» 0.exe
Overview
Analysis
File Details

0.exe

The executable 0.exe has been detected as malware by 29 anti-virus scanners.

File name:

0.exe

Version:

1.0.0.0

MD5:

05738a9c72ecea220dd668068b0d4a12

SHA-1:

9d77843aaf9372cfb27978dd6c1034f77325edac

SHA-256:

3668b53bcb4f9031e585f58f01b638f2afe5e9e128a63994ee05e77a0f5e2ff4

Scanner detections:

29 / 68

Status:

Malware

Analysis date:

4/19/2024 9:37:18 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Kazy.499022

5646091

Agnitum Outpost

Trojan.DL.Agent

7.1.1

AhnLab V3 Security

Win-Trojan/MDA.630F094C

2015.01.12

Avira AntiVirus

TR/Kazy.259072.1

7.11.200.132

avast!

MSIL:Stealer-O [Trj]

150414-0

AVG

Trojan horse MSIL6.ALOG

2014.0.4311

Baidu Antivirus

Trojan.MSIL.Downloader

4.0.3.15418

Bitdefender

Gen:Variant.Kazy.499022

1.0.20.540

Dr.Web

Trojan.SteamBurglar.240

9.0.1.05190

Emsisoft Anti-Malware

Gen:Variant.Kazy.499022

9.0.0.4799

ESET NOD32

MSIL/Stimilik.CA trojan

7.0.302.0

Fortinet FortiGate

MSIL/Stimilik.BT!tr

4/18/2015

F-Secure

Gen:Variant.Kazy.499022

5.13.68

G Data

Gen:Variant.Kazy.499022

15.4.24

IKARUS anti.virus

Trojan.MSIL.Stimilik

t3scan.1.8.6.0

K7 AntiVirus

Trojan

13.190.14603

Kaspersky

Trojan-Downloader.MSIL.Agent

14.0.0.2173

Malwarebytes

Spyware.OnlineGames

v2015.04.18.09

McAfee

Trojan.Artemis!05738A9C72EC

16.8.708.2

Microsoft Security Essentials

Threat.Undefined

1.195.3225.0

NANO AntiVirus

Trojan.Win32.Agent.djszbo

0.30.0.64448

Norman

Gen:Variant.Kazy.499022

03.12.2014 13:20:04

Panda Antivirus

Trj/Chgt.N

15.04.18.09

Qihoo 360 Security

HEUR/QVM03.0.Malware.Gen

1.0.0.1015

Quick Heal

TrojanDownloader.MSIL.r5 (Not a Virus)

4.15.14.00

Rising Antivirus

PE:Trojan.Win32.Generic.17BF7D1F!398425375

23.00.65.15416

Trend Micro House Call

TROJ_GEN.R02LC0ELQ14

7.2.108

Trend Micro

TROJ_GEN.R02LC0ELQ14

10.465.18

VIPRE Antivirus

Threat.4150696

38882

File size:

253 KB (259,072 bytes)

Product version:

1.0.0.0

Original file name:

SteamStealerExtreme.exe

File type:

Executable application (Win32 EXE)

File PE Metadata

Compilation timestamp:

11/21/2014 6:20:35 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

6144:tnFRpTJrYEYpsEzLq/dEWPSWpNJ+ulGtfxqr6WB4F+tbhx:tnFRpTJ1Y8/dEWP3GxtJw4M

Entry address:

0x4600A

Entry point:

FF, 25, 00, 60, 44, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Code size:

212 KB (217,088 bytes)

Remove 0.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.