» comss_vir .exe
Overview
Analysis
File Details

comss_vir .exe

The executable comss_vir .exe has been detected as malware by 25 anti-virus scanners.

File name:

comss_vir .exe

MD5:

b6af49a4a267b1618ce5fc88d6a983b0

SHA-1:

e89b3720f67b5a0fc101755b288fdb8d0f9f4913

SHA-256:

afe6345709f097d2baa375d260c3816d92d18a4fb70a27bd32be492d21515e02

Scanner detections:

25 / 68

Status:

Malware

Analysis date:

4/24/2024 10:10:47 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Delf.262

655

avast!

Win32:Malware-gen

2014.9-150421

AVG

Clicker

2016.0.3133

Baidu Antivirus

Trojan.Win32.Dropper

4.0.3.15421

Bitdefender

Gen:Variant.Delf.262

1.0.20.555

Dr.Web

Trojan.DownLoader11.11042

9.0.1.0111

Emsisoft Anti-Malware

Gen:Variant.Delf.262

8.15.04.21.08

ESET NOD32

Win32/TrojanClicker.Delf.NTK (variant)

9.11488

Fortinet FortiGate

W32/Sysn.AEGN!tr

4/21/2015

F-Secure

Gen:Variant.Delf.262

11.2015-21-04_3

G Data

Gen:Variant.Delf.262

15.4.25

IKARUS anti.virus

Virus.Win32.Agent.SKP

t3scan.1.8.9.0

K7 AntiVirus

Trojan

13.202.15624

Kaspersky

Trojan-Dropper.Win32.Sysn

14.0.0.2158

McAfee

Artemis!B6AF49A4A267

5600.6789

MicroWorld eScan

Gen:Variant.Delf.262

16.0.0.333

Norman

Troj_Generic.TMBSZ

11.20150421

nProtect

Trojan-Dropper/W32.Sysn.876032

15.04.17.01

Qihoo 360 Security

Win32/Trojan.Dropper.349

1.0.0.1015

Quick Heal

TrojanDropper.Sysn.rb

4.15.14.00

Sophos

Mal/Generic-S

4.98

Trend Micro House Call

TROJ_GEN.R0CBC0UC815

7.2.111

Trend Micro

TROJ_GEN.R0CBC0UC815

10.465.21

VIPRE Antivirus

Trojan.Win32.Generic

39422

Zillya! Antivirus

Dropper.Sysn.Win32.1723

2.0.0.2141

File size:

855.5 KB (876,032 bytes)

File type:

Executable application (Win32 EXE)

File PE Metadata

Compilation timestamp:

6/20/1992 2:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

24576:MRbGQBIEdlGlYIVPqiKimM0bx1hiT2j4w:MQ+/lS3VPqzM0NZkw

Entry address:

0x1000

Entry point:

68, 01, A0, 53, 00, E8, 01, 00, 00, 00, C3, C3, 34, 9E, 20, C9, 68, DC, B5, F7, 88, 54, 08, FC, 72, 25, D3, D5, 87, 93, 20, 96, 12, D1, D6, FF, E3, AA, BE, 48, D6, BD, 51, B5, B7, ED, FD, 2B, EA, F2, 20, 5C, DB, 42, 8B, 97, DF, A8, 63, 37, 21, F7, B3, BA, FA, 12, 54, EC, B1, FF, 70, E4, 1C, E4, 2B, 3D, 93, 33, 9E, DC, 42, C5, 2B, B7, 9A, AB, 90, 43, 8E, 80, F8, 53, 1D, CE, 4F, D7, 38, D5, 5D, 3E, F2, 9B, 37, 21, 72, 9F, B2, 94, 95, 7A, 4C, BC, 63, 38, 0C, D9, 31, AF, 4A, 7C, 3A, 46, CE, 9C, 48, FD, 3B, 43... 
[+]

Packer / compiler:

ASProtect v1.2x (New Strain)

Code size:

840.5 KB (860,672 bytes)

Remove comss_vir .exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.