Complete scanning result of "seu_cupom.exe", received in VirusTotal at 06.21.2006, 16:58:46 (CET).
Antivirus Version Update Result
AntiVir 6.35.0.15 06.21.2006 HEUR/Trojan.Downloader
Authentium 4.93.8 06.21.2006 Possibly a new variant of W32/Downloader-Web-based!Maximus
Avast 4.7.844.0 06.21.2006 no virus found
AVG 386 06.20.2006 Downloader.Delf.9.BP
BitDefender 7.2 06.21.2006 Trojan.Downloader.Banload.AIA
CAT-QuickHeal 8.00 06.21.2006 no virus found
ClamAV devel-20060426 06.21.2006 no virus found
DrWeb 4.33 06.21.2006 Trojan.DownLoader.10358
eTrust-InoculateIT 23.72.45 06.21.2006 no virus found
eTrust-Vet 12.6.2269 06.21.2006 no virus found
Ewido 3.5 06.21.2006 Downloader.Banload.it
Fortinet 2.77.0.0 06.21.2006 no virus found
F-Prot 3.16f 06.21.2006 Possibly a new variant of W32/Downloader-Web-based!Maximus
Ikarus 0.2.65.0 06.21.2006 Trojan-Downloader.Win32.Banload.IT
Kaspersky 4.0.2.24 06.21.2006 Trojan-Downloader.Win32.Banload.aqz
McAfee 4789 06.21.2006 no virus found
Microsoft 1.1481 06.21.2006 no virus found
NOD32v2 1.1612 06.21.2006 probably unknown NewHeur_PE virus
Norman 5.90.21 06.21.2006 W32/Downloader
Panda 9.0.0.4 06.21.2006 Suspicious file
Sophos 4.06.0 06.21.2006 no virus found
Symantec 8.0 06.21.2006 no virus found
TheHacker 5.9.8.163 06.21.2006 no virus found
UNA 1.83 06.21.2006 no virus found
VBA32 3.11.0 06.20.2006 suspected of Win32.Trojan.Downloader (http://{removed}/baixar_cupoms.jpg)
VirusBuster 4.3.7:9 06.20.2006 no virus found
Aditional Information
File size: 18432 bytes
MD5: 5bb4df01f184b074be216e580d7a5c54
SHA1: 1f6fa92208138ceb618e782a534799f5305db5a2
Norman SandBox:
[ General information ]
* **IMPORTANT: PLEASE SEND THE SCANNED FILE TO: ANALYSIS@NORMAN.NO - REMEMBER TO ENCRYPT IT (E.G. ZIP WITH PASSWORD)**.
* File length: 18432 bytes.
[ Changes to filesystem ]
* Creates file C:WINDOWSSYSTEM32imgrt.scr.
[ Network services ]
* Downloads file from http://vamospracopacomavivo.pop3.ru/baixar_cupoms.jpg as C:WINDOWSSYSTEM32imgrt.scr.
[ Security issues ]
* Starting downloaded file - potential security problem.
VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.