home

68acef6e557fffc70841f75f2dd07192.exe

ICQ LTD

The executable 68acef6e557fffc70841f75f2dd07192.exe has been detected as malware by 35 anti-virus scanners.
Publisher:
ICQ LTD  (signed and verified)

MD5:
68acef6e557fffc70841f75f2dd07192

SHA-1:
d706059c4b2836b18ae8ce927567cb76d79d7e52

SHA-256:
1c1f89dc5090134f5ca20c323d88bc135e80d128198417d8a71c01f962944a90

Scanner detections:
35 / 68

Status:
Malware

Analysis date:
4/26/2024 5:04:48 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.GenericKD.2187282
405

Agnitum Outpost
Trojan.Inject
7.1.1

AhnLab V3 Security
Trojan/Win32.Gen
2015.04.27

Avira AntiVirus
TR/Dropper.MSIL.126109
3.6.1.96

avast!
Win32:Malware-gen
2014.9-151227

AVG
MSIL7
2016.0.2883

Baidu Antivirus
Trojan.MSIL.Inject
4.0.3.151227

Bitdefender
Trojan.GenericKD.2187282
1.0.20.1805

Comodo Security
UnclassifiedMalware
21908

Dr.Web
Trojan.Betabot.3
9.0.1.0361

Emsisoft Anti-Malware
Trojan.GenericKD.2187282
8.15.12.27.03

ESET NOD32
MSIL/Injector.IDJ (variant)
9.11536

Fortinet FortiGate
MSIL/ICC.BTX!tr
12/27/2015

F-Secure
Trojan.GenericKD.2187282
11.2015-27-12_1

G Data
Trojan.GenericKD.2187282
15.12.25

IKARUS anti.virus
Trojan.MSIL.Injector
t3scan.1.8.9.0

K7 AntiVirus
Trojan
13.203.15712

Kaspersky
Trojan.MSIL.Inject
14.0.0.909

Malwarebytes
Backdoor.Bot
v2015.12.27.03

McAfee
RDN/Generic.dx!djq
5600.6539

Microsoft Security Essentials
Trojan:Win32/Neurevt
1.1.11602.0

MicroWorld eScan
Trojan.GenericKD.2187282
16.0.0.1083

NANO AntiVirus
Trojan.Win32.Inject.donuwh
0.30.20.1219

Norman
Suspicious_Gen4.IAAGM
11.20151227

nProtect
Trojan.GenericKD.2187282
15.04.24.01

Panda Antivirus
Trj/CI.A
15.12.27.03

Qihoo 360 Security
HEUR/QVM03.0.Malware.Gen
1.0.0.1015

Quick Heal
Trojan.MSI.r3
12.15.14.00

Sophos
Troj/MSIL-BTX
4.98

Total Defense
Win32/Neurevt.FMCOGGD
37.1.62.1

Trend Micro House Call
TROJ_FRS.PMA000C315
7.2.361

Trend Micro
TROJ_FRS.PMA000C315
10.465.27

Vba32 AntiVirus
Trojan.MSIL.Inject
3.12.26.3

VIPRE Antivirus
Trojan.Win32.Generic
39702

Zillya! Antivirus
Trojan.Inject.Win32.159219
2.0.0.2154

File size:
351.5 KB (359,944 bytes)

File type:
Executable application (Win32 EXE)

Digital Signature
Signed by:
ICQ LTD

Authority:
VeriSign, Inc.

Valid from:
8/12/2013 7:00:00 PM

Valid to:
8/12/2016 6:59:59 PM

Subject:
CN=ICQ LTD, OU=ICQ LTD, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=ICQ LTD, L=Tel Aviv, S=Alberta, C=IL

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
3CD0B62DDB9C535FD03D4EF0A75D7CE4

File PE Metadata
Compilation timestamp:
2/25/2015 3:21:44 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:cO7//surPFu0ri34NLUfVm9Km4CiOH6HJipvUa7JkHr6+RRu4wOnU:cO7//x3Nqm9Kmj/HKopvUaD+RR/w

Entry address:
0x5451E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.8693

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
332 KB (339,968 bytes)

Remove 68acef6e557fffc70841f75f2dd07192.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.