Hello,

Thank you for submitting your sample for analysis by GFI SandBox.

Attached are the XML and PDF reports generated by GFI SandBox for analysis 20236.

The PDF report contains an executive-level summary, including network activity and screenshots. The XML report contains all behavioral information gathered during analysis.

SandBox results for Lab03-04.exe
Analysis ID: 20236
Date Analyzed: 2012-09-19 18:24:54
Sandbox Attributes: IE 9, Office 2003, Adobe Reader 9.4, Flash 10.1, Java 6
MD5 Hash: b94af4a4d4af6eac81fc135abda1c40c
Filename: Lab03-04.exe
File Type: PE32 executable for MS Windows (console) Intel 803
Digital Behavior Traits
Injected Code NO
More than 5 Processes NO
Copies to Windows NO
Windows/Run Registry Key Set NO
Makes Network Connection NO
Creates EXE in System NO
Starts EXE in System YES
Starts EXE in Documents NO
Deletes File in System NO
Hooks Keyboard NO
Creates Hidden File NO
Creates DLL in System NO
Creates Mutex YES
Alters Windows Firewall NO
Checks For Debugger NO
Could Not Load NO
Opens Physical Memory NO
Modifies Local DNS NO
Starts EXE in Recycle NO
Creates Service NO
Modifies File in System NO
Deletes Original Sample YES
VirusTotal Results
Last Scanned: 2012-09-09 12:52:55
nProtect Not Detected
CAT-QuickHeal Not Detected
McAfee Artemis!B94AF4A4D4AF
K7AntiVirus Not Detected
TheHacker Not Detected
VirusBuster Not Detected
F-Prot Not Detected
Symantec Trojan.Gen.2
Norman W32/Suspicious_Gen2.VHYUP
TotalDefense Not Detected
TrendMicro-HouseCall TROJ_GEN.R4FH1EI
Avast Win32:Malware-gen
eSafe Win32.TRDownloader
ClamAV Not Detected
Kaspersky Not Detected
BitDefender Not Detected
ViRobot Not Detected
ByteHero Not Detected
Emsisoft Trojan-Downloader!IK
Comodo UnclassifiedMalware
F-Secure Not Detected
DrWeb Not Detected
VIPRE Trojan.Win32.Generic!BT
AntiVir TR/Downloader.Gen
TrendMicro Not Detected
McAfee-GW-Edition Artemis!B94AF4A4D4AF
Sophos Not Detected
Jiangmin Not Detected
Antiy-AVL Not Detected
Microsoft Not Detected
SUPERAntiSpyware Not Detected
GData Win32:Malware-gen
Commtouch Not Detected
AhnLab-V3 Not Detected
VBA32 Not Detected
PCTools Trojan.Gen
ESET-NOD32 Not Detected
Rising Not Detected
Ikarus Trojan-Downloader
Fortinet Not Detected
AVG Downloader.Generic12.CGOL
Panda Not Detected
GFI SandBox is an automated malware analysis tool which allows the analysis of virtually any Windows application or file. For more information, visit:http://www.gfi.com/malware-analysis-tool.

The GFI Advanced Technology Group (ATG) provides specialized threat analysis and defense tools to web portals, telecoms and government defense agencies around the world. Email us at: atg@gfi.com, to see how you can leverage GFI SandBox and other ATG solutions within your organization.

Thank you,

GFI ATG
atg@gfi.com