home

bbfde4dba16715635fc5fcee6a9fcfb7_4272.npb

The file bbfde4dba16715635fc5fcee6a9fcfb7_4272.npb has been detected as malware by 40 anti-virus scanners.
MD5:
bbfde4dba16715635fc5fcee6a9fcfb7

SHA-1:
b88f93fdb4b6b32bfdc4565db6e342e54a18b5e5

SHA-256:
2ddb91bb9f84c5f33449ac37fa069eac317fa9ffc5ebcea7c8548e0d035e1226

Scanner detections:
40 / 68

Status:
Malware

Analysis date:
4/24/2024 8:55:41 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Worm.Generic.508034
6473648

Agnitum Outpost
Trojan.Agent
7.1.1

AhnLab V3 Security
Worm/Win32.Gamarue
2015.01.01

Avira AntiVirus
TR/Downloader.Gen
7.11.198.230

avast!
Win32:Kryptik-MBF [Trj]
150101-1

AVG
Worm/Pakes.BIU
2014.0.4253

Bitdefender
Worm.Generic.508034
1.0.20.140

Bkav FE
W32.GenericGamarueI.Trojan
1.3.0.6267

Clam AntiVirus
Win.Worm.Debris
0.98/19988

Comodo Security
Worm.Win32.BundPil.LAS
20545

Dr.Web
Trojan.MulDrop5.33333
9.0.1.05190

Emsisoft Anti-Malware
Worm.Generic.508034
9.0.0.4799

ESET NOD32
Win32/Bundpil.W worm
7.0.302.0

Fortinet FortiGate
W32/Generic.W!tr
1/28/2015

F-Prot
W32/Csyr.A.gen
4.6.5.141

F-Secure
Worm.Generic.508034
5.13.68

G Data
Worm.Generic.508034
15.1.24

IKARUS anti.virus
Worm.Win32.Gamarue
t3scan.1.8.5.0

K7 AntiVirus
Trojan
13.188.14496

Kaspersky
Worm.Win32.Debris
15.0.0.543

McAfee
Trojan.Obfuscated-FGC!hb
5600.6871

Microsoft Security Essentials
Threat.Undefined
1.191.1178.0

MicroWorld eScan
Worm.Generic.508034
16.0.0.84

NANO AntiVirus
Trojan.Win32.MulDrop4.bqofzc
0.30.0.64448

Norman
Worm.Generic.508034
02.01.2015 13:58:24

nProtect
Worm/W32.Debris.3955
14.12.31.01

Panda Antivirus
Trj/Downloader.WKR
15.01.28.01

Qihoo 360 Security
Malware.QVM27.Gen
1.0.0.1015

Quick Heal
Trojan.Agent.WL
1.15.14.00

Reason Heuristics
Threat.Win.Reputation.IMP
15.1.28.13

Rising Antivirus
PE:Worm.Gamarue!6.15
23.00.65.15126

Sophos
Virus 'Troj/Bundpil-C'
5.10

SUPERAntiSpyware
Trojan.Agent/Gen-Bundpil
10088

Total Defense
Win32/Gamarue.IAPJNf
37.0.11360

Trend Micro House Call
WORM_GAMARUE.SMB
7.2.28

Trend Micro
WORM_GAMARUE.SMB
10.465.28

Vba32 AntiVirus
TrojanDropper.Andromeda
3.12.26.3

VIPRE Antivirus
Threat.4785324
35418

ViRobot
Worm.Win32.Gamarue.4057[h]
2014.3.20.0

Zillya! Antivirus
Worm.Debris.Win32.1
2.0.0.2023

File size:
4.2 KB (4,272 bytes)

Common path:
C:\ProgramData\net protector\npbkp\bbfde4dba16715635fc5fcee6a9fcfb7_4272.npb

File PE Metadata
Compilation timestamp:
4/14/2013 10:21:54 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
48:a5zdM1cSTBg0r27vTuAEKsImjGDRXkMW/kV4g:PT3r2vu9jYRNW/kV4g

Entry address:
0x10AB

Entry point:
55, 8B, EC, 53, 8B, 5D, 08, 56, 8B, 75, 0C, 57, 8B, 7D, 10, 85, F6, 75, 09, 83, 3D, 10, 30, 00, 10, 00, EB, 26, 83, FE, 01, 74, 05, 83, FE, 02, 75, 22, A1, 3C, 32, 00, 10, 85, C0, 74, 09, 57, 56, 53, FF, D0, 85, C0, 74, 0C, 57, 56, 53, E8, 15, FF, FF, FF, 85, C0, 75, 04, 33, C0, EB, 4E, 57, 56, 53, E8, 29, 01, 00, 00, 83, FE, 01, 89, 45, 0C, 75, 0C, 85, C0, 75, 37, 57, 50, 53, E8, F1, FE, FF, FF, 85, F6, 74, 05, 83, FE, 03, 75, 26, 57, 56, 53, E8, E0, FE, FF, FF, 85, C0, 75, 03, 21, 45, 0C, 83, 7D, 0C, 00...
 
[+]

Entropy:
3.9355

Developed / compiled with:
Microsoft Visual C++ 6.0

Code size:
1024 Bytes (1,024 bytes)

Remove bbfde4dba16715635fc5fcee6a9fcfb7_4272.npb - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.