home

{1de28e92-6c18-4c06-9f36-297d3db93cd9}

The file {1de28e92-6c18-4c06-9f36-297d3db93cd9} has been detected as malware by 37 anti-virus scanners. This backdoor trojan may be used to conduct distributed denial of service attacks, or used to install additional trojans or other forms of malicious software as well as can steal your sensitive information.
MD5:
7954288d0aa08fedabd88874ecd2c380

SHA-1:
fff62699a61f94209816053b5f6532a740a504d3

SHA-256:
a7e1320cf5bc329e5ba19d1d8d44d1c606491c973fca06a235552f64900e8f74

Scanner detections:
37 / 68

Status:
Malware

Analysis date:
4/26/2024 6:33:12 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Zusy.75290
856

Agnitum Outpost
Trojan.Agent
7.1.1

AhnLab V3 Security
Backdoor/Win32.Bladabindi
2014.09.15

Avira AntiVirus
TR/Dropper.Gen7
7.11.171.252

avast!
MSIL:GenMalicious-AV [Trj]
2014.9-141002

AVG
MSIL2
2015.0.3334

Baidu Antivirus
Backdoor.MSIL.Agent
4.0.3.14102

Bitdefender
Gen:Variant.Zusy.75290
1.0.20.1375

Comodo Security
Backdoor.MSIL.Bladabindi.A
19509

Dr.Web
BackDoor.Bladabindi.1056
9.0.1.0275

Emsisoft Anti-Malware
Gen:Variant.Zusy.75290
8.14.10.02.03

ESET NOD32
MSIL/Bladabindi.BH (variant)
8.10415

Fortinet FortiGate
MSIL/Bladabindi.Q!tr
10/2/2014

F-Prot
W32/MSIL_Bladabindi.G.gen
v6.4.7.1.166

F-Secure
Gen:Variant.Zusy.75290
11.2014-02-10_5

G Data
Gen:Variant.Zusy.75290
14.10.24

IKARUS anti.virus
Backdoor.MSIL
t3scan.1.7.8.0

K7 AntiVirus
Trojan
13.183.13358

Kaspersky
Backdoor.MSIL.Agent
14.0.0.3164

Malwarebytes
Backdoor.Bot
v2014.10.02.03

McAfee
BackDoor-NJRat!7954288D0AA0
5600.6990

Microsoft Security Essentials
Backdoor:MSIL/Bladabindi.AJ
1.10904

MicroWorld eScan
Gen:Variant.Zusy.75290
15.0.0.825

NANO AntiVirus
Trojan.Win32.DownLoader11.cxfbrl
0.28.2.61942

Norman
Bladabindi.JQ
11.20141002

nProtect
Trojan-Dropper/W32.FrauDrop.24064.Y
14.09.14.01

Panda Antivirus
Generic Malware
14.10.02.03

Qihoo 360 Security
Win32/Backdoor.88d
1.0.0.1015

Quick Heal
Backdoor.Bladabindi.AL3
10.14.14.00

Sophos
Troj/DotNet-P
4.98

SUPERAntiSpyware
Trojan.Agent/Gen-Bladabindi
10325

Total Defense
Win32/DotNetDl.A!generic
37.0.11180

Trend Micro House Call
BKDR_BLBINDI.SMN
7.2.275

Trend Micro
BKDR_BLBINDI.SMN
10.465.02

Vba32 AntiVirus
Trojan.MSIL.Disfa
3.12.26.3

VIPRE Antivirus
Backdoor.MSIL.Bladabindi.a
33110

Zillya! Antivirus
Trojan.Disfa.Win32.10564
2.0.0.1921

File size:
23.5 KB (24,064 bytes)

File PE Metadata
Compilation timestamp:
9/12/2014 5:19:56 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
384:M8aZYC9twBNdcvFaly2H0dUJo69ghcASEJqc/ZmRvR6JZlbw8hqIusZzZ4U:yY+sNKqNHySdRpcnui

Entry address:
0x748E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
21.5 KB (22,016 bytes)

Remove {1de28e92-6c18-4c06-9f36-297d3db93cd9} - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.