» error fixer.exe
Overview
Analysis
File Details
Network (1)

error fixer.exe

Project CRK

The executable error fixer.exe has been detected as malware by 18 anti-virus scanners. While running, it connects to the Internet address web2.planet.zone.eu on port 80 using the HTTP protocol.

File name:

error fixer.exe

Publisher:

Project CRK

Product:

Project CRK

Version:

1.3.0.0

MD5:

848d24d1890e3934e08a7c9b2e95812a

SHA-1:

e4653a4d15ce91ca712b1d3e51423473a761c623

SHA-256:

801df90d99be3ab7fb7b087fd84debd9e611e6a1355d65c0d6e15e3939e5886b

Scanner detections:

18 / 68

Status:

Malware

Analysis date:

4/18/2024 4:55:50 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.Generic.10009053

-36

AVG

Small

2018.0.2442

Baidu Antivirus

Trojan.MSIL.Qhost

4.0.3.17311

Bitdefender

Trojan.Generic.10009053

1.0.20.350

Comodo Security

UnclassifiedMalware

21295

Dr.Web

Trojan.DownLoader9.16787

9.0.1.070

Emsisoft Anti-Malware

Trojan.Generic.10009053

8.17.03.11.11

ESET NOD32

MSIL/Qhost.CO (variant)

11.11270

F-Secure

Trojan.Generic.10009053

11.2017-11-03_7

G Data

Trojan.Generic.10009053

17.3.25

IKARUS anti.virus

Trojan.Small

t3scan.1.8.6.0

McAfee

Artemis!848D24D1890E

5600.6098

MicroWorld eScan

Trojan.Generic.10009053

18.0.0.210

NANO AntiVirus

Trojan.Win32.Qhost.czrarn

0.30.0.296

Norman

Suspicious_Gen7.DNN

11.20170311

nProtect

Trojan.Generic.10009053

15.03.04.01

Qihoo 360 Security

Win32/Trojan.3c8

1.0.0.1015

VIPRE Antivirus

Trojan.Win32.Generic

38126

File size:

1.2 MB (1,303,040 bytes)

Product version:

1.3.0.0

Original file name:

Project CRK.exe

File type:

Executable application (Win32 EXE)

File PE Metadata

Compilation timestamp:

5/12/2013 2:59:11 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

.NET CLR dependent:

Yes

Entry address:

0x12E26E

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

1.2 MB (1,229,824 bytes)

The executing file has been seen to make the following network communication in live environments.

TCP (HTTP):

Connects to web2.planet.zone.eu (217.146.66.82:80)

Remove error fixer.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.