» im74616.jpg-www.myspace.com.exe
Overview
Analysis
File Details

im74616.jpg-www.myspace.com.exe

The executable im74616.jpg-www.myspace.com.exe has been detected as malware by 40 anti-virus scanners.

File name:

MD5:

b18f1b7f0e96ac34f00fee7740915e49

SHA-1:

3681d671a70563dcadfa9c6190e50f9ffad2f8c7

SHA-256:

8eea63d85afe75bcea8eca07d4117977f16f1c54c1ce7d7172c3262405b87112

Scanner detections:

40 / 68

Status:

Malware

Analysis date:

4/25/2024 4:20:06 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.Generic.KD.8805

799

Agnitum Outpost

Backdoor.IRCBot.AKVD

7.1.1

AhnLab V3 Security

Win-Trojan/Bypassagent.96396

2014.07.16

Avira AntiVirus

Worm/IrcBot.96396

7.11.160.234

avast!

Win32:IRCBot-DRR [Trj]

2014.9-141128

AVG

Dropper.Generic2

2015.0.3277

Baidu Antivirus

Backdoor.Win32.IRCBot

4.0.3.141128

Bitdefender

Trojan.Generic.KD.8805

1.0.20.1660

Bkav FE

W32.Ymfocard.fam.Botnet

1.3.0.4959

Comodo Security

P2PWorm.Win32.Palevo.GZA

18864

Dr.Web

BackDoor.IRC.Sdbot.12237

9.0.1.0332

Emsisoft Anti-Malware

Trojan.Generic.KD.8805

8.14.11.28.03

ESET NOD32

IRC/SdBot

8.10101

Fortinet FortiGate

W32/Yahos.AY!worm.im

11/28/2014

F-Prot

W32/Ircbot.AEP

v6.4.7.1.166

F-Secure

Trojan.Generic.KD.8805

11.2014-28-11_6

G Data

Trojan.Generic.KD.8805

14.11.24

IKARUS anti.virus

Backdoor.Win32.IRCBot

t3scan.1.6.1.0

K7 AntiVirus

Trojan

13.180.12733

Kaspersky

Backdoor.Win32.IRCBot

14.0.0.2879

Malwarebytes

Worm.Bot.Gen

v2014.11.28.03

McAfee

W32/IRCbot.gen.a

5600.6933

Microsoft Security Essentials

Trojan:Win32/Neop!gmb

1.10802

MicroWorld eScan

Trojan.Generic.KD.8805

15.0.0.996

NANO AntiVirus

Trojan.Win32.IRCBot.cxaif

0.28.2.60881

Norman

Obfuscated.BZ!genr

11.20141128

nProtect

Trojan.Generic.KD.8805

14.07.15.01

Panda Antivirus

W32/P2Pworm.NH

14.11.28.03

Qihoo 360 Security

Win32/Trojan.BO.629

1.0.0.1015

Rising Antivirus

PE:Trojan.Win32.Generic.11E71B23!300358435

23.00.65.141126

Sophos

Mal/Rimecud-D

4.98

SUPERAntiSpyware

Trojan.Agent/Gen-Virut

10211

Total Defense

Win32/Tnega.BXB

37.0.11060

Trend Micro House Call

BKDR_IRCBOT.BXR

7.2.332

Trend Micro

BKDR_IRCBOT.BXR

10.465.28

Vba32 AntiVirus

SScope.Trojan-Downloader.EIC.4121

3.12.26.3

VIPRE Antivirus

Trojan.Win32.Generic.pak!cobra

31306

ViRobot

Backdoor.Win32.IRCBot.96396

2011.4.7.4223

XVirus List

Win32.Detected

2.11.28

Zillya! Antivirus

Backdoor.IRCBot.Win32.17615

2.0.0.1859

File size:

94.1 KB (96,396 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\im74616.jpg-www.myspace.com.exe

File PE Metadata

Compilation timestamp:

4/24/2010 5:37:48 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.56

CTPH (ssdeep):

1536:85So5M0/KuQWix7BtRTu/3h6dWuKAiQJ1Wh2ndpZ1JoOi9vzbbFuKXsUJqCt+9P6:WhCuRiBBy/3SWuKAiZX9b/MesUr+9AeU

Entry address:

0x1240

Entry point:

55, 89, E5, 83, EC, 08, C7, 04, 24, 02, 00, 00, 00, FF, 15, 0C, C1, 40, 00, E8, A8, FE, FF, FF, 90, 8D, B4, 26, 00, 00, 00, 00, 55, 8B, 0D, 24, C1, 40, 00, 89, E5, 5D, FF, E1, 8D, 74, 26, 00, 55, 8B, 0D, 18, C1, 40, 00, 89, E5, 5D, FF, E1, 90, 90, 90, 90, 55, 89, E5, 5D, E9, 97, 48, 00, 00, 90, 90, 90, 90, 90, 90, 90, 55, 89, E5, 83, EC, 04, 8B, 45, 08, 89, 45, FC, 8D, 45, 10, FF, 08, 83, 7D, 10, FF, 74, 15, 8B, 55, 08, 8B, 45, 0C, 0F, B6, 00, 88, 02, FF, 45, 08, 8D, 45, 0C, FF, 00, EB, E0, 8B, 45, FC, C9... 
[+]

Packer / compiler:

MingWin32 GCC, 0x3.x

Code size:

20 KB (20,480 bytes)

Remove im74616.jpg-www.myspace.com.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.