» fh770.exe
Overview
Analysis
File Details

fh770.exe

The application fh770.exe has been detected as a potentially unwanted program by 21 anti-malware scanners.

File name:

fh770.exe

MD5:

de0f0edecc2fc1cff0dc4600916a72e2

SHA-1:

efac572d26430e025644b59592ac5bc7c77b2794

SHA-256:

f15f992b34f5d997aa0cc46ffb23e8052bae7ac7c69bdf0aa35cb445c9832753

Scanner detections:

21 / 68

Status:

Potentially unwanted

Analysis date:

4/23/2024 12:21:24 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.GenericKD.1730041

775

Agnitum Outpost

Trojan.Clicker

7.1.1

avast!

Win32:BHO-ANC [Trj]

141214-1

AVG

Found Win32/DH{gRKBExMAYjUPNgo}

2015.0.3253

Baidu Antivirus

Trojan.Win32.Clicker

4.0.3.141222

Dr.Web

Trojan.MulDrop5.34378

9.0.1.05190

ESET NOD32

Detection.Undefined

7.0.302.0

Fortinet FortiGate

W32/Staser.ABLX!tr

12/22/2014

F-Secure

Trojan.GenericKD.1730041

11.2014-22-12_2

IKARUS anti.virus

PUA.Vonteera

t3scan.1.8.5.0

Kaspersky

Trojan.Win32.Clicker

15.0.0.543

McAfee

Artemis!7422E0368485

5600.6909

MicroWorld eScan

Trojan.GenericKD.1730041

15.0.0.1068

NANO AntiVirus

Trojan.Win32.Click3.dcjdeq

0.28.2.60990

Panda Antivirus

Trj/Chgt.C

14.12.22.03

Qihoo 360 Security

HEUR/Malware.QVM06.Gen

1.0.0.1015

Reason Heuristics

Threat.Win.Reputation.IMP

14.12.22.3

Sophos

Mal/Generic-L

4.98

Vba32 AntiVirus

Trojan.Staser

3.12.26.3

VIPRE Antivirus

Threat.4150696

29708

Zillya! Antivirus

Trojan.Clicker.Win32.404

2.0.0.2012

File size:

135.6 KB (138,890 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\appdata\local\temp\fh770.exe

File PE Metadata

Compilation timestamp:

7/7/2014 9:54:41 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

1536:0wsuBykUcdJzICeMi2AGGlzgKDBZw4X75BGIENkiAunwT/unMGQpEXthsoab/9qO:0CyMdJzj2TBNBTF/E7BbQKXthsoaCHn0

Entry address:

0x8A1A

Entry point:

E8, 3B, 5F, 00, 00, E9, 89, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 8B, FF, 55, 8B, EC, 83, EC, 18, 53, 8B, 5D, 0C, 56, 8B, 73, 08, 33, 35, D4, D0, 41, 00, 57, 8B, 06, C6, 45, FF, 00, C7, 45, F4, 01, 00, 00, 00, 8D, 7B, 10, 83, F8, FE, 74, 0D, 8B, 4E, 04, 03, CF, 33, 0C, 38, E8, 0A, E5, FF, FF, 8B, 4E, 0C, 8B, 46, 08, 03, CF, 33, 0C, 38, E8, FA, E4, FF, FF, 8B, 45, 08, F6, 40, 04, 66, 0F, 85, 19, 01, 00, 00, 8B, 4D, 10, 8D, 55, E8, 89, 53, FC, 8B, 5B, 0C, 89, 45, E8, 89, 4D, EC, 83, FB... 
[+]

Entropy:

6.7648

Code size:

86 KB (88,064 bytes)

Remove fh770.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.