» copy of original complaint at tribunal.docx.exe
Overview
Analysis
File Details

copy of original complaint at tribunal.docx.exe

The executable copy of original complaint at tribunal.docx.exe has been detected as malware by 38 anti-virus scanners.

File name:

MD5:

6d9bde90b81c064aca5ed994bc8a981a

SHA-1:

b329ade888f8a0bedb18cbe455cb0f517423199a

SHA-256:

c765b5ba935a3c872388185940ca89570a1710e89148ce25caf1a54148079800

Scanner detections:

38 / 68

Status:

Malware

Analysis date:

4/25/2024 6:33:40 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.GenericKD.1850476

856

Agnitum Outpost

Trojan.Inject

7.1.1

AhnLab V3 Security

Trojan/Win32.1Table

2014.09.28

Avira AntiVirus

TR/Crypt.Xpack.90342

7.11.174.250

avast!

Win32:Zbot-UMS [Trj]

2014.9-141002

AVG

Agent4

2015.0.3334

Baidu Antivirus

Trojan.Win32.Inject

4.0.3.14102

Bitdefender

Trojan.GenericKD.1850476

1.0.20.1375

Comodo Security

TrojWare.Win32.Amtar.ygen

19634

Dr.Web

Trojan.Stoberox.3

9.0.1.0275

Emsisoft Anti-Malware

Trojan-Downloader.Win32.Agent

8.14.10.02.05

ESET NOD32

Win32/Agent.QNB

8.10475

Fortinet FortiGate

W32/REVOL.JS!tr

10/2/2014

F-Prot

W32/Trojan2.OLDP

v6.4.7.1.166

F-Secure

Trojan.GenericKD.1850476

11.2014-02-10_5

G Data

Trojan.GenericKD.1850476

14.10.24

IKARUS anti.virus

Trojan-Spy.Agent

t3scan.1.7.8.0

K7 AntiVirus

Trojan

13.183.13504

Kaspersky

Trojan.Win32.Inject

14.0.0.3164

Malwarebytes

Spyware.Passwords.ED

v2014.10.02.05

McAfee

PWSZbot-FADW

5600.6990

Microsoft Security Essentials

TrojanDownloader:Win32/Skidlo.A

1.11005

MicroWorld eScan

Trojan.GenericKD.1850476

15.0.0.825

NANO AntiVirus

Trojan.Win32.Inject.deqqpp

0.28.2.62286

Norman

Injector.HHOF

11.20141002

nProtect

Trojan.GenericKD.1850476

14.09.26.01

Panda Antivirus

Trj/Genetic.gen

14.10.02.05

Qihoo 360 Security

Win32/Trojan.534

1.0.0.1015

Quick Heal

Trojan.Inject.r6

10.14.14.00

Rising Antivirus

PE:Trojan.Win32.Generic.1743332C!390279980

23.00.65.14930

Sophos

Troj/Bredo-AOA

4.98

SUPERAntiSpyware

Trojan.Agent/Gen-Muldrop

10325

Total Defense

Win32/Tnega.SMUMXaC

37.0.11201

Trend Micro House Call

TROJ_REVOL.JS

7.2.275

Trend Micro

TROJ_REVOL.JS

10.465.02

Vba32 AntiVirus

Trojan.Inject

3.12.26.3

VIPRE Antivirus

Win32.Malware!Drop

33482

Zillya! Antivirus

Trojan.Inject.Win32.95093

2.0.0.1935

File size:

100.1 KB (102,466 bytes)

File type:

Executable application (Win32 EXE)

File PE Metadata

Compilation timestamp:

8/5/2014 12:56:37 AM

OS version:

8.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

14.9

CTPH (ssdeep):

1536:ATVokRrp8SIUAAQRPqBupW70uLHxg+JZHPH9GGTL6OgTESwt9:ATVok38SIU5Epa0kRg+JJH9NLOs9

Entry address:

0x336A

Entry point:

55, 8B, EC, 6A, FE, 68, F4, 22, 40, 00, 68, B0, 33, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 66, BA, 15, 00, 03, C2, 33, D2, 6B, C0, 02, 41, 09, C8, BA, FD, 12, 40, 00, 52, 58, 42, 42, 0F, AF, C2, E8, D2, 18, 00, 00, 49, 49, C6, 45, 0E, 34, C6, 45, C3, B6, FF, 25, 08, 88, 40, 00, 33, C9, C6, 45, 82, 4B, C6, 45, 15, A6, C6, 45, C9, 2B, C6, 45, 70, 45, C6, 45, 73, 50, C6, 45, F9, 93, C6, 45, C4, AE, C6, 45, CE, 8E, C6, 45, 08, 61, C6, 45, EC, 91, C6, 45, EA, 64, C6, 45, 11, 8D, C6, 45... 
[+]

Entropy:

6.6368

Developed / compiled with:

Microsoft Visual C++

Code size:

28 KB (28,672 bytes)

Remove copy of original complaint at tribunal.docx.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.