Skip navigation.
Home

New Trojan Downloader Win32 Banload aqp

|

There's a new trojan that arrived in my inbox this evening. It shows up as a downloader from the heuristics based scanners, however most AV does not detect it correctly.

5120a93d69a1c1640c3063c562a13218

Antivirus Version Update Result
AntiVir 6.35.1.3 08.24.2006 HEUR/VB.Downloader
Authentium 4.93.8 08.25.2006 no virus found
Avast 4.7.844.0 08.24.2006 no virus found
AVG 386 08.24.2006 no virus found
BitDefender 7.2 08.25.2006 BehavesLike:Trojan.Downloader
CAT-QuickHeal 8.00 08.24.2006 (Suspicious) - DNAScan
ClamAV devel-20060426 08.25.2006 no virus found
DrWeb 4.33 08.24.2006 modification of BackDoor.Generic.1024
eTrust-InoculateIT 23.72.106 08.25.2006 no virus found
eTrust-Vet 30.3.3038 08.25.2006 no virus found
Ewido 4.0 08.24.2006 no virus found
Fortinet 2.77.0.0 08.24.2006 no virus found
F-Prot 3.16f 08.23.2006 no virus found
F-Prot4 4.2.1.29 08.24.2006 no virus found
Ikarus 0.2.65.0 08.24.2006 no virus found
Kaspersky 4.0.2.24 08.25.2006 Trojan-Downloader.Win32.Banload.aqp
McAfee 4837 08.24.2006 no virus found
Microsoft 1.1560 08.25.2006 no virus found
NOD32v2 1.1724 08.24.2006 probably unknown NewHeur_PE virus
Norman 5.90.23 08.24.2006 no virus found
Panda 9.0.0.4 08.24.2006 no virus found
Sophos 4.08.0 08.24.2006 no virus found
Symantec 8.0 08.25.2006 no virus found
TheHacker 5.9.8.199 08.24.2006 no virus found
UNA 1.83 08.24.2006 no virus found
VBA32 3.11.0 08.23.2006 no virus found
VirusBuster 4.3.7:9 08.24.2006 no virus found

fast analysis

here's a fast analysis.

http://lab.psdsecurite.com/