» atk.exe
Overview
Analysis
File Details

atk.exe

Attack Tool Kit (ATK)

computec.ch

The executable atk.exe, “An open-source utility to realize vulnerability checks and enhance security audits.” has been detected as malware by 23 anti-virus scanners.

File name:

atk.exe

Publisher:

computec.ch

Product:

Attack Tool Kit (ATK)

Description:

An open-source utility to realize vulnerability checks and enhance security audits.

Version:

2.01.0020

MD5:

69d223f275d73e332ff1cf9c5a376791

SHA-1:

3496c6c9a1eae6fa77da0c1e19d7c84236f10455

SHA-256:

4dc527bd9afdb4c3021bb69f78028436be98e80d0699ce6b19369e6cdae31f82

Scanner detections:

23 / 68

Status:

Malware

Analysis date:

4/25/2024 8:43:18 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Application.Portscan.A

1016

Agnitum Outpost

Win32.Virut.AB.Gen

7.1.1

Avira AntiVirus

SPR/Tool.AttKit.C

7.11.145.40

avast!

Win32:Vitro

2014.9-140424

AVG

Luhe.Gen.B

2015.0.3494

Bitdefender

Application.Portscan.A

1.0.20.570

Bkav FE

W32.HfsAutoA

1.3.0.4959

Dr.Web

Tool.Atk

9.0.1.0114

ESET NOD32

Win32/Virut.NBP

8.9718

Fortinet FortiGate

W32/Virut.CE

4/24/2014

F-Secure

Application.Portscan.A

11.2014-24-04_5

G Data

Application.Portscan

14.4.24

K7 AntiVirus

NetWorm

13.176.11873

McAfee

PortScan-AttackTool

5600.7150

Microsoft Security Essentials

HackTool:Win32/VB.A

1.10502

MicroWorld eScan

Application.Portscan.A

15.0.0.342

NANO AntiVirus

Virus.Win32.Virut-Gen.bwpxnc

0.28.0.59492

Panda Antivirus

HackTool/PortScanner.D

14.04.24.12

Quick Heal

HackTool.AttKit.c.n4 (Not a Virus)

4.14.12.00

Rising Antivirus

PE:Hack.AttKit.b!1073955230

23.00.65.14422

Trend Micro House Call

HKTL_ATTKIT.A

7.2.114

Trend Micro

HKTL_ATTKIT.A

10.465.24

Vba32 AntiVirus

HackTool.AttKit

3.12.26.0

File size:

792 KB (811,008 bytes)

Product version:

2.01.0020

General Public License (GPL)

Trademarks:

Original file name:

atk.exe

File type:

Executable application (Win32 EXE)

File PE Metadata

Compilation timestamp:

8/2/1996 12:49:59 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

24576:JziLdgF4LHHmTDixPytxSh/8HcKwukn84FFrwGZQ+PAY5KUAUPcho7tcl1:JzmyN

Entry address:

0x49BC

Entry point:

68, B4, 5D, 40, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 50, 00, 00, 00, 38, 00, 00, 00, CE, BB, FE, FF, A2, F7, 0B, 42, AA, 9C, 96, 46, 7C, 4A, 39, 5C, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 41, 00, 06, 50, 93, 02, 61, 74, 6B, 00, B8, B2, 34, 01, 41, 74, 74, 61, 63, 6B, 20, 54, 6F, 6F, 6C, 20, 4B, 69, 74, 20, 28, 41, 54, 4B, 29, 00, 37, 01, 00, 00, 00, 00, FF, CC, 31, 00, 05, 27, BA, 25, 99, 1B, 68, 87, 4D, 8D, B8, E6, A7, B0, 00, 9D, 7E, 98, BB, 18, 5E, 99, 34, 30, 45, 90, AC, 9A... 
[+]

Entropy:

5.9054

Developed / compiled with:

Microsoft Visual Basic v5.0/v6.0

Code size:

748 KB (765,952 bytes)

Remove atk.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.