facebookhacker.exe

ForYou

The executable facebookhacker.exe has been detected as malware by 25 anti-virus scanners.
Remove facebookhacker.exe - Powered by Reason Core Security
Product:
ForYou

Version:
1.0.0.0

MD5:
2bf686448941259a2e5e81b93bf8047d

SHA-1:
2f71e09582039f99916b3d4e2223a0af61fef119

SHA-256:
4be35f27c1cb89952bebd7ad65cda323512115f1aa10fff8b088261df0497b54

Scanner detections:
25 / 68

Status:
Malware

Analysis date:
12/2/2016 5:22:03 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.GenericKD.1709645
969

AhnLab V3 Security
Trojan/Win32.Inject
2014.06.09

Avira AntiVirus
TR/Dropper.Gen
7.11.153.232

Antiy Labs AVL
Trojan[Backdoor]/Win32.DarkKomet
1.0.0.1

avast!
Win32:Malware-gen
2014.9-140610

AVG
Dropper.Agent
2015.0.3447

Baidu Antivirus
Trojan.MSIL.Dropper
4.0.3.14610

Bitdefender
Trojan.GenericKD.1709645
1.0.20.805

Comodo Security
UnclassifiedMalware
18479

Dr.Web
Trojan.DownLoader10.22837
9.0.1.0161

Emsisoft Anti-Malware
Trojan-Dropper.MSIL.Agent
8.14.06.10.02

ESET NOD32
MSIL/TrojanDropper.Agent.ACH (variant)
8.9912

Fortinet FortiGate
MSIL/Agent.ACH!tr
6/10/2014

F-Secure
Trojan.GenericKD.1709645
11.2014-10-06_3

G Data
Trojan.GenericKD.1709645
14.6.24

IKARUS anti.virus
Trojan-Dropper.Agent
t3scan.1.6.1.0

Malwarebytes
Trojan.MSIL
v2014.06.10.02

McAfee
Artemis!2BF686448941
5600.7103

McAfee Web Gateway
Artemis!2BF686448941
7.7103

Microsoft Security Essentials
Backdoor:MSIL/Bladabindi
1.10600

MicroWorld eScan
Trojan.GenericKD.1709645
15.0.0.483

Norman
Delfiles.A!genr
11.20140610

Sophos
Mal/Generic-S
4.98

Trend Micro House Call
TROJ_GEN.F47V0607
7.2.161

VIPRE Antivirus
Trojan.Win32.Generic
30086

Remove facebookhacker.exe - Powered by Reason Core Security
File size:
431.1 KB (441,460 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2013

Original file name:
ForYou.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

File PE Metadata
Compilation timestamp:
9/6/2013 11:00:49 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:RwJY5+iYv2Djd3fc3gw3r1sx6EG6fxW4EcI8/VOKRn5hPYFn5N5hJs6zUOMJvu:MRrGx30glZG671HOKRXPYlJHiu

Entry address:
0x21360

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.2001

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
125 KB (128,000 bytes)

Remove facebookhacker.exe - Powered by Reason Core Security