» 554ba9ae69b73ece0fbefcac47b6f0e0f7454266d472b9b419cc48072f9aa4c1.exe
Overview
Analysis
File Details

554ba9ae69b73ece0fbefcac47b6f0e0f7454266d472b9b419cc48072f9aa4c1.exe

The executable 554ba9ae69b73ece0fbefcac47b6f0e0f7454266d472b9b419cc48072f9aa4c1.exe has been detected as malware by 30 anti-virus scanners.

File name:

MD5:

6c75877ae6cf8ef411903cc56dd4e823

SHA-1:

f655e658b607a8a2da4f47e27b3d62053142dd4e

SHA-256:

554ba9ae69b73ece0fbefcac47b6f0e0f7454266d472b9b419cc48072f9aa4c1

Scanner detections:

30 / 68

Status:

Malware

Analysis date:

4/26/2024 1:17:29 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.Injector.BKE

577

Agnitum Outpost

Trojan.Inject

7.1.1

AhnLab V3 Security

Trojan/Win32.Ransomlock

2015.05.24

Avira AntiVirus

TR/Crypt.Xpack.211547

8.3.1.6

AVG

Inject2

2016.0.3055

Baidu Antivirus

Trojan.Win32.Inject

4.0.3.1577

Bitdefender

Trojan.Injector.BKE

1.0.20.940

Bkav FE

W32.TrosdopLTQ.Trojan

1.3.0.6379

Dr.Web

Trojan.Winlock.12101

9.0.1.0188

Emsisoft Anti-Malware

Trojan.Injector.BKE

8.15.07.07.01

ESET NOD32

Win32/Injector.CASL (variant)

9.11675

Fortinet FortiGate

W32/Inject.UTHU!tr

7/7/2015

F-Secure

Trojan.Injector.BKE

11.2015-07-07_3

G Data

Trojan.Injector.BKE

15.7.25

IKARUS anti.virus

Trojan.Win32.Injector

t3scan.1.8.9.0

K7 AntiVirus

Trojan

13.204.16011

Kaspersky

Trojan.Win32.Inject

14.0.0.1772

Malwarebytes

Trojan.Inject

v2015.07.07.01

McAfee

PWSZbot-FAJM!6C75877AE6CF

5600.6711

Microsoft Security Essentials

Trojan:Win32/Bagsu!rfn

1.1.11701.0

MicroWorld eScan

Trojan.Injector.BKE

16.0.0.564

NANO AntiVirus

Trojan.Win32.Winlock.drsaag

0.30.24.1636

Norman

Injector.GTKL

11.20150707

nProtect

Trojan.Injector.BKE

15.05.22.01

Panda Antivirus

Trj/Genetic.gen

15.07.07.01

Qihoo 360 Security

Win32/Trojan.BO.9cb

1.0.0.1015

Sophos

Mal/Zbot-TU

4.98

Trend Micro House Call

Suspicious_GEN.F47V0517

7.2.188

Vba32 AntiVirus

BScope.Malware-Cryptor.Hlux

3.12.26.4

VIPRE Antivirus

Trojan.Win32.Generic

40500

File size:

98 KB (100,394 bytes)

File type:

Executable application (Win32 EXE)

File PE Metadata

Compilation timestamp:

5/8/2015 10:42:51 PM

OS version:

0.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

1.1

CTPH (ssdeep):

3072:LWCqMphPO2rYrmIo7QGWWM8e1WZQKzuUBi0:lTO2UyJ7QG7IWxF

Entry address:

0x5D76

Entry point:

90, 8B, EC, 6A, FF, 68, 68, 7B, 40, 00, 68, B4, 5F, 40, 00, 64, A1, 00, 00, 00, 00, 90, 0D, 89, 25, 00, 00, 00, 00, 83, EC, 68, 53, 56, 57, 89, 65, E8, 33, DB, 89, 5D, FC, 6A, 02, 5F, 57, FF, 15, 7C, A9, 40, 00, 59, 83, 0D, 5C, 9D, 40, 00, FF, 83, 0D, 60, 9D, 40, 00, FF, FF, 15, 80, A9, 40, 00, 8B, 0D, 50, 9D, 40, 00, 89, 08, FF, 15, 84, A9, 40, 00, 8B, 0D, 4C, 9D, 40, 00, 89, 08, A1, 88, A9, 40, 00, 8B, 00, A3, 58, 9D, 40, 00, E8, CC, 01, 00, 00, 90, 1D, 70, 9C, 40, 90, 75, 0C, 68, B0, 5F, 40, 00, FF, 15... 
[+]

Entropy:

6.7448

Code size:

24 KB (24,577 bytes)

Remove 554ba9ae69b73ece0fbefcac47b6f0e0f7454266d472b9b419cc48072f9aa4c1.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.