» jrt.exe
Overview
Analysis
File Details
Programs (1)

jrt.exe

7ZSfxNew

Oleg N. Scherbakov

The executable jrt.exe has been detected as malware by 9 anti-virus scanners. This is a setup and installation application, however the file is not signed with an authenticode signature from a trusted source. This file is typically installed with the program 7ZSfxNew by Oleg N. Scherbakov which is a potentially unwanted software program.

File name:

jrt.exe

Publisher:

Oleg N. Scherbakov

Product:

7ZSfxNew

Description:

7z Setup SFX

Version:

1, 2, 0, 715

MD5:

a8272ec32d4f5931cd89a1bc0e927de3

SHA-1:

34ba24582929ff35551c7603ffff607be245ead5

SHA-256:

ec8682eab71653a2ef2954220a35a801a5d8473c74d593184b67ed27fba8283b

Scanner detections:

9 / 68

Status:

Malware

Analysis date:

4/24/2024 10:01:38 PM UTC (today)

Scan engine

Detection

Engine version

avast!

Win32:Rootkit-gen [Rtk]

2014.9-150202

AVG

Generic10_c

2016.0.3210

Baidu Antivirus

Trojan.Win32.Pasta

4.0.3.1522

K7 AntiVirus

Riskware

13.1712333

Kaspersky

Trojan.Win32.Pasta

14.0.0.2545

McAfee

Artemis!A8272EC32D4F

5600.6866

Qihoo 360 Security

virus.bat.reg.gen2

1.0.0.1015

Quick Heal

Trojan.ZAgent.r3

2.15.14.00

VIPRE Antivirus

Trojan.Win32.Generic

30048

File size:

546.4 KB (559,511 bytes)

Product version:

1, 2, 0, 715

Original file name:

7ZSfxNew.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

File PE Metadata

Compilation timestamp:

7/21/2007 9:33:05 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

12288:kJEgv/PVWWrBOLpzDupTy5fMS2agNlqdo1Pn+TCCiIhs664aoDayxk2:gNJGzDmTwfMR3GyvaZi4a6/

Entry address:

0x20100

Entry point:

60, BE, 00, 40, 41, 00, 8D, BE, 00, D0, FE, FF, 57, EB, 0B, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, EF, 75, 09, 8B, 1E, 83, EE, FC, 11, DB, 73, E4, 31, C9, 83, E8, 03, 72, 0D, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 74, 89, C5, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 75, 20, 41, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB... 
[+]

Entropy:

7.9931

Packer / compiler:

UPX v0.89.6 - v1.02 / v1.05 -v1.24

Code size:

52 KB (53,248 bytes)

The file jrt.exe has been discovered within the following program.

7ZSfxNew by Oleg N. Scherbakov

79% remove it

Remove jrt.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.