» CC2Bank.exe
Overview
Analysis
File Details

CC2Bank.exe

CC2Bank

RaZe Software

The executable CC2Bank.exe has been detected as malware by 32 anti-virus scanners. This trojon will perform a number of actions that will compromise a PC including changing protected system registry values, hiding in protected operating system locations and downloading and installing additional malware.

File name:

CC2Bank.exe

Publisher:

RaZe Software

Product:

CC2Bank

Version:

1.3

MD5:

5ca93ef8d146ba320f5a57904623231a

SHA-1:

722fad240da85312ab7477e079a4f09eb9b831e1

SHA-256:

f128b522d06d90dbd0bf20e629bbde68153e370b1edfcf1746f8b74002a56d41

Scanner detections:

32 / 68

Status:

Malware

Analysis date:

4/25/2024 7:08:15 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Barys.100

886

Agnitum Outpost

Trojan.Injector

7.1.1

Avira AntiVirus

TR/Barys.100

7.11.148.136

avast!

Win32:Malware-gen

2014.9-140901

AVG

Generic35

2015.0.3364

Baidu Antivirus

Backdoor.Win32.Xtreme

4.0.3.1491

Bitdefender

Gen:Variant.Barys.100

1.0.20.1220

Bkav FE

HW32.CDB

1.3.0.4959

Comodo Security

TrojWare.Win32.Xtrat.FIK

18241

Dr.Web

Trojan.VbCrypt.303

9.0.1.0244

Emsisoft Anti-Malware

Gen:Variant.Barys.100

8.14.09.01.09

ESET NOD32

Win32/Injector.AVFF (variant)

8.9776

Fortinet FortiGate

W32/Injector.ADKN!tr

9/1/2014

F-Secure

Gen:Variant.Barys.100

11.2014-01-09_2

G Data

Gen:Variant.Barys.100

14.9.24

IKARUS anti.virus

Trojan.Win32.Xtrat

t3scan.1.6.1.0

K7 AntiVirus

Trojan

13.177.12026

Kaspersky

Backdoor.Win32.Xtreme

14.0.0.3316

Malwarebytes

Trojan.Agent.FV

v2014.09.01.09

McAfee

RDN/Generic.dx!cxs

5600.7020

Microsoft Security Essentials

Trojan:Win32/Malagent

1.10502

MicroWorld eScan

Gen:Variant.Barys.100

15.0.0.732

NANO AntiVirus

Trojan.Win32.Xtrat.cspcce

0.28.0.59608

Norman

Injector.FWIJ

11.20140901

Panda Antivirus

Trj/CI.A

14.09.01.09

Qihoo 360 Security

Win32/Trojan.00e

1.0.0.1015

Rising Antivirus

PE:Trojan.VBInject!1.64FE

23.00.65.14830

Sophos

Troj/VBInj-HI

4.98

Trend Micro House Call

TROJ_GEN.R0CBC0UAH14

7.2.244

Trend Micro

TROJ_GEN.R0CBC0UAH14

10.465.01

Vba32 AntiVirus

Trojan.Xtrat

3.12.26.0

VIPRE Antivirus

Trojan.Win32.Generic

29018

File size:

813 KB (832,560 bytes)

Product version:

1.3

Original file name:

CC2Bank.exe

File type:

Executable application (Win32 EXE)

Language:

Spanish

File PE Metadata

Compilation timestamp:

12/8/2013 3:50:43 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

12288:VUdi75YhnUAQyjTeV6qlBhX3ekxaqYLVsEqdwNGek2/Av2jgAph:M+A7jTeV6yhHeSatLVfQw4O/I2jgAph

Entry address:

0x1224

Entry point:

68, 54, 15, 40, 00, E8, F0, FF, FF, FF, 00, 00, FF, CC, 31, 00, 00, 3D, AF, D6, 28, E2, 00, 25, 4B, B9, E0, 17, C1, 2D, BE, B3, A6, AA, A6, 5C, 03, FD, 30, 8B, 4A, 8D, D6, 57, 0F, F8, C4, 61, 0F, 72, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00, AA, 00, 60, D3, 93, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 4C, 00, 00, 00, 47, 00, 00, 00, 00, 08, 00, 4D, 44, 49, 46, 6F, 72, 6D, 31, 00, 14, 01, 08, 00, 4D, 44, 49... 
[+]

Entropy:

7.1827

Code size:

336 KB (344,064 bytes)

Remove CC2Bank.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.