Static Analysis

PE Compile Time

2012-07-26 21:49:30

PE Imphash

bf149b4da46d99d320ea5ac7ca03871d

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
UPX0 0x00001000 0x00017000 0x00000000 0.0
UPX1 0x00018000 0x0000e000 0x0000d400 7.96809926025
UPX2 0x00026000 0x00001000 0x00000200 2.01025006357

Imports

Library ADVAPI32.dll:
0x42603c RegOpenKeyA
Library KERNEL32.DLL:
0x426044 LoadLibraryA
0x426048 ExitProcess
0x42604c GetProcAddress
0x426050 VirtualProtect
!This program cannot be run in DOS mode.
1xL\1h
]1#hcw
[$fDP2
j)3~'H
}9e{GNWl
rB-fq|
okEabJ
=5meu_
L,0DL
rD-R@,
EHq?@e
qHudyT{
"FM6,36p
4Nxn}
S8+p5"
VC(ryi
:v2wcot4
qAnkIb
RBv=e9E
bEk/e=
e &&pS
lj;ZdD
uQY~>H
iO_C|,~
ZAA%sR
k/a{##
)mm#Ob
4W9s J~
fY|(6S
1^>CGP
p<7x}A
XttnBfO
/z=c$G
"r,l\S
:UQ1r}
@GG5jy
(Sw^cm
&'?=gS
9u3(^X
7;{cXP:
?x;zS)
h&8|\M
*bX\_c=
xR=+\G
RcDf|4
I~9tj|
bU|V(Q
&<4nZM
E7A7_V
Fvl.1\
o 7+^^
Ick11U
ktq]L0
KQ*dJP
%/=,]B
4&3U<a
b76u5}/
K!0K@h
2yg/Nm
LEmc12
ZqhV)u
0,B*|e
3'}xTm
pke[ 0_
cZn)g"
FF::p1+
;Ptxnb
"L89C=c
6},A+v
wOUH<7
M+e/]2
!?\+sW
~zq/$v
Y|#,m
8&la@,
luGW"7
Bl8nC[-
C0YY1>
3c*1-X
H$q(AE
O9Hbr{
e}a3BJ
$\#upz
2T'&|5
|USS&;E
O*1g_o
Pycj}k=
1$A'5JnUY
g*(8WF2
k}0tj&
P>XT?B
D(!7;6
e0I<"|
!-|I!w+
Nn`4'p
EuNN[G
H6hN&M
{%-iiM#n
m^SPwz
tl'A2D
nFSj;W
FFShg
t$t#t$l
D$t#D$h
D$t+D$\
.)D$H)
s`)L$4
D$t+D$\
)D$H)
9l$\w_
XPTPSW
ADVAPI32.dll
KERNEL32.DLL
RegOpenKeyA
ExitProcess
GetProcAddress
LoadLibraryA
VirtualProtect
Antivirus Signature
Bkav W32.AIDetectMalware
Lionic Clean
Elastic malicious (moderate confidence)
ClamAV Win.Spyware.Dacic-10032147-0
CMC Clean
CAT-QuickHeal Trojan.Dynamer.8881
Skyhigh BehavesLike.Win32.Generic.kc
ALYac Generic.Dacic.222C339A.A.B34E8ED8
Cylance Unsafe
Zillya Trojan.Scar.Win32.189251
Sangfor Suspicious.Win32.Save.a
CrowdStrike win/malicious_confidence_90% (D)
Alibaba Clean
K7GW Spyware ( 00592b1f1 )
K7AntiVirus Spyware ( 00592b1f1 )
huorong HVM:Trojan/MalBehav.gen!E
Baidu Win32.Trojan.Agent.avd
VirIT Trojan.Win32.SpyT.DZX
Paloalto Clean
Symantec ML.Attribute.HighConfidence
tehtris Generic.Malware
ESET-NOD32 Win32/Spy.Keydoor.AD
APEX Malicious
Avast Win32:MalwareX-gen [Bd]
Cynet Malicious (score: 100)
Kaspersky Trojan.Win32.Scar.ojnn
BitDefender Generic.Dacic.222C339A.A.B34E8ED8
