» 4jyeafd.tmp
Overview
Analysis
File Details

4jyeafd.tmp

The file 4jyeafd.tmp has been detected as malware by 26 anti-virus scanners.

File name:

4jyeafd.tmp

MD5:

92ea8fc6990a6f27bd6e566e75ac03f5

SHA-1:

3597e7693466ec0e3a82bd0bb987752312a07ceb

SHA-256:

ce0b5910c373fbbb0467403a47c5a812f260f9e27f82d07df692d14b7eb0bebf

Scanner detections:

26 / 68

Status:

Malware

Analysis date:

4/25/2024 10:39:49 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Zusy.100982

835

AhnLab V3 Security

Trojan/Win32.Blocker

2014.08.01

Avira AntiVirus

TR/Crypt.ZPACK.90829

7.11.164.206

avast!

Win32:Dropper-gen [Drp]

2014.9-141022

AVG

Generic36

2015.0.3313

Baidu Antivirus

Trojan.Win32.Wigon

4.0.3.141022

Bitdefender

Gen:Variant.Zusy.100982

1.0.20.1475

Bkav FE

W32.WundesfenLTAAAP.Trojan

1.3.0.4959

Dr.Web

Trojan.DownLoad.64914

9.0.1.0295

Emsisoft Anti-Malware

Gen:Variant.Zusy.100982

8.14.10.22.03

ESET NOD32

Win32/Wigon.PI

8.10183

Fortinet FortiGate

W32/Kryptik.CHOC!tr

10/22/2014

F-Secure

Gen:Variant.Zusy.100982

11.2014-22-10_4

G Data

Gen:Variant.Zusy.100982

14.10.24

Kaspersky

Trojan.Win32.Cutwail

14.0.0.3062

Malwarebytes

Trojan.Ransom.ED

v2014.10.22.03

McAfee

Ransom-FLS!92EA8FC6990A

5600.6969

Microsoft Security Essentials

TrojanDownloader:Win32/Cutwail

1.10802

MicroWorld eScan

Gen:Variant.Zusy.100982

15.0.0.885

Panda Antivirus

Trj/Chgt.C

14.10.22.03

Qihoo 360 Security

HEUR/Malware.QVM10.Gen

1.0.0.1015

Reason Heuristics

Threat.Win.Reputation.IMP

15.4.14.23

Sophos

Mal/Generic-S

4.98

SUPERAntiSpyware

Trojan.Agent/Gen-Zusy

9935

Trend Micro House Call

TROJ_GEN.R0CBH07GV14

7.2.295

VIPRE Antivirus

Trojan.Win32.Generic

31786

File size:

97 KB (99,328 bytes)

Language:

Russian (Russia)

Common path:

C:\users\{user}\appdata\local\temp\4jyeafd.tmp

File PE Metadata

Compilation timestamp:

7/29/2014 1:45:08 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

1536:20IKLiR12nWC1ZJX8IRzCGDKGEdofUfqsFQRus3ifw/XKTMQZHsbJOxn/6JXDRkM:6aJC7un6a/sTpWwNGaMmi

Entry address:

0x1000

Entry point:

E8, 70, CF, 00, 00, E9, BF, 17, 01, 00, 83, 3D, 8C, 9A, 41, 00, 00, 75, 12, 6A, FD, E8, 60, DA, 00, 00, 59, C7, 05, 8C, 9A, 41, 00, 01, 00, 00, 00, 33, C0, C3, CC, CC, CC, CC, CC, CC, CC, CC, 8B, 43, 01, 43, 41, 3A, C2, 75, F7, C3, 8B, FF, 55, 8B, EC, 56, 57, 33, F6, 6A, 00, FF, 75, 0C, FF, 75, 08, E8, A2, E0, 00, 00, 8B, F8, 83, C4, 0C, 85, FF, 75, 27, 39, 05, 34, 96, 41, 00, 76, 1F, 56, FF, 15, 20, 40, 41, 00, 8D, 86, E8, 03, 00, 00, 3B, 05, 34, 96, 41, 00, 76, 03, 83, C8, FF, 8B, F0, 83, F8, FF, 75, C3... 
[+]

Entropy:

6.5585

Code size:

76 KB (77,824 bytes)

Remove 4jyeafd.tmp - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.