home

1899992991534963520.exe

The executable 1899992991534963520.exe has been detected as malware by 39 anti-virus scanners.
MD5:
37ae22ba2799ed146c47085268dd481b

SHA-1:
83e61d3a9f6f17304c209abc14f5ccb5e5bcf2d1

SHA-256:
982f9a3ec39cbbb3f415c0e6c686deca6c6e5dd14a4b26e454af93f3cc6858ca

Scanner detections:
39 / 68

Status:
Malware

Analysis date:
4/24/2024 12:56:47 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.PWS.ZCE
435

Agnitum Outpost
Trojan.PWS.Tepfer
7.1.1

AhnLab V3 Security
Trojan/Win32.Tepfer
2015.07.28

Avira AntiVirus
TR/Kryptik.avp.8
8.3.1.6

Arcabit
Trojan.PWS.ZCE
1.0.0.425

avast!
Sf:Nuclear-D [Trj]
2014.9-151127

AVG
PSW.Generic11
2016.0.2913

Baidu Antivirus
Trojan.Win32.Fareit
4.0.3.151127

Bitdefender
Trojan.PWS.ZCE
1.0.20.1655

Comodo Security
TrojWare.Win32.PSW.Fareit.AH
22875

Dr.Web
Trojan.PWS.Stealer.13052
9.0.1.0331

Emsisoft Anti-Malware
Trojan.PWS.ZCE
8.15.11.27.07

ESET NOD32
Win32/PSW.Fareit
9.12002

Fortinet FortiGate
W32/Tepfer!tr.pws
11/27/2015

F-Prot
W32/Zbot.BTW
v6.4.7.1.166

F-Secure
Trojan.PWS.ZCE
11.2015-27-11_6

G Data
Trojan.PWS.ZCE
15.11.25

IKARUS anti.virus
Trojan-PWS.Win32.Fareit
t3scan.1.9.5.0

K7 AntiVirus
Riskware
13.207.16698

Kaspersky
Trojan-PSW.Win32.Tepfer
14.0.0.1058

Malwarebytes
Trojan.Agent.RRE
v2015.11.27.07

McAfee
Generic.qf
5600.6569

Microsoft Security Essentials
PWS:Win32/Fareit
1.1.11903.0

MicroWorld eScan
Trojan.PWS.ZCE
16.0.0.993

NANO AntiVirus
Trojan.Win32.Tepfer.cdxsyc
0.30.24.2668

nProtect
Trojan-PWS/W32.Tepfer.115200.K
15.07.27.01

Panda Antivirus
Trj/Agent.IVN
15.11.27.07

Qihoo 360 Security
Win32/Trojan.PSW.c13
1.0.0.1015

Quick Heal
TrojanPWS.Fareit.j.cw4
11.15.14.00

Rising Antivirus
PE:Trojan.Win32.Generic.15ACBD0B!363642123
23.00.65.151125

Sophos
Troj/Agent-ADLA
4.98

SUPERAntiSpyware
Trojan.Agent/Gen-Elzob
9482

Total Defense
Win32/Fareit.VG
37.1.62.1

Trend Micro House Call
TROJ_MOSERAN.BMC
7.2.331

Trend Micro
TROJ_MOSERAN.BMC
10.465.27

Vba32 AntiVirus
SScope.Malware-Cryptor.Ponik
3.12.26.4

VIPRE Antivirus
Trojan.Win32.Generic
42382

ViRobot
Trojan.Win32.A.PSW-Tepfer.115200.BW[h]
2014.3.20.0

Zillya! Antivirus
Trojan.Tepfer.Win32.63180
2.0.0.2317

File size:
112.5 KB (115,200 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\ProgramData\ahrpdn37\1899992991534963520.exe

File PE Metadata
Compilation timestamp:
8/28/2013 2:01:35 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.50

CTPH (ssdeep):
1536:WQ1ozY1DByqTD0k/cIUNGTdXsTyMgO5KUNOEn2Tv1kzbQP/Aaz7I+9yvnrVv:XesFf/zjTdXoC4OEDQP/Aaz7tsrV

Entry address:
0x1047E

Entry point:
33, C2, 33, D0, 33, C2, 68, 91, 04, 41, 00, 90, F8, 90, 72, 02, 90, C3, FE, E8, 6E, FF, FF, FF, 6A, 00, E8, 2D, 01, 00, 00, CC, FF, 25, B0, 81, 41, 00, FF, 25, B4, 81, 41, 00, FF, 25, B8, 81, 41, 00, FF, 25, BC, 81, 41, 00, FF, 25, C0, 81, 41, 00, FF, 25, C4, 81, 41, 00, FF, 25, C8, 81, 41, 00, FF, 25, CC, 81, 41, 00, FF, 25, D0, 81, 41, 00, FF, 25, D4, 81, 41, 00, FF, 25, D8, 81, 41, 00, FF, 25, DC, 81, 41, 00, FF, 25, E0, 81, 41, 00, FF, 25, E4, 81, 41, 00, FF, 25, E8, 81, 41, 00, FF, 25, EC, 81, 41, 00...
 
[+]

Entropy:
6.1038

Code size:
70 KB (71,680 bytes)

Remove 1899992991534963520.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.