» {0f7972ab-e9c9-4d1b-a087-c72ee5a124a7}-superoneclickv2.1.1-shortfuse.zip
Overview
Analysis
File Details
Downloads (1)

{0f7972ab-e9c9-4d1b-a087-c72ee5a124a7}-superoneclickv2.1.1-shortfuse.zip

The file {0f7972ab-e9c9-4d1b-a087-c72ee5a124a7}-superoneclickv2.1.1-shortfuse.zip has been detected as a potentially unwanted program by 30 anti-malware scanners. The file has been seen being downloaded from dl.xda-developers.com.

File name:

MD5:

3bd6c802881492e2eba7f975b0350c12

SHA-1:

2236f99a8ac54607b70e66d5d1e7e9062f139a4b

SHA-256:

c2c2b244a1aa898293bb2900a2409b7d5089a1111eb9a13c2fdf42c82d6b814c

Scanner detections:

30 / 68

Status:

Potentially unwanted

Analysis date:

4/27/2024 2:41:14 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Android.Exploit.GingerBreak.A

1087

Agnitum Outpost

Exploit.Linux.Lotoor.D

7.1.1

Avira AntiVirus

EXP/Android.AP

7.11.125.168

avast!

ELF:Lootor-Q [PUP]

2014.9-140212

AVG

Linux/Exploit.GingerBreak

2015.0.3565

Bitdefender

Android.Exploit.GingerBreak.A

1.0.20.215

Clam AntiVirus

Andr.Exploit.Gingerbreak-1

0.98/18155

Comodo Security

Exploit.Linux.Lotoor.p

17629

Dr.Web

Android.Gingersploit.1

9.0.1.043

Emsisoft Anti-Malware

Android.Exploit.GingerBreak

8.14.02.12.01

ESET NOD32

Android/Exploit.Lotoor.AF

8.9306

Fortinet FortiGate

ELF/Lotoor.P!exploit

2/12/2014

F-Secure

Exploit:Android/DroidRooter.D

11.2014-12-02_4

G Data

Android.Exploit.GingerBreak

14.2.24

IKARUS anti.virus

Win32.Malware

t3scan.2.2.29

Kaspersky

Exploit.Linux.Lotoor

14.0.0.4322

McAfee

Linux/Exploit-Lotoor

5600.7221

Microsoft Security Essentials

Exploit:AndroidOS/CVE-2011-1823

1.165.247.01

MicroWorld eScan

Android.Exploit.GingerBreak.A

15.0.0.129

NANO AntiVirus

Exploit.Lotoor.bfnevz

0.28.0.57029

Panda Antivirus

Exploit/Lotoor.B

14.02.12.01

Quick Heal

Exploit.Lotoor.C1b

2.14.12.00

Sophos

Andr/DroidRt-A

4.96

Total Defense

AndroidOS/Rootor.A

37.0.10498

Trend Micro House Call

AndroidOS_LOTOOR.E

7.2.43

Trend Micro

AndroidOS_LOTOOR.E

10.465.12

Vba32 AntiVirus

Exploit.Linux.Lotoor

3.12.24.3

VIPRE Antivirus

Exploit.AndroidOS.GingerBreak.a

25524

ViRobot

Backdoor.Win32.A.Ceckno.1699142

2011.4.7.4223

XVirus List

Win.Detected

2.3.31

File size:

1.6 MB (1,699,142 bytes)

Common path:

C:\ProgramData\microsoft\microsoft antimalware\localcopy\{0f7972ab-e9c9-4d1b-a087-c72ee5a124a7}-superoneclickv2.1.1-shortfuse.zip

The file {0f7972ab-e9c9-4d1b-a087-c72ee5a124a7}-superoneclickv2.1.1-shortfuse.zip has been seen being distributed by the following URL.

http://dl.xda-developers.com/attachdl/0714d6ac4af1d99d6967ced4302500e1/52f2b63a/6/7/4/2/.../0/SuperOneClickv2.1.1-ShortFuse.zip

Remove {0f7972ab-e9c9-4d1b-a087-c72ee5a124a7}-superoneclickv2.1.1-shortfuse.zip - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.