home

facebook-photo-2010-05-22-jpg.scr

IJVSD6uIFgN

Ne3X2tf

The file facebook-photo-2010-05-22-jpg.scr has been detected as malware by 13 anti-virus scanners.
Publisher:
Ne3X2tf

Product:
IJVSD6uIFgN

Version:
10.414.0453

MD5:
c6b667a786744872f38eb394942fc977

SHA-1:
89657d90fda7e156746fffd50e65928c18687823

SHA-256:
a2fce3fca2e6fea6b147c545183da7be47646d2509b0a8e2f39b3d4624e7ccb9

Scanner detections:
13 / 68

Status:
Malware

Analysis date:
4/29/2024 11:11:32 AM UTC  (today)

Scan engine
Detection
Engine version

AhnLab V3 Security
Packed/Win32.Generic
2010.05.25

avast!
Win32:Trojan-gen
2014.9-170311

Bitdefender
Trojan.Generic.KD.13370
1.0.20.350

Comodo Security
UnclassifiedMalware
4941

ESET NOD32
Win32/Injector.BTN
11.5145

F-Secure
Trojan.Generic.KD.13370
11.2017-11-03_7

G Data
Trojan.Generic.KD.13370
17.3.21

IKARUS anti.virus
Trojan.SuspectCRC
t3scan.1.1.84.0

Microsoft Security Essentials
VirTool:Win32/VBInject
1.163.1557.0

nProtect
Trojan.Generic.KD.13370
10.05.25.01

Panda Antivirus
Trj/CI.A
17.03.11.06

Prevx
High Risk Cloaked Malware
3.0

Rising Antivirus
Trojan.Win32.Generic.520616CD
23.00.65.17309

File size:
208 KB (212,992 bytes)

Product version:
10.414.0453

Original file name:
XhowevOcPVu6.exe

Language:
English (United States)

Common path:
C:\users\{user}\downloads\facebook-photo-2010-05-22-jpg.scr

File PE Metadata
Compilation timestamp:
5/22/2010 5:50:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

Entry address:
0x19D0

Entry point:
68, 18, 1A, 40, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 38, 00, 00, 00, 00, 00, 00, 00, F8, 65, B8, E7, DB, 28, 02, 42, A3, 8E, 7E, C6, 8E, 5F, DE, A5, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 22, 58, 4E, 71, 6E, 22, 58, 4E, 71, 6E, 00, 70, 43, 6F, 00, 00, 00, 00, 56, 42, 35, 21, F0, 1F, 2A, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 7E, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 0A, 00, 09, 04, 00, 00, 00, 00, 00, 00, FC, AB, 40, 00, F0, 1E, 40, 00, 00, F0, 30, 00...
 
[+]

Developed / compiled with:
Microsoft Visual Basic v5.0/v6.0

Code size:
148 KB (151,552 bytes)

Remove facebook-photo-2010-05-22-jpg.scr - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.