» ae46652a38a6bcf423a06f74088ad9d4_65536.npb
Overview
Analysis
File Details

ae46652a38a6bcf423a06f74088ad9d4_65536.npb

The file ae46652a38a6bcf423a06f74088ad9d4_65536.npb has been detected as malware by 35 anti-virus scanners.

File name:

MD5:

ae46652a38a6bcf423a06f74088ad9d4

SHA-1:

b7195e0f88d66aca27fca4f1cb851019327302e7

SHA-256:

fbf8745aedb42c6de4286b84ca1fc7b5d6ec57a0ec60819aeb4e8459d4ef3ae7

Scanner detections:

35 / 68

Status:

Malware

Analysis date:

4/20/2024 2:45:32 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Kazy.434489

6435775

Agnitum Outpost

Trojan.Cutwail

7.1.1

AhnLab V3 Security

Trojan/Win32.Generic

2015.01.25

Avira AntiVirus

TR/Dropper.Gen

7.11.30.172

avast!

Win32:Cutwail-CM [Trj]

150102-1

AVG

Agent

2016.0.3219

Baidu Antivirus

Trojan.Win32.Kryptik

4.0.3.15415

Bitdefender

Gen:Variant.Kazy.434489

1.0.20.125

Bkav FE

HW32.Packed

1.3.0.6379

Dr.Web

Trojan.MulDrop3.14959

9.0.1.05190

Emsisoft Anti-Malware

Gen:Variant.Kazy.434489

9.0.0.4799

ESET NOD32

Win32/Kryptik.CFFF trojan

7.0.302.0

Fortinet FortiGate

W32/Generic.BG!tr

4/15/2015

F-Secure

Gen:Variant.Kazy.434489

5.13.68

G Data

Gen:Variant.Kazy.434489

15.1.24

IKARUS anti.virus

Trojan.Win32.Cutwail

t3scan.1.8.6.0

K7 AntiVirus

Trojan

13.185.13888

Kaspersky

HEUR:Trojan.Win32.Generic

14.0.0.2590

Malwarebytes

Trojan.Agent.US

v2015.01.25.01

McAfee

Trojan.Downloader-FAKU!AE46652A38A6

16.8.708.2

Microsoft Security Essentials

Threat.Undefined

1.191.3191.0

MicroWorld eScan

Gen:Variant.Kazy.434489

16.0.0.75

NANO AntiVirus

Trojan.Win32.Cutwail.dbsuzz

0.30.0.64812

Norman

Gen:Variant.Kazy.434489

03.12.2014 13:20:04

nProtect

Trojan/W32.Cutwail.61952.C

14.11.03.01

Panda Antivirus

Trj/Dtcontx.M

15.01.25.01

Qihoo 360 Security

Win32/Trojan.883

1.0.0.1015

Reason Heuristics

Threat.Win.Reputation.IMP

15.4.14.22

Sophos

Virus 'Troj/Cutwail-BG'

5.09

SUPERAntiSpyware

Trojan.Agent/Gen-Lebag

9935

Trend Micro House Call

TROJ_CUTWAIL.SM0

7.2.25

Trend Micro

TROJ_CUTWAIL.SM0

10.465.25

Vba32 AntiVirus

Trojan.Cutwail

3.12.26.3

VIPRE Antivirus

Threat.5063027

36694

Zillya! Antivirus

Trojan.Cutwail.Win32.176

2.0.0.2044

File size:

64 KB (65,536 bytes)

Common path:

C:\ProgramData\application data\net protector\npbkpn\ae46652a38a6bcf423a06f74088ad9d4_65536.npb

File PE Metadata

Compilation timestamp:

8/30/1996 2:59:33 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

5.12

CTPH (ssdeep):

1536:y2PXo3QYg7FpEvfZHpTcV07S62Ylr2V3owRsMBfQ:y2w3MBp8ZcVElri3owuMBo

Entry address:

0x1000

Entry point:

BD, 30, 13, 40, 00, FF, D5, 50, 8F, 05, 89, 30, 40, 00, C7, 05, 8D, 30, 40, 00, 30, 00, 00, 00, C7, 05, 91, 30, 40, 00, 03, 00, 00, 00, C7, 05, 95, 30, 40, 00, 20, 11, 40, 00, C7, 05, 99, 30, 40, 00, 00, 00, 00, 00, C7, 05, 9D, 30, 40, 00, 00, 00, 00, 00, FF, 35, 89, 30, 40, 00, 8F, 05, A1, 30, 40, 00, C7, 05, AD, 30, 40, 00, 06, 00, 00, 00, C7, 05, B1, 30, 40, 00, 00, 00, 00, 00, C7, 05, B5, 30, 40, 00, CD, 30, 40, 00, 68, 00, 7F, 00, 00, 6A, 00, E8, 84, 02, 00, 00, A3, A5, 30, 40, 00, A3, B9, 30, 40, 00... 
[+]

Entropy:

6.5968

Code size:

1024 Bytes (1,024 bytes)

Remove ae46652a38a6bcf423a06f74088ad9d4_65536.npb - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.