» fud.exe
Overview
Analysis
File Details
Behaviors (1)
Downloads (1)

fud.exe

נראגישדודאלשיראגדשגוודל

The executable fud.exe has been detected as malware by 10 anti-virus scanners. The file has been seen being downloaded from www.weebly.com.

File name:

fud.exe

Product:

נראגישדודאלשיראגדשגוודל

Version:

1.0.0.0

MD5:

b85af299e174c3abf58ab30f82e82e91

SHA-1:

4a838f1820c42170206029c8b8ec4cbca780b748

SHA-256:

97cac609ba9b5fccb9761c2d4a4a4e0a21f07026d649a0c2750c0a0227e0a44f

Scanner detections:

10 / 68

Status:

Malware

Analysis date:

4/26/2024 5:41:59 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Zusy.106850

359

Arcabit

Trojan.Zusy.D1A162

1.0.0.425

Bitdefender

Gen:Variant.Zusy.106850

1.0.20.205

Dr.Web

Trojan.Inject.5077

9.0.1.041

Emsisoft Anti-Malware

Gen:Variant.Zusy.106850

8.16.02.10.09

F-Prot

W32/S-7ee05a2e

v6.4.7.1.166

F-Secure

Gen:Variant.Zusy.106850

11.2016-10-02_4

G Data

Gen:Variant.Zusy.106850

16.2.25

IKARUS anti.virus

Trojan.MSIL8

t3scan.1.9.5.0

MicroWorld eScan

Gen:Variant.Zusy.106850

17.0.0.123

File size:

9 KB (9,216 bytes)

Product version:

1.0.0.0

נראגישדודאלשיראגדשגוודל

Trademarks:

נראגישדודאלשיראגדשגוודל

Original file name:

H.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\appdata\roaming\microsoft\windows\start menu\programs\startup\fud.exe

File PE Metadata

Compilation timestamp:

10/4/2014 10:34:16 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

192:dfP0z41R9zlpf6IYmI2f9n0z0pWq11KA2h4:dUyblpBIM9nayWk1KA2h

Entry address:

0x397E

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

5.0564

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

6.5 KB (6,656 bytes)

User Start Menu Item

Name:

FUD.exe

The file fud.exe has been seen being distributed by the following URL.

http://www.weebly.com/uploads/3/8/1/3/.../n7.exe

Remove fud.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.