354ead61075f879b785db47f103c0449

70185715e05ca53387606b614208374839cb73b8

The file is infected by a polymorphic file infector virus.

135.5 KB (138,748 bytes)

Executable application (Win32 EXE)

3/8/2004 7:27:36 AM

4.0

Win32

Windows GUI

6.0

1536:WlpO1Ek93yAgfkvNIAzkTOuyhpQ+SvJrgwh71Nk8lGXtf4Z3BFVqN:WZkAbfklIAgTYpQrvJo8UZozV

0x118C

69, DA, D0, 00, 85, 90, B6, D6, B4, F3, 87, F0, 8D, 05, 0C, 9D, 88, E8, 40, 0F, AF, F1, 89, D0, 85, DD, 76, 06, C7, C3, DF, FF, 62, 64, BF, AB, CB, 87, D0, 0F, AF, E9, E8, 80, 00, 00, 00, C6, C4, C9, B9, 41, C2, D4, F3, 81, EB, 2D, E2, 69, 4D, 85, C6, 46, 85, F7, 8D, 2D, 84, 4C, 06, 00, 8B, DE, 2D, 10, DA, 2A, 21, 8A, CC, 81, ED, FA, 3F, 06, 00, 32, F5, 0F, BE, CC, FF, CB, C7, C3, 4E, 58, 0B, 00, 81, FB, 2C, 3C, 00, 00, 72, 04, 85, F3, 84, F9, 8D, 05, 58, BF, A5, 0B, F3, 8D, 0D, 83, F8, FF, FF, 28, E8, 8B...[+]

6.3968

Connects to static-139-235-132-188.sadecehosting.net  (188.132.235.139:80)

Connects to fm.interiowo.pl  (217.74.66.160:80)