home

Basilico obsoleto.exe

James Burton

The file Basilico obsoleto.exe has been detected as malware by 31 anti-virus scanners.
Publisher:
Basilico obsoleto  (signed by James Burton)

Product:
Basilico obsoleto

Version:
0.01.0004

MD5:
0ad456998d14673fecea7853aa7a7b8b

SHA-1:
5a65f62eaa12628261bfd70007b995b0537997ad

SHA-256:
60307578dc1db6871994c63b80cb938818fd010aa2ed040e1cd70d7c7eee3ebf

Scanner detections:
31 / 68

Status:
Malware

Analysis date:
7/3/2025 5:42:15 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Symmi.55834
374

Agnitum Outpost
Trojan.Boaxxe
7.1.1

AhnLab V3 Security
Trojan/Win32.Miuref
2015.09.10

Avira AntiVirus
TR/Dropper.VB.33970
8.3.2.2

Arcabit
Trojan.Symmi.DDA1A
1.0.0.525

avast!
Win32:Dropper-gen [Drp]
2014.9-160127

AVG
Dropper.Generic9
2017.0.2852

Baidu Antivirus
Trojan.Win32.Dropper
4.0.3.16127

Bitdefender
Gen:Variant.Symmi.55834
1.0.20.135

Comodo Security
UnclassifiedMalware
23207

Dr.Web
Trojan.Siggen6.23087
9.0.1.027

Emsisoft Anti-Malware
Gen:Variant.Symmi.55834
8.16.01.27.04

ESET NOD32
Win32/Boaxxe.BR
10.12232

Fortinet FortiGate
W32/VB.BR!tr
1/27/2016

F-Secure
Gen:Variant.Symmi.55834
11.2016-27-01_4

G Data
Gen:Variant.Symmi.55834
16.1.25

IKARUS anti.virus
Trojan.Win32.VBKryjetor
t3scan.1.9.5.0

K7 AntiVirus
Trojan
13.210.17174

Kaspersky
Trojan-Dropper.Win32.VB
14.0.0.754

Malwarebytes
Trojan.VBCrypt
v2016.01.27.04

McAfee
RDN/Generic Dropper
5600.6508

Microsoft Security Essentials
VirTool:Win32/VBInject.AER
1.1.12002.0

MicroWorld eScan
Gen:Variant.Symmi.55834
17.0.0.81

NANO AntiVirus
Trojan.Win32.VB.dvunpc
0.30.24.3283

Panda Antivirus
Trj/Genetic.gen
16.01.27.04

Qihoo 360 Security
Win32/Trojan.Dropper.874
1.0.0.1015

Sophos
Mal/Generic-S
4.98

SUPERAntiSpyware
Trojan.Agent/Gen-VB
9361

Trend Micro
TROJ_GEN.R00JC0VHV15
10.465.27

VIPRE Antivirus
Trojan.Win32.Generic
43638

Zillya! Antivirus
Dropper.VB.Win32.65602
2.0.0.2392

File size:
145.7 KB (149,208 bytes)

Product version:
0.01.0004

Original file name:
Basilico obsoleto.exe

Language:
Arabic (Saudi Arabia)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\65ba.tmp

Digital Signature
Signed by:
James Burton

Authority:
StartCom Ltd.

Valid from:
8/30/2013 6:18:48 PM

Valid to:
9/1/2015 4:33:34 AM

Subject:
E=jim618@fastmail.co.uk, CN=James Burton, L=London, S=Greater London, C=GB, Description=PgF7B7Vgi6msWulW

Issuer:
CN=StartCom Class 2 Primary Intermediate Object CA, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL

Serial number:
0ADE

File PE Metadata
Compilation timestamp:
5/7/2015 1:18:14 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
3072:kMitzJbaQpEF3MomUwUwX1LjkZ0y11J9qXxYR0:kMitzJWQomLLRjk91o

Entry address:
0x1318

Entry point:
68, 0C, 4B, 41, 00, E8, F0, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 52, FA, 6E, 38, 48, C3, 6C, 48, BC, E0, D0, 13, 3A, B8, A1, 0F, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 4D, 61, 69, 6C, 6F, 68, 6E, 73, 38, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, FF, CC, 31, 00, 04, C9, B4, 2D, 06, BC, E9, 04, 44, A7, 53, 10, AC, 34, A5, 45, F5, 69, 9F, 18, 0F, EC, B1, 2C, 4D, BD, E6, 1B, C0, F4, 08, E5, D9, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00...
 
[+]

Entropy:
7.0993

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
124 KB (126,976 bytes)

Remove Basilico obsoleto.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.