home

{44d01ee2-cb85-4e26-94c9-548e8a874bf3}

工程1

微软中国

The file {44d01ee2-cb85-4e26-94c9-548e8a874bf3} has been detected as malware by 38 anti-virus scanners.
Publisher:
微软中国

Product:
工程1

Version:
1.00

MD5:
3d4d2a232d2e1cdd43caf155e832fc99

SHA-1:
5aace0235650a13e801f48b0020068f92dafdbed

SHA-256:
fa6514bee4d0c8217b426477c87ba2e63a3f25cb840005b1cc1d9b8625f83b0b

Scanner detections:
38 / 68

Status:
Malware

Analysis date:
4/24/2024 6:52:12 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.Generic.8645848
856

Agnitum Outpost
Trojan.DR.Injector
7.1.1

AhnLab V3 Security
Dropper/Win32.Injector
2014.09.18

Avira AntiVirus
TR/Rogue.8645848.967
7.11.173.16

avast!
Win32:Trojan-gen
2014.9-141002

AVG
Dropper.Generic7
2015.0.3334

Baidu Antivirus
Trojan.Win32.Injector
4.0.3.14102

Bitdefender
Trojan.Generic.8645848
1.0.20.1375

Comodo Security
TrojWare.Win32.TrojanDownloader.Agent.RRR
19547

Dr.Web
Trojan.Spambot.11925
9.0.1.0275

Emsisoft Anti-Malware
Trojan.Generic.8645848
8.14.10.02.04

ESET NOD32
Win32/TrojanDownloader.Agent.RRR (variant)
8.10435

Fortinet FortiGate
W32/Injector.RREW!tr
10/2/2014

F-Prot
W32/OnlineGames.KM.gen
v6.4.7.1.166

F-Secure
Trojan.Generic.8645848
11.2014-02-10_5

G Data
Trojan.Generic.8645848
14.10.24

IKARUS anti.virus
Trojan-Dropper.Win32.Injector
t3scan.1.7.8.0

K7 AntiVirus
Trojan
13.183.13407

Kaspersky
Trojan-Dropper.Win32.Injector
14.0.0.3164

Malwarebytes
Trojan.Downloader
v2014.10.02.04

McAfee
Trojan-FEKR!3D4D2A232D2E
5600.6990

Microsoft Security Essentials
Trojan:Win32/Dynamer!dtc
1.11005

MicroWorld eScan
Trojan.Generic.8645848
15.0.0.825

NANO AntiVirus
Trojan.Win32.Injector.bfoddr
0.28.2.62151

Norman
Injector.FXAP
11.20141002

nProtect
Trojan-Dropper/W32.Injector.334848
14.09.17.01

Panda Antivirus
Generic Trojan
14.10.02.04

Qihoo 360 Security
HEUR/Malware.QVM09.Gen
1.0.0.1015

Quick Heal
Trojan.Orsam.A5
10.14.14.00

Rising Antivirus
PE:Malware.MegaSearch!6.EA
23.00.65.14930

Sophos
Mal/Generic-S
4.98

Trend Micro House Call
TROJ_GEN.R047C0PAN14
7.2.275

Trend Micro
TROJ_GEN.R047C0PAN14
10.465.02

Vba32 AntiVirus
TrojanDropper.Injector
3.12.26.3

VIPRE Antivirus
Trojan-Dropper.Win32.Injector.hbpw
33220

ViRobot
Trojan.Win32.S.Agent.334848.D
2011.4.7.4223

XVirus List
Win32.Detected
2.10.2

Zillya! Antivirus
Dropper.Injector.Win32.48727
2.0.0.1926

File size:
327 KB (334,848 bytes)

Product version:
1.00

Original file name:
彩海探针开奖号码查看器.exe

File PE Metadata
Compilation timestamp:
1/15/2013 9:27:19 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
6144:Xhs+TEvD/J3TF5F2uWeMGVGJlt/WxlO0PUlLuhv4c6pXIM79VQW/nCl/:i+TQVTFeun/GJG

Entry address:
0x1D146

Entry point:
E8, 29, 9B, 00, 00, E9, 16, FE, FF, FF, 6A, 0C, 68, 28, 34, 3E, 00, E8, 58, 4C, 00, 00, 83, 65, E4, 00, 8B, 75, 08, 3B, 35, 28, B7, 3E, 00, 77, 22, 6A, 04, E8, 3A, 56, 00, 00, 59, 83, 65, FC, 00, 56, E8, 7C, 5E, 00, 00, 59, 89, 45, E4, C7, 45, FC, FE, FF, FF, FF, E8, 09, 00, 00, 00, 8B, 45, E4, E8, 64, 4C, 00, 00, C3, 6A, 04, E8, 37, 55, 00, 00, 59, C3, 55, 8B, 6C, 24, 08, 83, FD, E0, 0F, 87, 9F, 00, 00, 00, 53, 8B, 1D, BC, 81, 3D, 00, 56, 57, 33, F6, 39, 35, 78, A6, 3E, 00, 8B, FD, 75, 18, E8, CA, 70, 00...
 
[+]

Code size:
219 KB (224,256 bytes)

Remove {44d01ee2-cb85-4e26-94c9-548e8a874bf3} - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.