Static Analysis

PE Compile Time

2013-11-21 08:23:38

PE Imphash

3c2e1c95b87b1cf3c33906bf62025007

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x0000128a 0x00001400 5.87115198435
.rdata 0x00003000 0x0000178e 0x00001800 6.1229737258
.data 0x00005000 0x00000438 0x00000200 0.86403719386
.rsrc 0x00006000 0x00002990 0x00002a00 4.64287917173
.htext 0x00009000 0x00001000 0x00001000 2.10252171176

Resources

Name Offset Size Language Sub-language File type
RT_ICON 0x000060ec 0x00002734 LANG_ENGLISH SUBLANG_ENGLISH_US Device independent bitmap graphic, 49 x 98 x 32, image size 9996
RT_GROUP_ICON 0x00008820 0x00000014 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_MANIFEST 0x00008834 0x0000015a LANG_ENGLISH SUBLANG_ENGLISH_US ASCII text, with CRLF line terminators

Imports

Library msvcrt.dll:
0x403084 _ismbblead
0x403088 exit
0x40308c _exit
0x403090 _acmdln
0x403094 _initterm
0x403098 _amsg_exit
0x40309c __setusermatherr
0x4030a0 __p__commode
0x4030a4 __p__fmode
0x4030a8 __set_app_type
0x4030ac ?terminate@@YAXXZ
0x4030b0 _controlfp
0x4030b4 _XcptFilter
0x4030b8 _cexit
0x4030bc __getmainargs
Library KERNEL32.dll:
0x40300c GetCurrentProcess
0x403010 TerminateProcess
0x403014 GetCurrentProcessId
0x403018 GetCurrentThreadId
0x40301c GetTickCount
0x403020 GetModuleHandleA
0x403028 GetStartupInfoA
0x403030 Sleep
0x403034 InterlockedExchange
0x403040 ExitProcess
Library USER32.dll:
0x403048 RegisterClassExW
0x40304c PostQuitMessage
0x403050 MessageBoxW
0x403054 GetWindowRect
0x403058 GetSystemMetrics
0x40305c GetMessageA
0x403060 EndPaint
0x403064 DrawTextW
0x403068 DispatchMessageW
0x40306c DefWindowProcW
0x403070 CreateWindowExW
0x403074 BringWindowToTop
0x403078 BeginPaint
0x40307c TranslateMessage
Library GDI32.dll:
0x403000 TextOutW
!This program cannot be run in DOS mode.
`.rdata
@.data
@.htext
VVRRRRh
pPatnW
itPrctorp#
GetCurrentileNb#
Deleteprinl
CloseHandle
eHanCreah
ReUSERu
adFile
lstMod/
GetFileSiztfW
teFileW
tern32.de
HeapAllo"#
HeapCreate
GetModul
KERNELll
WrtpQuteW
ShellExecup
SHELL32.dll
etReadFile
tTemtrle
ExuleFe
Filed$
eryInfoW
HttpetCo
enRetpOpnnecnW
etQuPj
ptioMQ
EternSend
InteWINI
Htrnet
etOpAA
2f2n262?2
3D3C1k1
g0s0L0Y0
__getmainargs
_cexit
_XcptFilter
_ismbblead
_acmdln
_initterm
_amsg_exit
__setusermatherr
__p__commode
__p__fmode
__set_app_type
?terminate@@YAXXZ
msvcrt.dll
_controlfp
ExitProcess
GetSystemTimeAsFileTime
QueryPerformanceCounter
InterlockedExchange
InterlockedCompareExchange
GetStartupInfoA
SetUnhandledExceptionFilter
GetModuleHandleA
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
KERNEL32.dll
BeginPaint
BringWindowToTop
CreateWindowExW
DefWindowProcW
