02.06 Trojan:Win32/Alureon.gen!J


NOD32 3836 2009.02.07 a variant of Win32/Kryptik.GF


Norman 6.00.02 2009.02.06 -


nProtect 2009.1.8.0 2009.02.07 -


Panda 9.5.1.2 2009.02.07 Adware/SystemGuard2009


PCTools 4.4.2.0 2009.02.07 -


Prevx1 V2 2009.02.07 -


Rising 21.15.50.00 2009.02.07 -


SecureWeb-Gateway 6.7.6 2009.02.07 Rootkit.TDss.eyj.142


Sophos 4.38.0 2009.02.07 -


Sunbelt 3.2.1847.2 2009.02.07 -


Symantec 10 2009.02.07 Packed.Generic.200


TheHacker 6.3.1.5.248 2009.02.07 -


TrendMicro 8.700.0.1004 2009.02.06 -


VBA32 3.12.8.12 2009.02.05 -


ViRobot 2009.2.6.1594 2009.02.06 -


VirusBuster 4.5.11.0 2009.02.07 -


Informaţii suplimentare


File size: 61440 bytes


MD5...: 225e6182517fb6a7164cead9c88f6cf8


SHA1..: 463f265d4b8f3501d0a355f21a3092fdde65a924


SHA256: 72322397ac518b4f4706a55b0e06b90f875c5e184dda150d6cb0dfd018b71c6f


SHA512: e692a4d9d8ad7491dc91e0a55a6ed00224e61a105f2a91857039eea5349aaba7


8bb945f5d54e0bbd8c323a07a170cb55d0e37055477999a9835b5674f532ba00


ssdeep: 768:z+YTWeMYr75LePvr21jIdZKLvjTTQhe9v89wI+4EIslSemf9xI:9WeMYhL62


+dcrjHp90+IQIJ3I


PEiD..: -


TrID..: File type identification


Win32 Executable Generic (38.5%)


Win32 Dynamic Link Library (generic) (34.2%)


Clipper DOS Executable (9.1%)


Generic Win/DOS Executable (9.0%)


DOS Executable Generic (9.0%)


PEInfo: PE Structure information


( base data )


entrypointaddress.: 0x18f4


timedatestamp.....: 0x498846f1 (Tue Feb 03 13:30:25 2009)


machinetype.......: 0x14c (I386)


( 6 sections )


name viradd virsiz rawdsiz ntrpy md5


atsec0 0x1000 0x1000 0x1000 5.14 66eadd1029eece11463f2c9388b47548


atsec1 0x2000 0x8000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e


atsec2 0xa000 0xb000 0xb000 7.63 bcac545719aa34fd83ec476a719c3f82


idata 0x15000 0x3ac 0x1000 0.57 a1ab05fa0fc5e62ada9aed6c718a0625


.rsrc 0x16000 0x1000 0x1000 1.30 66bf1e73d4077add36e3fcb167e4f551


.atsec3 0x17000 0x1000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e


( 1 imports )


> kernel32.dll: FileTimeToSystemTime, GetCalendarInfoA, MapUserPhysicalPagesScatter, PeekNamedPipe, MapUserPhysicalPagesScatter, GetDevicePowerState, GetCommandLineA, ExitProcess, GetStartupInfoA


( 0 exports )


ThreatExpert info: http: // www.threatexpert.com/report.aspx?md5=225e6182517fb6a7164cead9c88f6cf8


LINK-UL DE ANALIZA:


http:/ / www. virustotal.com/ro/analisis/170547d2a434af7e22ed098883e89f69

Comentarii

Liderul tuturor timpurilor

Categorii de discuții

Defenders of the month