NANO-Antivirus Trojan.Win32.TrjGen.drufdw
ViRobot Clean
MicroWorld-eScan Generic.Dacic.222C339A.A.B34E8ED8
Tencent Trojan.Win32.Scar.16000293
Sophos Mal/Behav-031
F-Secure Trojan.TR/Dropper.Gen
DrWeb Trojan.Siggen6.34441
VIPRE Generic.Dacic.222C339A.A.B34E8ED8
TrendMicro TrojanSpy.Win32.KEYDOOR.SM
McAfeeD Real Protect-LS!8A456BAA79F2
Trapmine malicious.high.ml.score
CTX exe.unknown.dacic
Emsisoft Generic.Dacic.222C339A.A.B34E8ED8 (B)
Ikarus Trojan-Spy.Win32.Keydoor
GData Generic.Dacic.222C339A.A.B34E8ED8
Jiangmin Trojan/Generic.beovz
Webroot W32.Trojan.Gen
Varist W32/Keydoor.D.gen!Eldorado
Avira TR/Dropper.Gen
Antiy-AVL Trojan/Win32.Scar
Kingsoft malware.kb.b.994
Gridinsoft Trojan.Win32.Agent.oa!s2
Xcitium TrojWare.Win32.Spy.Keydoor.AA@82pvo3
Arcabit Generic.Dacic.222C339A.A.B34E8ED8
SUPERAntiSpyware Trojan.Agent/Gen-Dropper
ZoneAlarm Mal/Behav-031
Microsoft Trojan:Win32/Phonzy.A!ml
Google Detected
AhnLab-V3 Trojan/Win.Scar.R653421
Acronis Clean
VBA32 Trojan.Scar
TACHYON Clean
Malwarebytes Malware.AI.4118079901
Panda Clean
Zoner Clean
TrendMicro-HouseCall TrojanSpy.Win32.KEYDOOR.SM
Rising Spyware.Keydoor!8.A45 (TFE:5:xukjg1PPwuQ)
Yandex Trojan.Scar!/Lg9eJOUcJQ
TrellixENS GenericRXKA-VV!90F73994AAAC
SentinelOne Static AI - Malicious PE
MaxSecure Trojan.Malware.121218.susgen
Fortinet W32/Agent.XFS!tr
AVG Win32:MalwareX-gen [Bd]
DeepInstinct MALICIOUS
alibabacloud Backdoor:Win/Keydoor.6e335a11
IRMA Signature
Trend Micro SProtect (Linux) Clean
Avast Core Security (Linux) Win32:MalwareX-gen [Bd]
C4S ClamAV (Linux) Win.Spyware.Dacic-10032147-0
Trellix (Linux) GenericRXKA-VV
Sophos Anti-Virus (Linux) Mal/Behav-031
Bitdefender Antivirus (Linux) Generic.Dacic.222C339A.A.B34E8ED8
G Data Antivirus (Windows) Virus: Generic.Dacic.222C339A.A.B34E8ED8 (Engine A)
WithSecure (Linux) Trojan.TR/Dropper.Gen
ESET Security (Windows) Win32/Spy.Keydoor.AD trojan
DrWeb Antivirus (Linux) Trojan.Siggen6.34441
ClamAV (Linux) Win.Spyware.Dacic-10032147-0
eScan Antivirus (Linux) Generic.Dacic.222C339A.A.B34E8ED8(DB)
Kaspersky Standard (Windows) Trojan.Win32.Scar.ojnn
Emsisoft Commandline Scanner (Windows) Generic.Dacic.222C339A.A.B34E8ED8 (B)
Cuckoo

We're processing your submission... This could take a few seconds.