» cliente.exe
Overview
Analysis
File Details

cliente.exe

Project1

Lusnich

The executable cliente.exe has been detected as malware by 21 anti-virus scanners.

File name:

cliente.exe

Publisher:

Lusnich

Product:

Project1

Version:

1.00

MD5:

98b5dd244f3b40a39b4e8cf324f1bb33

SHA-1:

04d77c8d0a868c891d84d170f629f22d5abe1a6e

SHA-256:

6bde8f2d9b3ff6df80e3aa822506908e90f97da16eb5725b16718df4796793e7

Scanner detections:

21 / 68

Status:

Malware

Analysis date:

4/18/2024 1:13:19 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.GenericKD.1592183

896

Avira AntiVirus

TR/Dropper.Gen

7.11.140.10

Baidu Antivirus

HackTool.Win32.VBCrypt

4.0.3.14822

Bitdefender

Trojan.GenericKD.1592183

1.0.20.1170

Comodo Security

UnclassifiedMalware

18009

Emsisoft Anti-Malware

Trojan.GenericKD.1592183

8.14.08.22.05

ESET NOD32

Win32/RiskWare.VBCrypt (variant)

8.9610

Fortinet FortiGate

Riskware/RiskWare_VBCrypt

8/22/2014

F-Secure

Trojan.GenericKD.1592183

11.2014-22-08_6

G Data

Trojan.GenericKD.1592183

14.8.24

IKARUS anti.virus

Virus.Win32.VBInject

t3scan.2.2.29

K7 AntiVirus

Riskware

13.176.11595

McAfee

Artemis!98B5DD244F3B

5600.7030

MicroWorld eScan

Trojan.GenericKD.1592183

15.0.0.702

NANO AntiVirus

Trojan.Win32.VBCrypt.cvejdh

0.28.0.58720

nProtect

Trojan.GenericKD.1592183

14.03.28.01

Qihoo 360 Security

Win32/Trojan.RiskWare.598

1.0.0.1015

Rising Antivirus

PE:Malware.XPACK-HIE/Heur!1.9C48

23.00.65.14820

Sophos

Generic PUA AE

4.98

Trend Micro House Call

TROJ_GEN.R00UH09CH14

7.2.234

VIPRE Antivirus

Trojan.Win32.VBInject.gen

27814

File size:

100 KB (102,400 bytes)

Product version:

1.00

Original file name:

Project1.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

File PE Metadata

Compilation timestamp:

3/2/2014 11:20:58 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

1536:kkfIrgOb1nvzaKaiCJGz5+xSgbD+w1Anvh32blq:k7gO9vWKanJy+gY6ph3V

Entry address:

0x1774

Entry point:

68, 74, D4, 40, 00, E8, F0, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, D7, 54, 97, 68, 0C, 2F, 17, 46, 98, B2, A0, 3F, 00, 4B, 2F, DF, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 20, 52, 65, 61, 64, 45, 50, 72, 6F, 6A, 65, 63, 74, 31, 00, 69, 6C, 65, 50, 61, 74, 68, 00, 00, 00, 00, FF, CC, 31, 00, 08, 2B, 34, 8F, 2A, E7, 34, 2F, 49, B4, D6, DE, 55, 60, B8, E2, 31, 7B, 94, 88, 18, FB, F1, 1F, 41, 84, A9, 7E, 09, FB, E0, 2E, 77, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00... 
[+]

Entropy:

6.4136

Developed / compiled with:

Microsoft Visual Basic v5.0

Code size:

88 KB (90,112 bytes)

Remove cliente.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.