» f45d.tmp
Overview
Analysis
File Details

f45d.tmp

The file f45d.tmp has been detected as malware by 26 anti-virus scanners.

File name:

f45d.tmp

MD5:

ed63ed731309b1cbb1b1b01262b98cee

SHA-1:

9f0b2f9dfdc475f5f089a4a266733221417a3322

SHA-256:

c5c09e110bc9003dede4664f0bb1233fdb66bb68852d5c6b3be16d27ac21110f

Scanner detections:

26 / 68

Status:

Malware

Analysis date:

5/4/2024 9:46:10 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Kazy.757131

-40

Agnitum Outpost

Trojan.Filecoder

7.1.1

Avira AntiVirus

TR/FileCoder.278528.3

8.3.2.2

avast!

Win32:Agent-BBDQ [Trj]

2014.9-170315

AVG

FileCryptor

2018.0.2438

Baidu Antivirus

Trojan.Win32.Filecoder

4.0.3.17315

Bitdefender

Gen:Variant.Kazy.757131

1.0.20.370

Bkav FE

W32.RansomCrowtiAD.Trojan

1.3.0.7383

Dr.Web

Trojan.Encoder.1396

9.0.1.074

Emsisoft Anti-Malware

Gen:Variant.Kazy.757131

8.17.03.15.04

ESET NOD32

Win32/Filecoder.CO

11.12479

Fortinet FortiGate

W32/Cryptodef.AAIL!tr

3/15/2017

F-Secure

Gen:Variant.Kazy.757131

11.2017-15-03_4

G Data

Gen:Variant.Kazy.757131

17.3.25

K7 AntiVirus

Trojan

13.212.17680

Kaspersky

Trojan-Ransom.Win32.Cryptodef

14.0.0.-1313

McAfee

Artemis!ED63ED731309

5600.6094

Microsoft Security Essentials

Ransom:Win32/Crowti.A

1.1.12205.0

MicroWorld eScan

Gen:Variant.Kazy.757131

18.0.0.222

NANO AntiVirus

Trojan.Win32.Cryptodef.dydvme

0.30.26.3947

Panda Antivirus

Trj/Genetic.gen

17.03.15.04

Rising Antivirus

PE:Malware.Generic/QRS!1.9E2D [F]

23.00.65.17313

Sophos

Mal/Tinba-T

4.98

Trend Micro

TROJ_GEN.R08NC0RJQ15

10.465.15

ViRobot

Trojan.Win32.CryptoWall.278528[h]

2014.3.20.0

Zillya! Antivirus

Trojan.Rulbar.Win32.112

2.0.0.2478

File size:

272 KB (278,528 bytes)

Common path:

C:\users\{user}\appdata\local\temp\f45d.tmp

File PE Metadata

Compilation timestamp:

10/23/2015 8:45:51 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

Entry address:

0x1330

Entry point:

55, 8B, EC, 81, EC, F4, 01, 00, 00, 53, 56, 57, C7, 45, FC, 04, 00, 00, 00, 68, 4C, C0, 43, 00, 6A, 00, FF, 15, B4, 57, 42, 00, 8B, 45, F8, C1, E0, EC, 89, 45, F4, 8B, 4D, F8, 03, 4D, EC, 89, 4D, F0, 8B, 55, F0, 8B, 4D, E4, D3, E2, 89, 55, EC, 8B, 45, E4, 8B, 4D, F0, D3, E8, 89, 45, E8, FF, 15, C0, 57, 42, 00, 81, 7D, FC, C0, 00, 00, 00, 76, 02, EB, 12, 8B, 4D, FC, 83, C1, 05, 89, 4D, FC, BA, 16, 00, 00, 00, 85, D2, 75, DD, 8B, C9, 8B, 4D, 08, 8B, C9, 89, 0D, 38, 51, 44, 00, 89, 2D, 1C, 51, 44, 00, C7, 05... 
[+]

Entropy:

5.4588

Developed / compiled with:

Microsoft Visual C++

Code size:

141.5 KB (144,896 bytes)

Remove f45d.tmp - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.