» b-201.exe
Overview
Analysis
File Details

b-201.exe

The application b-201.exe has been detected as a potentially unwanted program by 21 anti-malware scanners.

File name:

b-201.exe

MD5:

9996f242a91384ff6fde5a84cc837fca

SHA-1:

5d7fe7b2505f1b870d4f4f0ce9fb6c37f3306df5

SHA-256:

6756e06ba1e8af5f18439aa2c935eab0c198bf495637520faef67730e4c74952

Scanner detections:

21 / 68

Status:

Potentially unwanted

Analysis date:

4/25/2024 4:15:16 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.GenericKD.2561229

354

AhnLab V3 Security

Trojan/Win32.Dynamer

2015.07.18

Avira AntiVirus

TR/Crypt.ZPACK.71644

8.3.1.6

Arcabit

Trojan.Generic.D2714CD

1.0.0.425

AVG

Win32/Cryptor

2017.0.2832

Baidu Antivirus

Adware.Win32.iBryte

4.0.3.16215

Bitdefender

Trojan.GenericKD.2561229

1.0.20.230

Bkav FE

HW32.Packed

1.3.0.6979

Emsisoft Anti-Malware

Trojan.GenericKD.2561229

8.16.02.15.07

ESET NOD32

Win32/Kryptik.DQEJ (variant)

10.11956

Fortinet FortiGate

W32/Kryptik.DPQJ!tr

2/15/2016

F-Secure

Trojan.GenericKD.2561229

11.2016-15-02_2

G Data

Trojan.GenericKD.2561229

16.2.25

K7 AntiVirus

Trojan

13.207.16601

McAfee

Artemis!9996F242A913

5600.6488

Microsoft Security Essentials

TrojanDownloader:Win32/Mytonel.A

1.1.11804.0

MicroWorld eScan

Trojan.GenericKD.2561229

17.0.0.138

nProtect

Trojan.GenericKD.2561229

15.07.17.01

Panda Antivirus

Trj/Genetic.gen

16.02.15.07

Sophos

Mal/Generic-S

4.98

VIPRE Antivirus

Trojan.Win32.Generic

42086

File size:

1.3 MB (1,388,544 bytes)

File type:

Executable application (Win32 EXE)

File PE Metadata

Compilation timestamp:

2/7/2013 10:44:00 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

7.10

CTPH (ssdeep):

24576:3010RjnGHj/1h1kLJ7wQDALqTPlhVpT0SeHHbQdDuqqLM/i7YnJI1XrICnb9/YEi:kss1kBVTtvJ0jwDuqqQizYlP

Entry address:

0x14E064

Entry point:

55, 83, C5, 0C, 54, 5D, 83, EC, 50, 66, 81, FD, 00, FD, 0F, 82, A4, 08, 00, 00, 83, C1, 44, C6, 05, AE, F1, 14, 01, C2, 21, 0D, F1, F0, 14, 01, C6, 05, AD, F0, 14, 01, CB, 83, C3, 44, C6, 05, 7E, F1, 14, 01, 18, 83, C6, 65, C6, 05, 5E, F0, 14, 01, 4C, 29, DB, 8B, 0D, C7, F0, 14, 01, 8B, 3D, C1, F1, 14, 01, C6, 05, A4, F0, 14, 01, D1, 8D, 1D, FF, 0F, 15, 01, 43, 6A, 00, 6A, 00, 53, 2E, FF, 15, 0C, 10, 00, 01, 85, C0, 0F, 85, 49, 08, 00, 00, 8D, 05, 45, 10, 15, 01, 40, 50, 8D, 3D, 35, 10, 15, 01, 47, 57, FF... 
[+]

Code size:

1.3 MB (1,368,064 bytes)

Remove b-201.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.