DispatchMessageW
DrawTextW
EndPaint
GetMessageA
GetSystemMetrics
GetWindowRect
MessageBoxW
PostQuitMessage
RegisterClassExW
TranslateMessage
USER32.dll
TextOutW
GDI32.dll
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0">
<trustInfo xmlns="urn:schemas-microsoft-com:asm.v3">
<security>
<requestedPrivileges>
<requestedExecutionLevel level="asInvoker" uiAccess="false"></requestedExecutionLevel>
</requestedPrivileges>
</security>
</trustInfo>
</assembly>PA
ges/html/*xe
ard.co.uargwentc
opwnpl%s.u
bkxtnds.exe
icatiote*
dates
leloaderxe
htbkgrnd
%sdoUpgrsagumaco/w
Zuhamohimo
Huwenond
C:\Users\VAIO\AppData\Local\Temp\Rar$EXa0.052\report_11212013.exe
C:\uB7DQLYF.exe
C:\pOS7zq_A.exe
C:\x3y8acAN.exe
C:\9C_72AbF.exe
C:\e7TJodaF.exe
C:\senEv5qv.exe
C:\AwILxdJk.exe
C:\jNPPvREu.exe
C:\E3QARmhl.exe
C:\Soq1U0DH.exe
C:\7EU90hz0.exe
C:\Cl57wga8.exe
C:\yW4KRDD0.exe
C:\UGC3NV2U.exe
C:\cHv7g_EC.exe
C:\Idnw6Qmc.exe
C:\Ur5N9901.exe
C:\hVVOtFF7.exe
C:\jYrsBSpg.exe
C:\0MP4_6_I.exe
C:\8EGkL9Ba.exe
C:\Je3iyrvd.exe
C:\r0g_XveS.exe
C:\0fHiuF_1.exe
C:\EDmWa0D4.exe
C:\EcAjTKZK.exe
C:\OEIpqKOK.exe
C:\K6wHJnWl.exe
C:\rH_yTyX6.exe
C:\8Zabh4Lj.exe
C:\QU7FRC9d.exe
C:\ANZ1rcJh.exe
C:\PxUFoGGJ.exe
C:\fctS4hEO.exe
C:\dLtzmzDy.exe
C:\569XYVp8.exe
C:\16973247.exe
C:\16973415.exe
C:\H97BGoqm.exe
C:\EGKNNFS6.exe
C:\xMZ6vTbE.exe
C:\D7L4R1BE.exe
C:\szytR0AZ.exe
C:\hve4uPkV.exe
C:\79EjDgqB.exe
C:\hJvQKHKV.exe
C:\dfohoZGH.exe
C:\tDLCQDR8.exe
C:\HOqDsc4X.exe
C:\tQHm0ab3.exe
C:\BWdCCNF7.exe
C:\03W3EeAD.exe
C:\z5IlCnIy.exe
C:\76lpYGAk.exe
C:\Ci41C0Jw.exe
C:\7W7Gm6Ce.exe
C:\48SkHs6j.exe
C:\nmbmsWmx.exe
C:\ZqwjiQey.exe
C:\3w0lmXrk.exe
C:\vtqwosYD.exe
C:\J3IMr9Uf.exe
C:\9wmmpWIx.exe
C:\fzb5cwCW.exe
C:\ESN_h2Xd.exe
C:\EiSrM_pi.exe
C:\n9CrY5PI.exe
C:\p9JZ5JaV.exe
C:\K83QdyPL.exe
C:\PCadUV5Z.exe
C:\Efynbm_Y.exe
C:\uzdanuyp.exe
C:\7lAwjtSz.exe
C:\96224f20024d1b82c7f4e4390e851834b38406c219317233e79a57cc6b424436
C:\3fb16bfa7d0df933a8e588c76f869165db1633451471bfc208a193400cdf794b
C:\F1LNOI7M.exe
C:\b5d2d7c8b4405db910a2d24bab1455b2ef557bb941d3dce67337e6a02969590b
C:\57c90fe1f9ded52eb0318fd517e9b65331205372deaebdcaeeee56a992aecbc4
C:\fc673540f736e2c85e3fa56e80b9069a1cb095b04168360ecb23ed8493735b29
C:\f1a1e303b5bf949e402be67b1e3048d62d8a401853cefcf197560694fc285126
C:\8f175b4b06e3d95ff17bb632a0bc066ed676e98535ba9786ce971d6cc1e166c0
C:\2a9e69fc2eadfe3701e5d6b1ea68d03022ecbf05fc7e37f881f02daecb3f26a8
C:\7011f5c17b2a426847547eb6905819d1c8e25ae2844000a5d6f8ec44a4183dc8
C:\9f150dee676ee84bc26d4771c142bd598c95de077bfadb9eb1df023403ee3b45
C:\8a348f09d190a74c7bb4f325ec2c9d3f23bae70fc0c4613e131816dc6cd59fc1
C:\Users\admin\Downloads\sample.exe
