» 霏凡迷你农历.exe
Overview
Analysis
File Details

霏凡迷你农历.exe

迷你农历

玩玩耍耍工作室

The executable 霏凡迷你农历.exe has been detected as malware by 13 anti-virus scanners.

File name:

霏凡迷你农历.exe

Publisher:

玩玩耍耍工作室

Product:

迷你农历

Description:

霏凡迷你农历

Version:

0, 0, 0, 1

MD5:

50c60d27141473a4c5e4140a3080cb0d

SHA-1:

7881d49c03ea5c417feabfbdda0ffd9b613e1072

SHA-256:

b25b325fb6dec6bfd4a55ddf78c869ac4a7d7e134844d07960394a4befa90672

Scanner detections:

13 / 68

Status:

Malware

Analysis date:

4/26/2024 12:17:44 PM UTC (today)

Scan engine

Detection

Engine version

Agnitum Outpost

Trojan.ZJoiner

7.1.1

AVG

Pakes_c

2016.0.3179

Clam AntiVirus

Win.Trojan.Qvod-36

0.98/21511

Dr.Web

Trojan.ZJoiner.221

9.0.1.065

IKARUS anti.virus

Trojan.Win32.Pakes

t3scan.1.8.6.0

K7 AntiVirus

Riskware

13.200.15176

McAfee

Artemis!50C60D271414

5600.6835

NANO AntiVirus

Trojan.Win32.ZJoiner.emzyn

0.30.0.296

Norman

Suspicious_Gen4.BYBTT

11.20150306

Sophos

Mal/FakeAv-NL

4.98

Vba32 AntiVirus

Trojan.ZJoiner

3.12.26.3

VIPRE Antivirus

Trojan.Win32.Generic

38152

Zillya! Antivirus

Trojan.Pincav.Win32.11217

2.0.0.2089

File size:

76 KB (77,824 bytes)

Product version:

0, 0, 0, 1

Original file name:

crsky.EXE

File type:

Executable application (Win32 EXE)

File PE Metadata

Compilation timestamp:

8/22/2005 3:03:52 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

1536:l1aLbYWauhZpE2LRilee+viOuZqd0lgy:aQWaGZWvapW40l

Entry address:

0x1C70

Entry point:

55, 8B, EC, 6A, FF, 68, 70, 26, 40, 00, 68, F6, 1D, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 68, 53, 56, 57, 89, 65, E8, 33, DB, 89, 5D, FC, 6A, 02, FF, 15, E8, 21, 40, 00, 59, 83, 0D, C4, 31, 40, 00, FF, 83, 0D, C8, 31, 40, 00, FF, FF, 15, E4, 21, 40, 00, 8B, 0D, B8, 31, 40, 00, 89, 08, FF, 15, E0, 21, 40, 00, 8B, 0D, B4, 31, 40, 00, 89, 08, A1, DC, 21, 40, 00, 8B, 00, A3, C0, 31, 40, 00, E8, 16, 01, 00, 00, 39, 1D, D0, 30, 40, 00, 75, 0C, 68, F2, 1D, 40, 00, FF, 15, D8, 21... 
[+]

Entropy:

5.7305

Developed / compiled with:

Microsoft Visual C++ v6.0

Code size:

4 KB (4,096 bytes)

Remove 霏凡迷你农历.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.