2009-02-05 09:20:22
2c26ec4a570a502ed3e8484295581989
Armadillo v1.xx - v2.xx |
Name | Virtual Address | Virtual Size | Size of Raw Data | Entropy |
---|---|---|---|---|
.text | 0x00001000 | 0x00002925 | 0x00002a00 | 6.20525797152 |
.rdata | 0x00004000 | 0x00000950 | 0x00000a00 | 4.73081388369 |
.data | 0x00005000 | 0x0000092c | 0x00000800 | 4.88009778169 |
.rsrc | 0x00006000 | 0x000003f0 | 0x00000400 | 3.41536856592 |
.reloc | 0x00007000 | 0x000003a8 | 0x00000400 | 5.60912703698 |
Name | Offset | Size | Language | Sub-language | File type |
---|---|---|---|---|---|
RT_VERSION | 0x00006060 | 0x00000390 | LANG_ENGLISH | SUBLANG_ENGLISH_US | data |
Ordinal | Address | Name |
---|---|---|
1 | 0x10003420 | ServiceMain |
2 | 0x10003180 | install |
3 | 0x10003320 | uninstall |
Antivirus | Signature |
---|---|
Bkav | Clean |
Lionic | Trojan.Win32.Dacic.m!c |
Elastic | malicious (high confidence) |
ClamAV | Win.Trojan.Agent-474351 |
CMC | Clean |
CAT-QuickHeal | Clean |
Skyhigh | BehavesLike.Win32.Injector.lh |
ALYac | Generic.Dacic.FF6D009F.A.D9B35A97 |
Cylance | unsafe |
Zillya | Trojan.Agent.Win32.157776 |
Sangfor | Suspicious.Win32.Save.ins |
CrowdStrike | win/malicious_confidence_100% (W) |
Alibaba | Backdoor:Win32/Likseput.afb1173f |
K7GW | Trojan ( 0055e3dd1 ) |
K7AntiVirus | Trojan ( 0055e3dd1 ) |
Baidu | Clean |
VirIT | Trojan.Win32.Generic.JNG |
Paloalto | Clean |
Symantec | Backdoor.Trojan |
tehtris | Clean |
ESET-NOD32 | a variant of Win32/Agent.OIG |
APEX | Clean |
Avast | Win32:Trojan-gen |
Cynet | Malicious (score: 100) |
Kaspersky | Backdoor.Win32.Likseput.f |
BitDefender | Generic.Dacic.FF6D009F.A.D9B35A97 |
NANO-Antivirus | Trojan.Win32.Agent.cuclw |
ViRobot | Trojan.Win32.Z.Agent.18432.TA |
MicroWorld-eScan | Generic.Dacic.FF6D009F.A.D9B35A97 |
Tencent | Malware.Win32.Gencirc.115d7512 |
TACHYON | Trojan/W32.Small.18432.EE |
Sophos | Mal/Generic-S |
F-Secure | Trojan.TR/Spy.Gen |
DrWeb | Trojan.DownLoad3.30917 |
VIPRE | Generic.Dacic.FF6D009F.A.D9B35A97 |
TrendMicro | TROJ_GEN.R06CC0CBQ24 |
Trapmine | Clean |
FireEye | Generic.mg.3fb8f4cdcb4d1d48 |
Emsisoft | Generic.Dacic.FF6D009F.A.D9B35A97 (B) |
SentinelOne | Static AI - Malicious PE |
GData | Generic.Dacic.FF6D009F.A.D9B35A97 |
Jiangmin | TrojanDownloader.Agent.cmik |
Varist | W32/Agent.CFQ.gen!Eldorado |
Avira | TR/Spy.Gen |
Antiy-AVL | Trojan[Downloader]/Win32.Agent |
Kingsoft | malware.kb.a.1000 |
Gridinsoft | Clean |
Xcitium | TrojWare.Win32.Downloader.Agent.eqre@4pwfzp |
Arcabit | Generic.Dacic.FF6D009F.A.D9B35A97 |
SUPERAntiSpyware | Clean |
ZoneAlarm | Backdoor.Win32.Likseput.f |
Microsoft | Backdoor:Win32/Likseput.B |
Detected | |
AhnLab-V3 | Trojan/Win32.HDC.C106742 |
Acronis | Clean |
McAfee | BackDoor-FALR!3FB8F4CDCB4D |
MAX | malware (ai score=100) |
VBA32 | TrojanDownloader.Agent |
Malwarebytes | Clean |
Panda | Trj/Genetic.gen |
Zoner | Clean |
TrendMicro-HouseCall | TROJ_GEN.R06CC0CBQ24 |
Rising | Backdoor.Likseput!8.10FC (TFE:5:KHdS5UKR64Q) |
Yandex | Trojan.GenAsa!gJDYcU/1Fkk |
Ikarus | Trojan.Win32.Agent |
MaxSecure | Trojan.Malware.1616660.susgen |
Fortinet | W32/Agent.A!tr.dldr |
BitDefenderTheta | Gen:NN.ZedlaF.36802.bu8@ai77Scki |
AVG | Win32:Trojan-gen |
DeepInstinct | MALICIOUS |
alibabacloud | Backdoor:Win/Likseput.f |
IRMA | Signature |
---|---|
ESET Security (Windows) | a variant of Win32/Agent.OIG trojan |
Avast Core Security (Linux) | Win32:Trojan-gen |
C4S ClamAV (Linux) | Win.Trojan.Agent-474351 |
F-Secure Antivirus (Linux) | Trojan.TR/Spy.Gen [Aquarius] |
Windows Defender (Windows) | Backdoor:Win32/Likseput.B |
McAfee CLI scanner (Linux) | BackDoor-FALR |
Microsoft Defender ATP (Linux) | Backdoor:Win32/Likseput.B |
Forticlient (Linux) | Clean |
Bitdefender Antivirus (Linux) | Generic.Dacic.FF6D009F.A.D9B35A97 |
G Data Antivirus (Windows) | Virus: Generic.Dacic.FF6D009F.A.D9B35A97 (Engine A) |
Sophos Anti-Virus (Linux) | Mal/Generic-S |
DrWeb Antivirus (Linux) | Trojan.DownLoad3.30917 |
Trend Micro SProtect (Linux) | Clean |
ClamAV (Linux) | Win.Trojan.Agent-474351 |
eScan Antivirus (Linux) | Generic.Dacic.FF6D009F.A.D9B35A97(DB) |
Kaspersky Standard (Windows) | Backdoor.Win32.Likseput.f |