C:\Users\admin\Downloads\sample.exe
C:\Users\admin\Downloads\factura.exe
C:\Users\admin\Downloads\important_document.exe
C:\Users\admin\Downloads\factura.exe
C:\Users\admin\Downloads\important_document.exe
C:\Users\admin\Downloads\important_document.exe
C:\QwpXbVq1.exe
C:\00f60e04f9b2b2d06d3516991df2421d4db9d446d0861409ec4863744dc3bdd6
C:\Users\Petra\AppData\Local\Temp\bkgrnd.pe32
C:\Users\admin\Downloads\factura.exe
C:\222c009abdb3e69e635bb68100b0fa3a3f7903a0c6b6c501d20cd1c067651512
C:\b7a448d5b3fb20e05f41cf7f2d9a3484ac058e54fcab0179d7ea0d6a89221b24
C:\5ea5e72e62a6f6dc8f9e5bf2ecbbad99f5aba14e5aa64083b799b91b54f92393
C:\57a6a144207526a6d500447eaa63c8d9660a67a6d1e004608a8717964a75eb11
C:\Users\Joe Cage\Desktop\SsTnQC0kw7.exe
C:\Users\admin\Downloads\b791f9559e374d1ad8e8f1876874ef1e.virus.exe
C:\9e4c036c270d7f6951e1b4c5b0858a7f7641df390b376f5e7ae753662bc98599
C:\Users\Virtual\AppData\Local\Temp\4a93dbae9aff89179409e5c885a174eb59c64ce4fa1f05004ebf5701a9a744f6.exe
C:\Users\arya\AppData\Local\Temp\53658e24542acaa55c6a1719f2bc935a4ba70603.exe
C:\efd409a5652478b4b8b8ace91c9f388ac5a28a4838ffcb24db08f10bb3924807
C:\3c0bcf3c346302382abebb8c9f31b5fca86950bfdd9e0d8c1fa1973463a692d0
C:\25fb9ee7bcce7b50add3025df4e0a792f94c7b80d90bb6dfabe07d32fea295a0
C:\4e38d90d1551c66b9da10a06e5ab89f692dee10a1b973c959db75f20f0ffda68
C:\eba096020d0909804eb5c998a44831259a0d4c51c12d1ba7a61bdbf0f1cf7daf
C:\Users\Petra\AppData\Local\Temp\bkgrnd.pe32
C:\Users\arya\AppData\Local\Temp\a22d8adcafbd99c1f17be731146843862b38aff2.exe
C:\Users\Petra\AppData\Local\Temp\dttcodexgigas.pe32
C:\Users\admin\Downloads\6bf609ea2232327c_bkgrnd.exe
C:\9d5730f673ab4c458447edc29b8a16af828433f76952c0ab1f9694e52b98f919
C:\Users\Petra\AppData\Local\Temp\bkgrnd.pe32
C:\Users\admin\Downloads\b7e78b93dade0387_bkgrnd.exe
C:\f0a79eb1af97f4e5604408e8e2496ee64e9666e214281d3e403d65ca93547c81
C:\Users\admin\Downloads\bkgrnd.exe
C:\33bb11313cf9f6a4a9f33b8faef7ee58d942d20795a9b1b44e58fddde077a022
C:\Users\Petra\AppData\Local\Temp\bkgrnd.pe32
C:\1439817c906098a4bff25f1f86f38b1206287f534284d5ac37e7d8f915f1fa74
C:\40e930062e7c2963b97ed8d5bee5f7a57c303bca78c0419848fdd9b752c0113b
C:\Users\Petra\AppData\Local\Temp\bkgrnd.pe32
C:\a3189c257b82ce597be03081aed7371adba9a46ee2abb3a9e027613709314e84
C:\99234ea5686f7d65cc3f10fe521ef80e929e12fe00b2fa5175166d474a6c57ae
C:\394a76436cd54fed267adcd052128b584d4d74f54c7090aaaeee91747355cd8a
C:\Users\Petra\AppData\Local\Temp\bkgrnd.pe32
C:\Users\admin\Downloads\25321cf71c1e9db5_bkgrnd.exe
C:\5c5c900f57dd5ead50e83b198afe40af0436e90da0c60fff094dca16abd6398e
C:\a77b2d31f2f184647b55200d2331f0c302cad0e1b327cf249a255231f8dd2aa3
