» b2 - 338.exe
Overview
Analysis
File Details

b2 - 338.exe

The application b2 - 338.exe has been detected as a potentially unwanted program by 15 anti-malware scanners.

File name:

b2 - 338.exe

Version:

5.0.1.9923

MD5:

4d482e3d6dce685b2d5caf335ec3fab7

SHA-1:

4ef758f44d5636360072392eb5856337912125a7

SHA-256:

ad7b57825f262cc33e72dc65ebe070161eaf2f9bd0bb6371ad3d636d6b390eac

Scanner detections:

15 / 68

Status:

Potentially unwanted

Analysis date:

4/16/2024 1:28:05 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Strictor.24013

6213306

Avira AntiVirus

HEUR/Malware

7.11.197.30

avast!

Malware-gen

141214-1

Bitdefender

Gen:Variant.Strictor.24013

1.0.20.1780

Emsisoft Anti-Malware

Gen:Variant.Strictor.24013

9.0.0.4668

ESET NOD32

Win32/HideBaid.I potentially unwanted application

7.0.302.0

Fortinet FortiGate

Riskware/BindEx

12/22/2014

F-Secure

Gen:Variant.Strictor.24013

11.2014-22-12_2

G Data

Gen:Variant.Strictor.24013

14.12.24

Kaspersky

not-a-virus:Downloader.Win32.BindEx

15.0.0.543

MicroWorld eScan

Gen:Variant.Strictor.24013

15.0.0.1068

Norman

Gen:Variant.Strictor.24013

04.12.2014 14:30:06

Sophos

Generic PUA MA

4.98

Trend Micro House Call

TROJ_GEN.R0C1H07LJ14

7.2.356

VIPRE Antivirus

Threat.4150696

35418

File size:

685.1 KB (701,555 bytes)

Product version:

5.0

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\appdata\local\temp\b2 - 338.exe

File PE Metadata

Compilation timestamp:

10/30/2014 10:20:45 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

CTPH (ssdeep):

12288:RtUBGy8Xz0MqcPHDc2YpKSouCsBvplyt1E5Mx8Qnfql99gd1D/AuLLPeL8Ta+/Mj:UBaXz0MqcPHDc2YpKSo1sBh8t1E5Mxro

Entry address:

0x33675

Entry point:

E8, 7B, 43, 00, 00, E9, 17, FE, FF, FF, 8B, 44, 24, 04, 66, 8B, 54, 24, 08, EB, 07, 66, 3B, CA, 74, 11, 40, 40, 0F, B7, 08, 66, 85, C9, 75, F1, 66, 39, 10, 74, 02, 33, C0, C3, 55, 8B, EC, B8, FF, FF, 00, 00, 83, EC, 14, 66, 39, 45, 08, 0F, 84, 97, 00, 00, 00, 53, FF, 75, 0C, 8D, 4D, EC, E8, 47, F9, FF, FF, 8B, 45, EC, 8B, 48, 14, 33, DB, 3B, CB, 75, 14, 8B, 45, 08, 8D, 48, 9F, 66, 83, F9, 19, 77, 03, 83, C0, E0, 0F, B7, C0, EB, 5E, 66, 81, 7D, 08, 00, 01, 73, 29, 8D, 45, EC, 50, 6A, 02, FF, 75, 08, E8, 4D... 
[+]

Code size:

257.5 KB (263,680 bytes)

Remove b2 - 338.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.