» الآداب الإسلامية للناشئة.exe
Overview
Analysis
File Details

الآداب الإسلامية للناشئة.exe

eBook Workshop

Ada99.com

The application الآداب الإسلامية للناشئة.exe has been detected as a potentially unwanted program by 12 anti-malware scanners.

File name:

Publisher:

Ada99.com

Product:

eBook Workshop

Version:

1.4.0.0

MD5:

0d6fa414cbfa15349e43deccb2d1fba0

SHA-1:

463c4658effe8a588aff8b788bc480cb8cadf40f

SHA-256:

ae49e2f9f9ea5951bb1e634a55e280522b79685ca2904e1999a9e040548c5f8d

Scanner detections:

12 / 68

Status:

Potentially unwanted

Explanation:

The software cotains keystroke monitoring/logging capablities which may or may not be installed without the user's knowledge.

Analysis date:

4/19/2024 2:52:24 AM UTC (today)

Scan engine

Detection

Engine version

Clam AntiVirus

Trojan.Adaebook

0.98/20275

Comodo Security

UnclassifiedMalware

21613

Fortinet FortiGate

Riskware/AdaEbook

4/1/2015

F-Prot

W32/AdaEbook.A.gen

4.6.5.141

K7 AntiVirus

Riskware

13.202.15452

McAfee

Trojan.Artemis!0D6FA414CBFA

16.8.708.2

Norman

Smalldoor.AUCI

11.20150401

Reason Heuristics

PUP.Ada99

15.4.1.14

Sophos

AdaEbook

4.98

SUPERAntiSpyware

Spyware.AdaEbook

9962

VIPRE Antivirus

Threat.4742469

38950

Zillya! Antivirus

Trojan.Keylogger.Win32.24029

2.0.0.2123

File size:

862.8 KB (883,509 bytes)

Product version:

1.4.0.0

Trademarks:

Original file name:

book.exe

File type:

Executable application (Win32 EXE)

File PE Metadata

Compilation timestamp:

6/19/1992 11:22:17 PM

OS version:

1.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

24576:h9LYuehbBqwb29hGuMUS9Rrf/Jjgf/Jje9hGuMUS9T6O:bLEluMhX/i/5uMh1

Entry address:

0xA9001

Entry point:

60, E8, 72, 05, 00, 00, EB, 33, 87, DB, 90, 00, 40, 49, 00, 10, 40, 49, 00, D4, F4, 48, 00, 10, 50, 49, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 90, 0A, 00, 00, 00, 40, 00, 00, 10, 09, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 60, 09, 00, BB, 3C, 39, 44, 00, 03, DD, 2B, 9D, 60, 39, 44, 00, 83, BD, 98, 47, 44, 00, 00, 89, 9D, 98, 47, 44, 00, 0F, 85, 81, 04, 00, 00, 8D, 85, A0, 47, 44, 00, 50, FF, 95, AC, 48, 44, 00, 89, 85, 9C, 47, 44, 00, 8B, F8, 8D, 9D, AD, 47, 44, 00, 53, 50, FF, 95, A8, 48, 44, 00, 89, 85... 
[+]

Entropy:

7.9943

Packer / compiler:

ASPack v2.1

Code size:

558.5 KB (571,904 bytes)

Remove الآداب الإسلامية للناشئة.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.