C:\87098e33d2fd1c79a640a1efce7b9d149497adb2be1d3c2647fd85ac58f091e7
C:\ab875b352813e1e8601722e423fbf08e5f27ddcc80704917f5ded39690981292
C:\Users\Petra\AppData\Local\Temp\bkgrnd.pe32
C:\e44dd959a79b41ce6d918809d4b21ffcee530a5bd53dd53d380856c992f43acb
C:\Users\Petra\AppData\Local\Temp\bkgrnd.pe32
C:\Users\admin\Downloads\10d298715881a2cd_bkgrnd.exe
C:\1b8b6585d2f65fc07e4659da833c64cb20f1c0dcb4d340a9b46dd1d27649eeb7
C:\9db77e5ca363b27e1682fc2cdb214715ae3be6948109ff6bcae40ba7ac9b7697
C:\Users\admin\Downloads\bkgrnd.exe
C:\50476df9a1893e621833276122777d05ece4d7ecd68c5f6fc20c4c6d14afd042
C:\Users\admin\Downloads\bkgrnd.exe
C:\Users\Lisa\Desktop\xtXBBiNy.exe
C:\Users\Admin\AppData\Local\Temp\0ddffb319098f3b3dd173e6d55c2c13956fd2582a82175953069d865a99066ef.exe
C:\Users\Bruno\AppData\Local\Temp\file.exe
C:\Users\Lisa\Desktop\wmKXXAca.exe
C:\lchapy8\b2021a.exe
C:\Users\Lisa\Desktop\RntORSHj.exe
C:\Users\george\Desktop\program.exe
C:\Users\Lisa\Desktop\PxQijcKx.exe
C:\Users\george\Desktop\program.exe
C:\Users\John Doe\Desktop\2kpin04zra.exe
C:\Users\Lisa\Desktop\mrGeKCKU.exe
C:\Users\george\Desktop\file.exe
C:\Users\Janet Van Dyne\Desktop\YBwzhvIY.exe
C:\Users\Admin\AppData\Local\Temp\b415f6fa783cfe6dc1c63087106823d6bab8b6dfdec8bfb20d5a63275a764892.exe
C:\Users\Bruno\Desktop\software.exe
C:\Users\Janet Van Dyne\Desktop\HTpJNpZI.exe
C:\Users\Admin\AppData\Local\Temp\16d6bf997d67ac2e8170665e33e261fdee00c40d2380ef6c87df78a6794d1d61.exe
C:\Users\Frank\Desktop\qlhZSaEl.exe
C:\Users\george\Desktop\file.exe
C:\Users\Janet Van Dyne\Desktop\znTIVQCx.exe
C:\oWLFanPt.exe
C:\Users\Janet Van Dyne\Desktop\sXDOArdi.exe
C:\Users\Admin\AppData\Local\Temp\1951f237bfa44a68e64d642f8531e5e439dd246963160e85f0938b51ff21f9dc.exe
C:\Users\Bruno\Desktop\software.exe
C:\Users\Lisa\Desktop\qGIPaMCP.exe
C:\Users\george\Desktop\executable.exe
C:\Users\John Doe\Desktop\r8ujmo7vgu.exe
C:\Users\Janet Van Dyne\Desktop\imMqENsF.exe
C:\Users\Admin\AppData\Local\Temp\e07f94ebab2b227358ce186959f3aa73dc410c7535172c7c0aa9b47de21cc5b3.exe
C:\Users\george\Desktop\file.exe
C:\B9HwwCNe.exe
C:\Users\Bruno\Desktop\file.exe
C:\Users\Admin\AppData\Local\Temp\7b8b9a6effd405dccd8665bc719f68403f548e95d0b933a0ce5095d6c457081b.exe
C:\Users\george\Desktop\file.exe
C:\Users\Frank\Desktop\ggkOSuzt.exe
C:\Users\george\Desktop\program.exe
C:\L9jEZZb4.exe
C:\Users\Frank\Desktop\eDJjPhtk.exe
C:\Users\george\Desktop\software.exe
C:\Users\Frank\Desktop\ajzUhhBS.exe
C:\Users\azure\Downloads\2be2ebd03a2f378d91ad282a87ef7c1b21a2c19978e8f4d2e9fc6c4bbbc2d7f6.exe
C:\Users\Janet Van Dyne\Desktop\GZbusbrY.exe
C:\Users\azure\Downloads\c645dfd4942646ed07aa2addd0799326aa45c3271055b0f14b1f2ad9f8003bea.exe
