Author Topic: Windows 7 Loader.exe  (Read 15666 times)

Offline goodjohn1984

  • Comodo's Hero
  • *****
  • Posts: 318
Windows 7 Loader.exe
« on: March 09, 2011, 03:06:56 PM »
Windows 7 Loader.exe

ApplicUnsaf.Win32.Loader

I would like to report a possible false positive.

Windows 7 Loader.exe

MD5   : c0c0f1c63558da811f2668cbccee6f48

SHA1  : f8c2daf411eac1e5d2a2f2680f1bfc17d1ad488a

SHA256: 93f24e4ff9d6c95205f673b93cb1d2ace05c06502496de2140b0fd2fa9e08ab5

http://www.virustotal.com/file-scan/report.html?id=93f24e4ff9d6c95205f673b93cb1d2ace05c06502496de2140b0fd2fa9e08ab5-1299506796

http://camas.comodo.com/cgi-bin/submit?file=93f24e4ff9d6c95205f673b93cb1d2ace05c06502496de2140b0fd2fa9e08ab5

http://www.threatexpert.com/report.aspx?md5=c0c0f1c63558da811f2668cbccee6f48

http://anubis.iseclab.org/?action=result&task_id=106b42add5664d014cd922d980f9df303&format=html

http://analysis.avira.com/samples/details.php?uniqueid=ATzHFSvKW5W00qEVEqSWmfbKJfUKBGGY&incidentid=695082

http://www.microsoft.com/security/portal/Submission/SubmissionHistory.aspx?SubmissionId=acebd983-d7ee-40c9-99d0-198cb506f10f

Sophos Team E-mail Response:

"Thank you for your email.

The file Windows 7 Loader.exe that you sent to us for analysis appears to be one of many Windows 7 loader tools "by Daz".

This particular sample is quite old, circa October 2009.

Initial analysis does not reveal any malicious behaviour."

Thank you,
-John Jr :)
« Last Edit: March 09, 2011, 03:10:43 PM by goodjohnjr »

Offline Chunli

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 1836
Re: Windows 7 Loader.exe
« Reply #1 on: March 09, 2011, 07:29:17 PM »
Hi,goodjohnjr

Thank you for reporting this. We'll check it and get back to you soon.

Best regards
Chunli.chen

Offline Chunli

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 1836
Re: Windows 7 Loader.exe
« Reply #2 on: March 09, 2011, 08:34:50 PM »
Hi,goodjohnjr

This is to inform you that false-positive with
<Windows 7 Loader.exe> (SHA1: <f8c2daf411eac1e5d2a2f2680f1bfc17d1ad488a>)
is not false-positives,because it can modify the Windows system files.
If you really want to continue use these files, You can add the files to the exclusion list.

Best regards
Chunli.chen
« Last Edit: March 09, 2011, 08:37:02 PM by Chunli »

Offline goodjohn1984

  • Comodo's Hero
  • *****
  • Posts: 318
Re: Windows 7 Loader.exe
« Reply #3 on: March 09, 2011, 09:04:19 PM »
Hi,goodjohnjr

This is to inform you that false-positive with
<Windows 7 Loader.exe> (SHA1: <f8c2daf411eac1e5d2a2f2680f1bfc17d1ad488a>)
is not false-positives,because it can modify the Windows system files.
If you really want to continue use these files, You can add the files to the exclusion list.

Best regards
Chunli.chen

Thank you. :)

 

Seo4Smf 2.0 © SmfMod.Com | Smf Destek