home

aaf5.tmp

Company name goes here

The file aaf5.tmp, “File description goes here” has been detected as malware by 5 anti-virus scanners.
Publisher:
Company name goes here

Description:
File description goes here

Version:
Version info goes here

MD5:
749c1bccd3b15d0ba49f133eb2d3863e

SHA-1:
1a656c73449a9a927293c3a5edc7c4e9faf29498

SHA-256:
6bec6633b998934a7e55f7dfed2bf2501b9b59d33435b3e18876df760608cd63

Scanner detections:
5 / 68

Status:
Malware

Analysis date:
4/25/2024 5:02:11 PM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win64:Evo-gen [Susp]
150319-1

AVG
Crypt4
2016.0.3158

Baidu Antivirus
Trojan.Win64.Fleercivet
4.0.3.15327

ESET NOD32
Win64/Fleercivet.AB
9.11385

McAfee
Artemis!749C1BCCD3B1
5600.6814

File size:
95.5 KB (97,792 bytes)

Copyright:
Copyright strng goes here - use © for copyright symbol

Original file name:
Filename goes here

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\aaf5.tmp

File PE Metadata
Compilation timestamp:
3/26/2015 3:10:57 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
1536:mi9JowdpTTw08q7z2JcsHjE33OzEhDuY1CaJyn1H35DjdAew7ZPOhrLU:mi9JvpTTwrq7z2OsHjs3OIhDuY1CaEnI

Entry address:
0x48F8

Entry point:
48, 83, EC, 28, E8, 17, 17, 00, 00, 48, 83, C4, 28, E9, 52, FE, FF, FF, CC, CC, 48, 83, EC, 28, 48, 8B, 01, 81, 38, 63, 73, 6D, E0, 75, 2B, 83, 78, 18, 04, 75, 25, 8B, 40, 20, 3D, 20, 05, 93, 19, 74, 15, 3D, 21, 05, 93, 19, 74, 0E, 3D, 22, 05, 93, 19, 74, 07, 3D, 00, 40, 99, 01, 75, 06, E8, 87, 17, 00, 00, CC, 33, C0, 48, 83, C4, 28, C3, CC, CC, CC, 48, 83, EC, 28, 48, 8D, 0D, B1, FF, FF, FF, FF, 15, 2F, 59, 00, 00, 33, C0, 48, 83, C4, 28, C3, 40, 53, 48, 83, EC, 20, 8B, D9, 48, 8D, 0D, 29, 5C, 00, 00, FF...
 
[+]

Code size:
33.5 KB (34,304 bytes)

Remove aaf5.tmp - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.