home

a rút kiskacsa.exe

The executable a rút kiskacsa.exe has been detected as malware by 8 anti-virus scanners.
MD5:
2fe8393aa79b5c002d7d1a41306a323f

SHA-1:
f1444603bbbf11cc3a8bfc4edbc8eabfc304b2b3

SHA-256:
7297f6637b83005c7209658c131c32afae25236d93194b3621ee63ec664369ad

Scanner detections:
8 / 68

Status:
Malware

Analysis date:
4/25/2024 10:02:00 PM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
Backdoor.Hupigon
7.1.1

Baidu Antivirus
Backdoor.Win32.Gpigeon2010
4.0.3.1491

Bkav FE
W32.Clodc39.Trojan
1.3.0.4959

Comodo Security
Backdoor.Win32.Hupigon.70
17863

McAfee
Artemis!2FE8393AA79B
5600.7021

Reason Heuristics
Threat.Win.Reputation.IMP
14.9.2.16

Rising Antivirus
PE:Backdoor.Win32.Gpigeon2010.wh!1075329345
23.00.65.14830

Zillya! Antivirus
Backdoor.Hupigon.Win32.155766
2.0.0.1822

File size:
11 MB (11,520,566 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:y1TS6acqcXQw3ZJGwudF528lzcLHEWn4I2pnQkuFuj8uDE3tQ8y+ztrj6iXuz/nl:y1TZq1IP54g1n4gkuFMFDAtQ8y+jazL5

Entry address:
0xAE001

Entry point:
60, E8, 03, 00, 00, 00, E9, EB, 04, 5D, 45, 55, C3, E8, 01, 00, 00, 00, EB, 5D, BB, ED, FF, FF, FF, 03, DD, 81, EB, 00, E0, 0A, 00, 83, BD, 22, 04, 00, 00, 00, 89, 9D, 22, 04, 00, 00, 0F, 85, 65, 03, 00, 00, 8D, 85, 2E, 04, 00, 00, 50, FF, 95, 4D, 0F, 00, 00, 89, 85, 26, 04, 00, 00, 8B, F8, 8D, 5D, 5E, 53, 50, FF, 95, 49, 0F, 00, 00, 89, 85, 4D, 05, 00, 00, 8D, 5D, 6B, 53, 57, FF, 95, 49, 0F, 00, 00, 89, 85, 51, 05, 00, 00, 8D, 45, 77, FF, E0, 56, 69, 72, 74, 75, 61, 6C, 41, 6C, 6C, 6F, 63, 00, 56, 69, 72...
 
[+]

Packer / compiler:
ASPack v2.12

Code size:
496.5 KB (508,416 bytes)

Remove a rút kiskacsa.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.