C:\Users\Frank\Desktop\EpMLuzSS.exe
C:\Users\george\Desktop\program.exe
C:\Users\Janet Van Dyne\Desktop\JtaxNDXo.exe
C:\Users\george\Desktop\executable.exe
C:\Users\Janet Van Dyne\Desktop\ZkutVopE.exe
C:\Users\george\Desktop\software.exe
C:\Users\Janet Van Dyne\Desktop\pVdVvZXZ.exe
C:\Users\george\Desktop\file.exe
C:\Users\Lisa\Desktop\YQFvimtP.exe
C:\Users\Joe Cage\Desktop\6i4x2cejbm.exe
C:\Users\Frank\Desktop\RtrRtXbc.exe
C:\Users\george\Desktop\file.exe
C:\Users\Janet Van Dyne\Desktop\POtZgijU.exe
C:\Users\george\Desktop\executable.exe
C:\Users\Lisa\Desktop\zlQHXrmm.exe
C:\Users\george\Desktop\program.exe
C:\GVdnI6d_.exe
C:\Users\Bruno\Desktop\file.exe
C:\Users\Admin\AppData\Local\Temp\3e5f8f69c33d70e52740ea2533719857b95aac27d1620a2fc2904f0a74b56460.exe
C:\Users\Frank\Desktop\IRXsTOOI.exe
C:\Users\george\Desktop\executable.exe
C:\Users\Joe Cage\Desktop\pal601h9ic.exe
C:\Users\Janet Van Dyne\Desktop\FgGGwgKf.exe
C:\Users\george\Desktop\executable.exe
C:\Users\Joe Cage\Desktop\c3mowsmhfd.exe
C:\Users\azure\Downloads\0a55112a2b981806993785b6e82a6754.exe
C:\Users\Frank\Desktop\TaeJouIH.exe
C:\Users\Admin\AppData\Local\Temp\27a609962df882c11cc0e37ad72a886fcb7e16ceb24fa0681ceeb57d9c823cda.exe
C:\Users\Joe Cage\Desktop\zpbrso0itx.exe
C:\Users\Frank\Desktop\PahAiBAP.exe
C:\Users\george\Desktop\program.exe
C:\Users\Frank\Desktop\xATobifl.exe
C:\Users\Admin\AppData\Local\Temp\c6cf6513af8b50ca040c8e12a45615c30eaf7b7ae9d502992cef65780aac256e.exe
C:\qiwKbefN.exe
C:\Users\John Doe\Desktop\zyun4gq43w.exe
C:\Users\Frank\Desktop\wuMQwvoB.exe
C:\Users\azure\Downloads\01342fab4b61331c4810af180c10b1e344d05c851c776143ea7fe83245d630d8.exe
C:\Users\Frank\Desktop\asVNUler.exe
C:\Users\John Doe\Desktop\3zggx7j2mh.exe
C:\Users\Frank\Desktop\qkHnquWK.exe
C:\Users\Joe Cage\Desktop\22huqs4dm0.exe
C:\Users\Frank\Desktop\tsqgsnmU.exe
C:\J3blhyov.exe
C:\Users\Bruno\Desktop\file.exe
C:\Users\Admin\AppData\Local\Temp\b004d1c13e0d3f2fc8ca56f7b838420ddd2a2a1904828940792c9d3edfa14afd.exe
C:\Users\Janet Van Dyne\Desktop\vvKDwkdH.exe
C:\Users\Bruno\Desktop\program.exe
C:\Users\Frank\Desktop\SudkRtbe.exe
C:\Users\george\Desktop\file.exe
C:\Users\azure\Downloads\bkgrnd.exe
C:\Users\Frank\Desktop\OOnjwPdU.exe
Antivirus Signature
Bkav W32.FamVT.GeND.Trojan
Lionic Trojan.Win32.LdPinch.tntX
Elastic malicious (high confidence)
ClamAV Win.Downloader.Razy-9935848-0
CMC Clean
CAT-QuickHeal Trojan.ZbotRI.S28718216
Skyhigh BehavesLike.Win32.Generic.pm
ALYac Trojan.Ppatre.Gen.1
Cylance Unsafe
Zillya Trojan.LdPinch.Win32.29526
Sangfor Trojan.Win32.Save.a
CrowdStrike win/malicious_confidence_100% (W)
Alibaba TrojanPSW:Win32/LdPinch.801c49bb
