» Regalo Emozionale.exe
Overview
Analysis
File Details

Regalo Emozionale.exe

Regalo Emozionale

The file Regalo Emozionale.exe has been detected as malware by 25 anti-virus scanners. According to AVG, this software downloads additional adware offers during setup.

File name:

Publisher:

Regalo Emozionale

Product:

Regalo Emozionale

Version:

3.01

MD5:

e5b3ee01781430d38ec42251788c9ae3

SHA-1:

3f370a6631eaf70849580ecb950b128b84d2b9d7

SHA-256:

b34d531c762789c2c8c34fda05c23c2e95a31c3666013d3eeff0d37fd396207b

Scanner detections:

25 / 68

Status:

Malware

Analysis date:

4/24/2024 5:05:47 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.GenericKD.2500952

551

Agnitum Outpost

Trojan.DL.Wauchos

7.1.1

Avira AntiVirus

TR/Dropper.VB.2779

8.3.1.6

Arcabit

Trojan.Generic.D262958

1.0.0.425

avast!

Win32:Malware-gen

2014.9-150803

AVG

Downloader.Small

2016.0.3029

Baidu Antivirus

Trojan.Win32.Wauchos

4.0.3.1583

Bitdefender

Trojan.GenericKD.2500952

1.0.20.1075

Emsisoft Anti-Malware

Trojan.GenericKD.2500952

8.15.08.03.06

ESET NOD32

Win32/TrojanDownloader.Wauchos.AV

9.11854

Fortinet FortiGate

W32/Wauchos.AV!tr.dldr

8/3/2015

F-Secure

Trojan.GenericKD.2500952

11.2015-03-08_2

G Data

Trojan.GenericKD.2500952

15.8.25

K7 AntiVirus

Trojan-Downloader

13.205.16384

Kaspersky

UDS:DangerousObject.Multi.Generic

14.0.0.1639

Malwarebytes

Trojan.Inject

v2015.08.03.06

McAfee

RDN/Downloader.a!vt

5600.6685

Microsoft Security Essentials

Trojan:Win32/Dynamer!ac

1.1.11804.0

MicroWorld eScan

Trojan.GenericKD.2500952

16.0.0.645

nProtect

Trojan.GenericKD.2500952

15.06.26.01

Panda Antivirus

Trj/Chgt.O

15.08.03.06

Qihoo 360 Security

Win32/Trojan.Dropper.9c1

1.0.0.1015

Sophos

Mal/Generic-S

4.98

Trend Micro

TROJ_GEN.R01TC0CFR15

10.465.03

VIPRE Antivirus

Trojan.Win32.Generic

41512

File size:

284 KB (290,816 bytes)

Product version:

3.01

Regalo Emozionale

Trademarks:

Regalo Emozionale

Original file name:

Regalo Emozionale.exe

Language:

Slovenian (Slovenia)

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\2639.tmp

File PE Metadata

Compilation timestamp:

6/17/2015 11:23:21 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

1536:T6hYqNohN3pNxaXCiIk63Wc3PI6DQVnnnP85XVz7wU5I7E:TGQhNxwCiU3WWPIYwP8Tz7wUb

Entry address:

0x136C

Entry point:

68, 54, B3, 43, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 6E, 77, A0, 43, 65, 83, 00, 4F, 96, D5, 49, 8A, C2, 67, 3F, 4B, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, E0, FE, 39, 00, 41, 75, 64, 69, 6F, 73, 61, 6D, 70, 6C, 65, 00, 20, 08, 41, 00, 00, 00, 00, 00, FF, CC, 31, 00, 05, 51, 87, 47, F1, BE, 52, 0C, 43, 9F, 4C, 3F, B4, 86, 64, 03, 37, 73, 18, 2E, A1, 4C, E6, A4, 43, B8, 95, 29, CB, E0, 79, AF, 83, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00... 
[+]

Developed / compiled with:

Microsoft Visual Basic v5.0

Code size:

272 KB (278,528 bytes)

Remove Regalo Emozionale.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.