home

7e339ce7c4abf116d59478f7bf51ba60.pe

The file 7e339ce7c4abf116d59478f7bf51ba60.pe has been detected as a potentially unwanted program by 42 anti-malware scanners.
MD5:
7e339ce7c4abf116d59478f7bf51ba60

SHA-1:
ae63924ca5240821ac173d28f450bf50b1a57fe7

SHA-256:
462e96e21cdc829c494899480d5fe136055d05e2ff8f1e282c0d2ad03b4c5f75

Scanner detections:
42 / 68

Status:
Potentially unwanted

Analysis date:
4/29/2024 8:38:49 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.Generic.6780880
677

Agnitum Outpost
Worm.DR.Rebhip.Gen
7.1.1

AhnLab V3 Security
Trojan/Win32.Llac
2015.03.30

Avira AntiVirus
WORM/Rebhip.A.9877
3.6.1.96

avast!
Win32:BackDoor-ACX [Trj]
2014.9-150330

AVG
PSW.Delf.3.E
2016.0.3155

Baidu Antivirus
Trojan.Win32.Spatet
4.0.3.15330

Bitdefender
Trojan.Generic.6780880
1.0.20.445

Bkav FE
W32.Clod958.Trojan
1.3.0.4959

Clam AntiVirus
Trojan.Agent-192978
0.98/21511

Comodo Security
Backdoor.Win32.Delf.~DF
21587

Dr.Web
Win32.HLLW.Autoruner.25074
9.0.1.089

Emsisoft Anti-Malware
Trojan.Generic.6780880
8.15.03.30.09

ESET NOD32
Win32/Spatet
9.11396

Fortinet FortiGate
W32/Spatet.TRR!tr
3/30/2015

F-Prot
W32/Rebhip.A.gen
v6.4.7.1.166

F-Secure
Trojan.Generic.6780880
11.2015-30-03_2

G Data
Trojan.Generic.6780880
15.3.25

herdProtect (fuzzy)
variant of test (7794).exe
2015.7.4.8

IKARUS anti.virus
not-a-virus:Monitor.Win32.Perflogger
t3scan.1.8.9.0

K7 AntiVirus
Trojan
13.176.11663

Kaspersky
Trojan.Win32.Llac
14.0.0.2268

Malwarebytes
Trojan.PWS
v2015.03.30.09

McAfee
Generic PWS.sz
5600.6811

Microsoft Security Essentials
Worm:Win32/Rebhip.A
1.1.11502.0

MicroWorld eScan
Trojan.Agent.AROC
16.0.0.267

NANO AntiVirus
Trojan.Win32.Llac.czcrh
0.30.8.659

Norman
Malware
11.20150330

nProtect
Trojan/W32.Hijack.296960.B
14.04.04.01

Panda Antivirus
Trj/Spy.YM
15.03.30.09

Qihoo 360 Security
HEUR/QVM05.1.Malware.Gen
1.0.0.1015

Quick Heal
Worm.Rebhip.A8
3.15.12.00

Rising Antivirus
PE:Trojan.Win32.Generic.1234C065!305447013
23.00.65.15328

Sophos
Mal/Behav-328
4.98

SUPERAntiSpyware
Trojan.Agent/Gen-FakeAlert
9966

Total Defense
Win32/Llac.AA
37.0.11519

Trend Micro House Call
TSPY_LLAC.SM
7.2.89

Trend Micro
TSPY_LLAC.SM
10.465.30

Vba32 AntiVirus
Trojan.Llac
3.12.26.3

VIPRE Antivirus
Trojan.Win32.Generic!SB.0
38886

ViRobot
Trojan.Win32.A.Llac.296448[h]
2014.3.20.0

Zillya! Antivirus
Trojan.Llac.Win32.48380
2.0.0.2121

File size:
296.5 KB (303,616 bytes)

Common path:
C:\users\{user}\downloads\7e339ce7c4abf116d59478f7bf51ba60.pe

File PE Metadata
Compilation timestamp:
6/19/1992 5:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
6144:/OpslFlq8hdBCkWYxuukP1pjSKSNVkq/MVJb6:/wsl/TBd47GLRMTb6

Entry address:
0xE1A8

Entry point:
55, 8B, EC, B9, 17, 00, 00, 00, 6A, 00, 6A, 00, 49, 75, F9, 51, 53, B8, A8, E0, 40, 00, E8, 1D, 71, FF, FF, 33, C0, 55, 68, 33, E8, 40, 00, 64, FF, 30, 64, 89, 20, 8D, 45, EC, E8, D3, 85, FF, FF, 8B, 45, EC, E8, 33, 5A, FF, FF, 50, 6A, 00, 6A, 00, E8, 39, 72, FF, FF, 8B, D8, E8, BA, 72, FF, FF, 3D, B7, 00, 00, 00, 75, 12, 53, E8, F5, 71, FF, FF, 68, E0, 2E, 00, 00, E8, 2B, 73, FF, FF, EB, 06, 53, E8, E3, 71, FF, FF, 8D, 45, E8, E8, EF, 84, FF, FF, 8B, 45, E8, E8, F3, 59, FF, FF, 50, 6A, 00, 6A, 00, E8, F9...
 
[+]

Entropy:
7.8161

Developed / compiled with:
Microsoft Visual C++

Code size:
54.5 KB (55,808 bytes)

Remove 7e339ce7c4abf116d59478f7bf51ba60.pe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.