home

0ea2acf7ab6527efdf28c9574b0bd328

gsdgdsgsdgsdg

fsfsdggdf

The file 0ea2acf7ab6527efdf28c9574b0bd328 has been detected as malware by 17 anti-virus scanners.
Publisher:
fsfsdggdf

Product:
gsdgdsgsdgsdg

Description:
jgfffvhghg

Version:
1.0.0.0

MD5:
0ea2acf7ab6527efdf28c9574b0bd328

SHA-1:
8b629d7b74f749ce758ec344df13b32fee51c6e7

SHA-256:
6093e8bc35bb973affd18037645c541c2ddaea7b28366b53aa1aef97a2e3419e

Scanner detections:
17 / 68

Status:
Malware

Analysis date:
4/26/2024 5:41:46 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Barys.2916
804

avast!
MSIL:Kryptik-AR [Trj]
2014.9-141123

AVG
Luhe.Fiha.A
2015.0.3282

Baidu Antivirus
Trojan.MSIL.Kryptik
4.0.3.141123

Bitdefender
Gen:Variant.Barys.2916
1.0.20.1635

Dr.Web
BackDoor.Comet.884
9.0.1.0327

Emsisoft Anti-Malware
Gen:Variant.Barys.2916
8.14.11.23.09

ESET NOD32
MSIL/Kryptik.ANZ (variant)
8.10748

F-Secure
Gen:Variant.Barys.2916
11.2014-23-11_1

G Data
Gen:Variant.Barys.2916
14.11.24

Kaspersky
HEUR:Trojan.Win32.Generic
14.0.0.2903

Malwarebytes
Trojan.Dropper
v2014.11.23.09

McAfee
Artemis!0EA2ACF7AB65
5600.6938

MicroWorld eScan
Gen:Variant.Barys.2916
15.0.0.981

Qihoo 360 Security
Win32/Trojan.b98
1.0.0.1015

SUPERAntiSpyware
Trojan.Agent/Gen-Falcomp[i]
10220

Trend Micro House Call
TROJ_GEN.R047H07KJ14
7.2.327

File size:
647 KB (662,528 bytes)

Product version:
1.0.0.0

Copyright:
dafazcxz

Trademarks:
jfgjghgh

Original file name:
rugudun.exe

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\91\0ea2acf7ab6527efdf28c9574b0bd328

File PE Metadata
Compilation timestamp:
11/18/2014 7:07:25 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
12288:ElMYs9hiyp75Wo0+JRtJvmLtMygkAqwP864bBBUAR/xcYI:EzO75WoHJHoyy7AqzbwAR/xcY

Entry address:
0xA15FE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.6500

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
638 KB (653,312 bytes)

Remove 0ea2acf7ab6527efdf28c9574b0bd328 - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.