» 3540391450245325150c.exe
Overview
Analysis
File Details

3540391450245325150c.exe

The application 3540391450245325150c.exe has been detected as a potentially unwanted program by 27 anti-malware scanners.

File name:

MD5:

370e1a368896b78bd9b93243524278cf

SHA-1:

06fb22917c5c7972c3db3e0b2aba0fc36d96053c

SHA-256:

2ff8d6fd1c4194b690193698f8013b0cd74c9aa5addecdcd51bccebb8f85eae5

Scanner detections:

27 / 68

Status:

Potentially unwanted

Analysis date:

5/4/2024 9:46:06 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Adware.Kazy.706200

5734772

Agnitum Outpost

PUA.MultiPlug

7.1.1

AhnLab V3 Security

PUP/Win32.MultiPlug

2015.10.09

Avira AntiVirus

TR/Crypt.XPACK.Gen

7.11.30.172

Arcabit

Trojan.Adware.Kazy.DAC698

1.0.0.582

avast!

Win32:Evo-gen [Susp]

150913-1

AVG

Adware Generic6.BRHD

2015.0.4435

Bitdefender

Gen:Variant.Adware.Kazy.706200

1.0.20.1410

Comodo Security

Application.Win32.MultiPlug.NSA

23382

Emsisoft Anti-Malware

Gen:Variant.Adware.Kazy.706200

10.0.0.5366

ESET NOD32

Win32/Adware.MultiPlug.NU application

7.0.302.0

Fortinet FortiGate

W32/Kryptik.NUVL!tr

10/9/2015

F-Prot

W32/S-d34e9568

v6.4.7.1.166

F-Secure

Gen:Variant.Adware.Kazy

5.14.151

G Data

Gen:Variant.Adware.Kazy.706200

15.10.25

IKARUS anti.virus

Win32.PolyCrypt

t3scan.1.9.5.0

K7 AntiVirus

Riskware

13.210.17479

Malwarebytes

PUP.Optional.MultiPlug

v2015.10.09.10

McAfee

Program.MultiPlug

18.0.204.0

MicroWorld eScan

Gen:Variant.Adware.Kazy.706200

16.0.0.846

NANO AntiVirus

Trojan.Win32.WebPick.duxfdo

0.30.26.3947

Norman

Gen:Variant.Adware.Kazy.706200

04.08.2015 10:30:46

Panda Antivirus

Trj/Genetic.gen

15.10.09.10

Quick Heal

Adware.Installerex.A8

10.15.14.00

Rising Antivirus

PE:Adware.MultiPlug!1.A113[F1]

23.00.65.151007

Sophos

PUA 'MultiPlug' (of type Adware)

5.15

VIPRE Antivirus

Threat.5180739

42326

File size:

281.5 KB (288,256 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\appdata\local\temp\3540391450245325150c.exe

File PE Metadata

Compilation timestamp:

3/30/2013 3:39:20 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

6144:nbzlsrNWs2wFKMh+V+hDmG+/YdgpYcxiKC5wdYd9:nPlWdFMea/IgViKC5hd9

Entry address:

0x1810

Entry point:

55, 89, E5, E8, 18, FD, FF, FF, 5D, E9, 02, 3F, 00, 00, CC, CC, 55, 89, E5, 53, 57, 56, 81, E4, FC, FF, FF, FF, 81, EC, 64, 09, 00, 00, 89, C0, 89, DB, 89, C9, 89, D2, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 8B, 45, 08, 89, 44, 24, 04, C7, 44, 24, 08, 05, 00, 00, 00, 8D, B4, 24, 4F, 01, 00, 00, 89, 34, 24, E8, C0, 0E, 00, 00... 
[+]

Entropy:

6.4511

Code size:

18 KB (18,432 bytes)

Remove 3540391450245325150c.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.