» Hack EXP Point Garena PointBlank.exe
Overview
Analysis
File Details

Hack EXP Point Garena PointBlank.exe

Hack EXP Point Garena PointBlank

The executable Hack EXP Point Garena PointBlank.exe has been detected as malware by 25 anti-virus scanners.

File name:

Publisher:

Microsoft* (Invalid match)

Product:

Hack EXP Point Garena PointBlank

Version:

1.0.0.0

MD5:

cbb52d06136170bed9fa50ab0b2cb479

SHA-1:

79c74771e1dd6c5d5696120fa69dde5a21427e0b

SHA-256:

01c0e8585d0efc902eba3b2a144e391bdedd507a3df76bab5954abdcd3e1e248

Scanner detections:

25 / 68

Status:

Malware

Analysis date:

4/19/2024 4:52:37 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Kazy.482504

431

Avira AntiVirus

TR/Spy.A.8268

3.6.1.96

avast!

Win32:Malware-gen

2014.9-151201

AVG

PSW.ILSpy

2016.0.2909

Baidu Antivirus

Trojan.MSIL.OnLineGames

4.0.3.15121

Bitdefender

Gen:Variant.Kazy.482504

1.0.20.1675

Comodo Security

UnclassifiedMalware

21827

Emsisoft Anti-Malware

Gen:Variant.Kazy.482504

8.15.12.01.06

ESET NOD32

MSIL/PSW.OnLineGames.LN (variant)

9.11499

Fortinet FortiGate

MSIL/Agent.OFU!tr

12/1/2015

F-Prot

W32/S-099e6a31

v6.4.7.1.166

F-Secure

Gen:Variant.Kazy.482504

11.2015-01-12_3

G Data

Gen:Variant.Kazy.482504

15.12.25

IKARUS anti.virus

Trojan.MSIL.PSW

t3scan.1.8.9.0

K7 AntiVirus

Password-Stealer

13.202.15641

Kaspersky

UDS:DangerousObject.Multi.Generic

14.0.0.1039

McAfee

Artemis!CBB52D061361

5600.6565

MicroWorld eScan

Gen:Variant.Kazy.482504

16.0.0.1005

NANO AntiVirus

Trojan.Win32.OnLineGames.dijqfv

0.30.16.1110

Panda Antivirus

Trj/Sharik.B

15.12.01.06

Qihoo 360 Security

Win32/Trojan.Spy.938

1.0.0.1015

Sophos

Mal/Generic-S

4.98

Trend Micro House Call

TROJ_GEN.R03EC0PJU14

7.2.335

Trend Micro

TROJ_GEN.R03EC0PJU14

10.465.01

VIPRE Antivirus

Trojan.Win32.Generic

39500

File size:

47.5 KB (48,640 bytes)

Product version:

1.0.0.0

Original file name:

Hack EXP Point Garena PointBlank.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\hack exp point garena pointblank.exe

File PE Metadata

Compilation timestamp:

7/19/2014 12:01:39 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

768:DBspZKcoxaiO/lNofEzy/tgDD99s99H99j99259j99m44TsZt4rVwgEQpB+QvaXi:DBw2xah/lOMEtgDD99s99H99j99259j4

Entry address:

0xC9CE

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, D3, 17, CA, 53, 00, 00, 00, 00, 02, 00, 00, 00, B4, 00, 00, 00, 1C, E0, 00, 00, 1C, AE, 00, 00, 52, 53, 44, 53, 1F, 9E, 90, 54, CD, E9, 40, 4A, A9, F2, 6A, 96, EE, 5F, 10, 5D, 01, 00, 00, 00, 43, 3A, 5C, 55, 73, 65, 72, 73, 5C, 41, 64, 6D, 69, 6E, 69, 73, 74, 72, 61, 74, 6F, 72, 2E, 30, 55, 4B... 
[+]

Entropy:

6.6116

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

42.5 KB (43,520 bytes)

Remove Hack EXP Point Garena PointBlank.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.