» 1776
Overview
Analysis
File Details

1776

The file 1776 has been detected as malware by 26 anti-virus scanners.

File name:

1776

MD5:

51ba2d41c865e0458c8f9628e1d7f898

SHA-1:

b1a10e65e55e429f2655fea8a6a9f1604eadc2e8

SHA-256:

a02ed6e39c091b9ad712c2fecf8ddd39bd5074e3066e75c12739f1bdca281b7b

Scanner detections:

26 / 68

Status:

Malware

Analysis date:

4/25/2024 8:25:46 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.GenericKD.2660711

523

Avira AntiVirus

TR/Dropper.MSIL.188174

8.3.2.2

Arcabit

Trojan.Generic.D289967

1.0.0.425

avast!

Win32:Malware-gen

2014.9-150830

AVG

MSIL8

2016.0.3001

Baidu Antivirus

Trojan.MSIL.Inject

4.0.3.15830

Bitdefender

Trojan.GenericKD.2660711

1.0.20.1210

Dr.Web

Trojan.DownLoader15.43774

9.0.1.0242

Emsisoft Anti-Malware

Trojan.GenericKD.2660711

8.15.08.30.09

ESET NOD32

MSIL/Injector.LMA (variant)

9.12159

Fortinet FortiGate

MSIL/Injector.LMA!tr

8/30/2015

F-Secure

Trojan.GenericKD.2660711

11.2015-30-08_1

G Data

Trojan.GenericKD.2660711

15.8.25

K7 AntiVirus

Riskware

13.2017023

Kaspersky

Trojan.MSIL.Inject

14.0.0.1501

McAfee

RDN/Generic.grp

5600.6657

Microsoft Security Essentials

TrojanSpy:MSIL/Omaneat.B

1.1.12002.0

MicroWorld eScan

Trojan.GenericKD.2660711

16.0.0.726

NANO AntiVirus

Trojan.Win32.Inject.dvlmwr

0.30.24.3079

nProtect

Trojan.GenericKD.2660711

15.08.27.01

Panda Antivirus

Generic Suspicious

15.08.30.09

Qihoo 360 Security

HEUR/QVM03.0.Malware.Gen

1.0.0.1015

Quick Heal

Trojan.Inject.r3

8.15.14.00

Sophos

Mal/Generic-S

4.98

Trend Micro

TROJ_GEN.R047C0DHO15

10.465.30

VIPRE Antivirus

Trojan.Win32.Generic

43242

File size:

992 KB (1,015,808 bytes)

Common path:

C:\users\{user}\appdata\local\temp\1776

File PE Metadata

Compilation timestamp:

8/19/2015 1:16:08 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

24576:pUNtiQ8h43aRDezPP7oXT+qB/Nf+MmRxdsU9eaf:pUNtHAUYXT5VNfexyAeaf

Entry address:

0xF5FBE

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 02, 00, 03, 00, 00, 00, 20, 00, 00, 80, 0E, 00, 00, 00, 50, 00, 00, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 04, 00, 02, 00, 00, 00, 68, 00, 00, 80, 03, 00, 00, 00, 80, 00... 
[+]

Entropy:

7.9434

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

976 KB (999,424 bytes)

Remove 1776 - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.