» acf.tmp
Overview
Analysis
File Details

acf.tmp

The file acf.tmp has been detected as malware by 16 anti-virus scanners.

File name:

acf.tmp

Description:

gjhqcxvygeqjmga

Version:

4.0.0.1

MD5:

d13eee1ba41b65f9b1e24dd275243a5e

SHA-1:

bbd1ee19d134c7894ee28c74478ebb699b465485

SHA-256:

d8c0180a3dbbeeb0feab2c928c11d8c89abeab960c1616512ec6e80ce8601f0d

Scanner detections:

16 / 68

Status:

Malware

Analysis date:

4/26/2024 1:02:45 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Kazy.457370

866

AhnLab V3 Security

Dropper/Win32.Necurs

2014.09.19

Avira AntiVirus

TR/Cutwail.A.95

7.11.173.24

AVG

Crypt3

2015.0.3344

Bitdefender

Gen:Variant.Kazy.457370

1.0.20.1325

Emsisoft Anti-Malware

Gen:Variant.Kazy.457370

8.14.09.22.11

ESET NOD32

Win32/Kryptik.CLLV (variant)

8.10438

F-Secure

Gen:Variant.Kazy.457370

11.2014-22-09_2

G Data

Gen:Variant.Kazy.457370

14.9.24

Kaspersky

Trojan.Win32.Cutwail

14.0.0.3213

Malwarebytes

Trojan.Agent

v2014.09.22.11

Microsoft Security Essentials

TrojanDropper:Win32/Cutwail

1.11005

MicroWorld eScan

Gen:Variant.Kazy.457370

15.0.0.795

Panda Antivirus

Trj/Chgt.G

14.09.22.11

Qihoo 360 Security

Malware.QVM19.Gen

1.0.0.1015

Sophos

Mal/Generic-S

4.98

File size:

83.9 KB (85,888 bytes)

Product version:

4.0.0.1

Original file name:

dseehhnxkfel

Language:

English (United States)

Common path:

C:\users\{user}\appdata\local\temp\acf.tmp

File PE Metadata

Compilation timestamp:

6/16/2006 11:53:39 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

1.71

CTPH (ssdeep):

1536:xbZ/z3gzd6PnSlr8jI7CW+OUoCHIso68TYYBYBO+u:xbJyaorQyIoyu5+Bfu

Entry address:

0x2000

Entry point:

6A, 00, FF, 15, DC, 2D, 41, 00, A3, F0, 32, 41, 00, FF, 15, D8, 2D, 41, 00, A3, 50, 30, 40, 00, 68, E0, 32, 41, 00, FF, 15, 4C, 2E, 41, 00, 85, C0, 74, 68, 31, C0, 31, C0, 6A, 00, FF, 35, F0, 32, 41, 00, 50, 6A, 00, 68, 8A, 00, 00, 00, 68, 8A, 00, 00, 00, 6A, 6E, 6A, 7E, 68, 00, 00, CF, 00, 68, 08, 33, 41, 00, 68, 76, 33, 41, 00, 6A, 00, FF, 15, 38, 2E, 41, 00, 85, C0, 74, 30, 6A, 00, 6A, 00, 6A, 00, 68, 94, 33, 41, 00, FF, 15, 44, 2E, 41, 00, 83, F8, 01, 72, 1A, 75, E8, 68, 94, 33, 41, 00, FF, 15, 50, 2E... 
[+]

Packer / compiler:

FASM v1.3x

Code size:

69.5 KB (71,168 bytes)

Remove acf.tmp - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.