ウイルスバスターで引っかからないウイルスが到着
Good morning,
We have prepared a contract and added the paragraphs that you wanted to see in it.
Our lawyers made alterations on the last page. If you agree with all the provisions we are ready to make the payment on Friday for the first consignment.
We are enclosing the file with the prepared contract.
Password for ZIP Archive is: contractIf necessary, we can send it by fax.
Looking forward to your decision.
な文面のメールでパスワード付きzipで圧縮されたファイルが添付されている。
とりあえず中身をVirusTotalでチェックするとこんな具合。
TrendMicro(トレンドマイクロ)は今のところ未対応。
| ファイル名 Contract.exe 受理 2008.08.11 17:15:07 (CET) | |||
| アンチウイルス | バージョン | 更新日 | 結果 |
| AhnLab-V3 | 2008.8.12.0 | 2008.08.11 | - |
| AntiVir | 7.8.1.19 | 2008.08.11 | TR/Dropper.Gen |
| Authentium | 5.1.0.4 | 2008.08.11 | W32/Trojan-Gypikon-based.DM2!Maximus |
| Avast | 4.8.1195.0 | 2008.08.11 | - |
| AVG | 8.0.0.156 | 2008.08.11 | Dropper.Tiny.U |
| BitDefender | 7.2 | 2008.08.11 | - |
| CAT-QuickHeal | 9.50 | 2008.08.11 | - |
| ClamAV | 0.93.1 | 2008.08.11 | - |
| DrWeb | 4.44.0.09170 | 2008.08.11 | - |
| eSafe | 7.0.17.0 | 2008.08.11 | - |
| eTrust-Vet | 31.6.6023 | 2008.08.11 | - |
| Ewido | 4.0 | 2008.08.11 | - |
| F-Prot | 4.4.4.56 | 2008.08.11 | W32/Trojan-Gypikon-based.DM2!Maximus |
| F-Secure | 7.60.13501.0 | 2008.08.11 | Suspicious:W32/Malware!Gemini |
| Fortinet | 3.14.0.0 | 2008.08.11 | - |
| GData | 2.0.7306.1023 | 2008.08.11 | - |
| Ikarus | T3.1.1.34.0 | 2008.08.11 | - |
| K7AntiVirus | 7.10.411 | 2008.08.11 | - |
| Kaspersky | 7.0.0.125 | 2008.08.11 | - |
| McAfee | 5357 | 2008.08.08 | - |
| Microsoft | 1.3807 | 2008.08.11 | TrojanDropper:Win32/Emold.A |
| NOD32v2 | 3346 | 2008.08.11 | Win32/TrojanDropper.Small.NIA |
| Norman | 5.80.02 | 2008.08.11 | - |
| Panda | 9.0.0.4 | 2008.08.10 | - |
| PCTools | 4.4.2.0 | 2008.08.11 | - |
| Prevx1 | V2 | 2008.08.11 | Malicious Software |
| Rising | 20.57.02.00 | 2008.08.11 | - |
| Sophos | 4.32.0 | 2008.08.11 | Troj/Gernid-Gen |
| Sunbelt | 3.1.1538.1 | 2008.08.09 | - |
| Symantec | 10 | 2008.08.11 | Trojan Horse |
| TheHacker | 6.2.96.395 | 2008.08.08 | - |
| TrendMicro | 8.700.0.1004 | 2008.08.11 | - |
| VBA32 | 3.12.8.3 | 2008.08.11 | - |
| ViRobot | 2008.8.11.1331 | 2008.08.11 | - |
| VirusBuster | 4.5.11.0 | 2008.08.10 | - |
| Webwasher-Gateway | 6.6.2 | 2008.08.11 | Trojan.Dropper.Gen |
| 追加情報 | |||
| File size: 33787 bytes | |||
| MD5...: 39867cd6d1ce7bcab72a1a70e15483db | |||
| SHA1..: 24da151b410fd459dafb71509266051339df689e | |||
| SHA256: 53909845930de73c4396632d90d42a5c98077519ff92f6fd1742940765cf3aef | |||
| SHA512: 5c14a10954ea73ab3fcb8497e189b4497a46774c84a3946237ddf16cc779540b b4dc3c7b346e83cb55347ffe284f3f8b15110dc6c9ad67cc02becbbb31912a65 | |||
| PEiD..: - | |||
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x401067 timedatestamp.....: 0x489f16dc (Sun Aug 10 16:27:08 2008) machinetype.......: 0x14c (I386) ( 2 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0x4d2 0x600 4.80 e78fad324b2edba34e96ea011a5747b9 .rsrc 0x2000 0x7bfb 0x7bfb 6.61 a631dd60039632633fc8a9cc1b5ef529 ( 0 imports ) ( 0 exports ) | |||
| Prevx info: http://info.prevx.com/aboutprogramtext.asp?PX5=C8F48EBAFBBA56CA83E50063297AC3003D2044DA | |||
