» 开战传奇.exe
Overview
Analysis
File Details

开战传奇.exe

亚数信息科技（上海）有限公司

The application 开战传奇.exe by 亚数信息科技（上海）有限公司 has been detected as a potentially unwanted program by 22 anti-malware scanners.

File name:

开战传奇.exe

Publisher:

亚数信息科技（上海）有限公司 (signed and verified)

MD5:

924656c61d505efa81edd76ba5c9a9cc

SHA-1:

3ccac98224384595bed22a2d1c8f9ffc2611dc94

Scanner detections:

22 / 68

Status:

Potentially unwanted

Analysis date:

4/18/2024 12:44:46 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Graftor.271969

-29

Avira AntiVirus

TR/Delf.Inject.lhhnh

8.3.3.4

Arcabit

Trojan.Graftor.D42661

1.0.0.795

avast!

Win32:Malware-gen

2014.9-170305

AVG

Generic

2018.0.2449

Bitdefender

Gen:Variant.Graftor.271969

1.0.20.320

Bkav FE

W32.HfsAdware

1.3.0.8871

Dr.Web

Trojan.MulDrop6.21628

9.0.1.064

Emsisoft Anti-Malware

Gen:Variant.Graftor.271969

8.17.03.05.05

ESET NOD32

Win32/GameTool.DU potentially unsafe (variant)

11.14981

F-Secure

Gen:Variant.Graftor.271969

11.2017-05-03_1

G Data

Gen:Variant.Graftor.271969

17.3.25

IKARUS anti.virus

Trojan.Backdoor.Hupigon6

0.2.1.2

K7 AntiVirus

Riskware

13.10.1.22511

Microsoft Security Essentials

VirTool:Win32/DelfInject.gen!AN

1.1.13504.0

MicroWorld eScan

Gen:Variant.Graftor.271969

18.0.0.192

NANO AntiVirus

Trojan.Win32.MulDrop6.edxcip

1.0.70.15190

Panda Antivirus

Trj/Genetic.gen

17.03.05.05

Rising Antivirus

Malware.Generic.5!tfe (thunder:5:KqWwqYu5SFB)

23.00.65.17303

Sophos

Mal/EncPK-LL

4.98

Total Defense

Win32/Dragon_i

37.1.62.1

Vba32 AntiVirus

suspected of MalwareScope.Trojan-PSW.Game.16

3.12.26.4

File size:

5.3 MB (5,591,616 bytes)

File type:

Executable application (Win32 EXE)

Digital Signature

Signed by:

亚数信息科技（上海）有限公司

Authority:

TrustAsia Technologies, Inc.

Valid from:

3/1/2015 4:04:00 PM

Valid to:

3/30/2018 4:04:00 PM

Subject:

CN=亚洲诚信代码签名测试证书SHA2, O=亚数信息科技（上海）有限公司, L=上海市, S=上海市, C=CN

Issuer:

CN=TrustAsia SHA2 Code Signing CA, O="TrustAsia Technologies, Inc.", C=CN

Serial number:

File PE Metadata

Compilation timestamp:

6/20/1992 6:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

Entry address:

0x5BD001

Entry point:

60, E8, 03, 00, 00, 00, E9, EB, 04, 5D, 45, 55, C3, E8, 01, 00, 00, 00, EB, 5D, BB, ED, FF, FF, FF, 03, DD, 81, EB, 00, D0, 5B, 00, 83, BD, 22, 04, 00, 00, 00, 89, 9D, 22, 04, 00, 00, 0F, 85, 65, 03, 00, 00, 8D, 85, 2E, 04, 00, 00, 50, FF, 95, 4D, 0F, 00, 00, 89, 85, 26, 04, 00, 00, 8B, F8, 8D, 5D, 5E, 53, 50, FF, 95, 49, 0F, 00, 00, 89, 85, 4D, 05, 00, 00, 8D, 5D, 6B, 53, 57, FF, 95, 49, 0F, 00, 00, 89, 85, 51, 05, 00, 00, 8D, 45, 77, FF, E0, 56, 69, 72, 74, 75, 61, 6C, 41, 6C, 6C, 6F, 63, 00, 56, 69, 72... 
[+]

Entropy:

7.9986

Packer / compiler:

ASPack v2.12

Code size:

1.1 MB (1,164,800 bytes)

Remove 开战传奇.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.