» avto2.exe
Overview
Analysis
File Details

avto2.exe

The executable avto2.exe has been detected as malware by 29 anti-virus scanners.

File name:

avto2.exe

MD5:

faa60bfd7147e5fc335dea8133b9c10c

SHA-1:

48f38546106f7f364edcc2844a30ec8244c827ec

Scanner detections:

29 / 68

Status:

Malware

Analysis date:

4/29/2024 3:34:54 PM UTC (today)

Scan engine

Detection

Engine version

AhnLab V3 Security

Win-Trojan/Fraudpack.297984.C

2010.09.25

Avira AntiVirus

TR/Click.Klik.230

7.10.12.30

avast!

Win32:MalOb-AL

2014.9-170313

AVG

SHeur3

2018.0.2440

Bitdefender

Trojan.Generic.3543820

1.0.20.360

Comodo Security

Heur.Suspicious

6199

Dr.Web

Trojan.Siggen.106

9.0.1.072

Emsisoft Anti-Malware

Trojan.Win32.FakeAV!IK

8.17.03.13.10

ESET NOD32

Win32/Kryptik.CQW (variant)

11.5479

Fortinet FortiGate

W32/FraudPack.fam!tr

3/13/2017

F-Prot

W32/Vesloruki.A.gen

v6.4.6.2.117

F-Secure

Trojan.Generic.3543820

11.2017-13-03_2

G Data

Trojan.Generic.3543820

17.3.21

IKARUS anti.virus

Trojan.Win32.FakeAV

t3scan.1.1.88.0

K7 AntiVirus

Trojan

13.63.2608

Kaspersky

Trojan.Win32.FraudPack

14.0.0.-1305

McAfee

Generic.dx!phq

5600.6096

Microsoft Security Essentials

TrojanClicker:Win32/Klik

1.163.1557.0

Norman

W32/Suspicious_Gen2.AUIQI

11.20170313

nProtect

Trojan.Generic.3543820

10.09.25.01

Panda Antivirus

Generic Trojan

17.03.13.10

Prevx

High Risk Targeted Information Stealer

3.0

Quick Heal

FraudTool.XP.2010

3.17.11.00

Rising Antivirus

Trojan.Win32.Generic.51FA083E

23.00.65.17311

Sophos

Mal/FakeAV-BT

4.58

Trend Micro House Call

TROJ_KRAP.SMEP

7.2.72

Trend Micro

TROJ_KRAP.SMEP

10.465.13

Vba32 AntiVirus

Trojan.Win32.FraudPack.amuq

3.12.14.1

ViRobot

Spyware.FraudPack.297984.C

2010.9.25.4060

File size:

291 KB (297,984 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\windows\temp\avto2.exe

File PE Metadata

Compilation timestamp:

10/28/2007 7:17:41 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

255.27

Entry address:

0x3ABE1

Entry point:

55, 8B, EC, 83, C4, E8, 53, 57, 56, 6A, 00, FF, 15, 80, B0, 43, 00, FF, 15, BC, B0, 43, 00, 89, 85, F8, FF, FF, FF, 6A, 00, FF, 15, BC, B0, 43, 00, 89, 85, EC, FF, FF, FF, 6A, 00, FF, 15, BC, B0, 43, 00, 89, 85, FC, FF, FF, FF, 68, 2C, C0, 44, 00, FF, 15, 9C, B0, 43, 00, 68, 1F, C0, 44, 00, 50, FF, 15, 80, B0, 43, 00, FF, 15, E8, B0, 43, 00, FF, D0, 50, 68, 14, C6, 00, 00, FF, 15, 88, B0, 43, 00, 68, 00, F0, 43, 00, FF, 15, 80, B0, 43, 00, E8, E2, 00, 00, 00, FF, 15, F8, B0, 43, 00, FF, 15, BC, B0, 43, 00... 
[+]

Entropy:

6.8127

Developed / compiled with:

Microsoft Visual C++

Code size:

231.5 KB (237,056 bytes)

Remove avto2.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.