Unpack the protected exe patch it contents a trojan.
Patch 2.xx unknown till now.
Antivirus | Version | letzte aktualisierung | Ergebnis |
---|---|---|---|
AhnLab-V3 | 2007.8.25.0 | 2007.08.24 | - |
AntiVir | 7.4.1.63 | 2007.08.25 | - |
Authentium | 4.93.8 | 2007.08.26 | - |
Avast | 4.7.1029.0 | 2007.08.26 | - |
AVG | 7.5.0.484 | 2007.08.25 | Generic5.HAV |
BitDefender | 7.2 | 2007.08.26 | - |
CAT-QuickHeal | 9.00 | 2007.08.25 | (Suspicious) - DNAScan |
ClamAV | 0.91 | 2007.08.26 | - |
DrWeb | 4.33 | 2007.08.26 | - |
eSafe | 7.0.15.0 | 2007.08.26 | Suspicious Trojan/Worm |
eTrust-Vet | 31.1.5085 | 2007.08.24 | - |
Ewido | 4.0 | 2007.08.26 | - |
FileAdvisor | 1 | 2007.08.26 | - |
Fortinet | 2.91.0.0 | 2007.08.26 | - |
F-Prot | 4.3.2.48 | 2007.08.26 | - |
F-Secure | 6.70.13030.0 | 2007.08.26 | - |
Ikarus | T3.1.1.12 | 2007.08.26 | Trojan-Downloader.Win32.Zlob.and |
Kaspersky | 4.0.2.24 | 2007.08.26 | - |
McAfee | 5105 | 2007.08.24 | - |
Microsoft | 1.2803 | 2007.08.26 | - |
NOD32v2 | 2484 | 2007.08.25 | - |
Norman | 5.80.02 | 2007.08.24 | - |
Panda | 9.0.0.4 | 2007.08.26 | - |
Prevx1 | V2 | 2007.08.26 | - |
Rising | 19.37.62.00 | 2007.08.26 | - |
Sophos | 4.21.0 | 2007.08.26 | - |
Sunbelt | 2.2.907.0 | 2007.08.25 | VIPRE.Suspicious |
Symantec | 10 | 2007.08.26 | - |
TheHacker | 6.1.9.173 | 2007.08.26 | - |
VBA32 | 3.12.2.3 | 2007.08.26 | Trojan.Packed.49 |
VirusBuster | 4.3.26:9 | 2007.08.25 | - |
Webwasher-Gateway | 6.0.1 | 2007.08.26 | Win32.Malware.gen (suspicious) |
weitere Informationen |
---|
File size: 333824 bytes |
MD5: c2ccd8db9cb1e19a4569f8451f086fc3 |
SHA1: 46fc08f3a677752d13651a17511af44a38144092 |
packers: embedded |
packers: embedded |
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics. |
Be aware it seems to be same as NOD32 patches
3 comments:
Patches by ' starzboy '
not only here, see winrar custom patch 1.3 ,...
AVG IS NOT@ .IN !?!
It doesn't looks likes it patch trojan into the target. execute it, remove patch, check result for callhomes reg dep. chk + ip/domains, remove
http://www1.zippyshare.com/v/3386126/patchUpACK.zip.html
Post a Comment