Packed MD5 67e72b246fa68902935978681fa72358 
Priority
First 06/20/2008 
Last 06/20/2008 
Count
History 3 hits: 06-20 to 06-20 
Unpacked MD5 67e72b246fa68902935978681fa72358  
AV Hits 0 0 
AV Count 32 
CC Servers 69.65.40.234:2345 66.29.25.194:80 
DNS Lookups US:game.doiluc.com US:play.evodui.com 
Failed Connects  
AV Name AhnLab-V3:MISSED, AntiVir:MISSED, Authentium:MISSED, Avast:MISSED, AVG:MISSED, BitDefender:MISSED, CAT-QuickHeal:MISSED, ClamAV:MISSED, DrWeb:MISSED, eSafe:MISSED, eTrust-Vet:MISSED, Ewido:MISSED, FileAdvisor:MISSED, Fortinet:MISSED, F-Prot:MISSED, F-Secure:MISSED, Ikarus:MISSED, Kaspersky:MISSED, McAfee:MISSED, Microsoft:MISSED, NOD32v2:MISSED, Norman:MISSED, Panda:MISSED, Prevx1:MISSED, Rising:MISSED, Sophos:MISSED, Sunbelt:MISSED, Symantec:MISSED, TheHacker:MISSED, VBA32:MISSED, VirusBuster:MISSED, Webwasher-Gateway:MISSED  
WinXP Files  
WinXP Processes  
WinXP Registries  
WinXP Ports  
Win-2Kf Files  
Win-2Kf Processes rundll32.exe  
Win-2Kf Registries HKEY_LOCAL_MACHINE@...ControlPanel\Settings, HKEY_LOCAL_MACHINE@...Microsoft\DownloadManager, HKEY_LOCAL_MACHINE@...Notify\rqRKCtqq, HKEY_USERS@...CurrentVersion\Run, HKEY_USERS@...InternetSettings\5.0, HKEY_USERS@...InternetSettings\Connections, HKEY_LOCAL_MACHINE@...ControlPanel\\Settings, HKEY_LOCAL_MACHINE@...Microsoft\\DownloadManager, HKEY_LOCAL_MACHINE@...Notify\\awtsQJCT, HKEY_USERS@...CurrentVersion\\Run, HKEY_USERS@...InternetSettings\\5.0, HKEY_USERS@...InternetSettings\\Connections, HKEY_LOCAL_MACHINE@...Notify\\pmnkLEvS  
Win-2Kf Ports 1031, 1031, 445, 4933, 4934, 4935, 4936, 4937, 4938, 4939, 4940, 4941, 4942, 4943, 4944, 4945, 4946, 4947, 4948, 4949, 4950, 4951, 4952, 4953, 4954, 4955, 4956, 4957, 4958, 4959, 4960, 4961, 4962, 4963, 4964, 1027, 2859, 2860, 2861, 2862, 2863, 2864, 2865, 2866, 2867, 2868, 2869, 2870, 4033, 4034, 4035, 4036, 4037, 4038, 4039, 4040, 4041, 4042, 4043, 4044, 4045, 4046, 4047, 4048, 4049, 4050, 4051, 4052, 4053, 4054, 4055, 4056, 4057, 4058, 4059, 4060, 4061, 4062, 4063, 4064, 4065, 4066, 4067, 4068, 4069, 4070, 4071, 4072, 4073, 4074, 4075, 4076, 4077, 4078, 4079, 4080, 4081, 4082  
Create Events  
Create Files  
Create RegKeys  
Open RegKeys  
Service Starts  
Service Deletes  
Service Creates  
Cluster  
Cluster Confidence  
Packer ID1 none 
Packer ID2 none 
Embedded DNS  
String Count
String Link text
String MD5 498ad83c53c3d6cc2ffc57d6cf96e23e 
Timerange 365 Days 
Unpack Status good (unpacked : 1 : Already Unpacked. (Code,Data) = (91.17%, 6.12%)) 
Countries
Unpacked Link 67e72b246f [1
Callgraph ASM:Graph 
API Resolution 2% 
Comment none