K7GW Trojan-Downloader ( 0055c6c71 )
K7AntiVirus Trojan-Downloader ( 0055c6c71 )
huorong HVM:TrojanDownloader/Upatre.gen!A
Baidu Clean
VirIT Trojan.Win32.Generic.CJD
Paloalto Clean
Symantec ML.Attribute.HighConfidence
tehtris Generic.Malware
ESET-NOD32 Win32/TrojanDownloader.Waski.A
APEX Malicious
Avast Win32:Evo-gen [Trj]
Cynet Malicious (score: 100)
Kaspersky Trojan-PSW.Win32.LdPinch.hij
BitDefender Trojan.Ppatre.Gen.1
NANO-Antivirus Clean
ViRobot Clean
MicroWorld-eScan Trojan.Ppatre.Gen.1
Tencent Trojan-DL.Win32.Waski.hac
Sophos Mal/Generic-S
F-Secure Trojan.TR/Spy.Zbot.gdb
DrWeb Trojan.DownLoader10.51280
VIPRE Trojan.Ppatre.Gen.1
TrendMicro Clean
McAfeeD Real Protect-LS!4526664E1D79
Trapmine malicious.moderate.ml.score
CTX exe.trojan.ldpinch
Emsisoft Trojan.Ppatre.Gen.1 (B)
Ikarus Trojan-Downloader.Win32.Waski
FireEye Generic.mg.4526664e1d79c8f6
Jiangmin Trojan/PSW.LdPinch.adnc
Webroot W32.Rogue.Gen
Varist W32/Zbot.AEY.gen!Eldorado
Avira TR/Spy.Zbot.gdb
Fortinet W32/ZBot.GDB!tr
Antiy-AVL Trojan/Win32.Waski.a
Kingsoft malware.kb.a.999
Gridinsoft Ransom.Win32.Zbot.oa!s1
Xcitium TrojWare.Win32.Kryptik.BFP@54u2z9
Arcabit Trojan.Ppatre.Gen.1
SUPERAntiSpyware Trojan.Agent/Gen-Upatre
ZoneAlarm Clean
Microsoft Trojan:Win32/Zbot.HBAI!MTB
Google Detected
AhnLab-V3 Trojan/Win.LdPinch.C5600374
Acronis suspicious
McAfee Trojan-FXIX!4526664E1D79
TACHYON Trojan-PWS/W32.LdPinch.47308
VBA32 BScope.TrojanPSW.LdPinch
Malwarebytes Clean
Panda Trj/Genetic.gen
Zoner Clean
TrendMicro-HouseCall Trojan.Win32.VSX.PE04C9V
Rising Downloader.Waski!1.A489 (CLASSIC)
Yandex Trojan.PWS.LdPinch!Psqn+EHj4u0
SentinelOne Static AI - Malicious PE
MaxSecure Trojan.Upatre.Gen
GData Win32.Trojan-Downloader.Upatre.BJ
AVG Win32:Evo-gen [Trj]
DeepInstinct MALICIOUS
alibabacloud Trojan[stealer]:Win/Zbot.082307e3
IRMA Signature
Trend Micro SProtect (Linux) Clean
Avast Core Security (Linux) Win32:Evo-gen [Trj]
C4S ClamAV (Linux) Win.Downloader.Razy-9935848-0
Trellix (Linux) Trojan-FXIX
Sophos Anti-Virus (Linux) Mal/Generic-S
Bitdefender Antivirus (Linux) Trojan.Ppatre.Gen.1
G Data Antivirus (Windows) Virus: Trojan.Ppatre.Gen.1 (Engine A), Win32.Trojan-Downloader.Upatre.BJ (Engine B)
WithSecure (Linux) Trojan.TR/Spy.Zbot.gdb
ESET Security (Windows) Win32/TrojanDownloader.Waski.A trojan
DrWeb Antivirus (Linux) Trojan.DownLoader10.51280
ClamAV (Linux) Win.Downloader.Razy-9935848-0
eScan Antivirus (Linux) Trojan.Ppatre.Gen.1(DB)
Kaspersky Standard (Windows) Trojan-PSW.Win32.LdPinch.hij
Emsisoft Commandline Scanner (Windows) Trojan.Ppatre.Gen.1 (B)
Cuckoo

We're processing your submission... This could take a few seconds.