home

kb13007035.exe

Pluralität7

DotFix Software

The application kb13007035.exe, “Feldversuchsflächen” by DotFix Software has been detected as a potentially unwanted program by 28 anti-malware scanners.
Publisher:
DotFix Software  (signed and verified)

Product:
Pluralität7

Description:
Feldversuchsflächen

Version:
1.03.0008

MD5:
a94fceedbd70f7e1725821495382b8c8

SHA-1:
13132e502db617d9e44feea9ab802c8ecc16ce65

SHA-256:
f0d11e35aec495a76e27ccd3393d8c6863f617ffc762635c2c9934e5c77e7175

Scanner detections:
28 / 68

Status:
Potentially unwanted

Analysis date:
4/26/2024 3:16:03 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Graftor.165807
261

Avira AntiVirus
TR/Injector.1006224
7.11.199.138

avast!
Win32:Malware-gen
2014.9-160518

AVG
Inject2
2017.0.2739

Baidu Antivirus
Trojan.Win32.Agent
4.0.3.16518

Bitdefender
Gen:Variant.Graftor.165807
1.0.20.695

Bkav FE
HW32.Packed
1.3.0.6267

Comodo Security
UnclassifiedMalware
20604

Emsisoft Anti-Malware
Gen:Variant.Graftor.165807
8.16.05.18.06

ESET NOD32
Win32/Injector.BQQD (variant)
10.10966

Fortinet FortiGate
W32/BQGY!tr
5/18/2016

F-Secure
Gen:Variant.Graftor.165807
11.2016-18-05_4

G Data
Gen:Variant.Graftor.165807
16.5.24

IKARUS anti.virus
Trojan.Win32.Injector
t3scan.1.8.5.0

K7 AntiVirus
Unwanted-Program
13.1814541

Kaspersky
Trojan.Win32.Agent
14.0.0.191

Malwarebytes
Trojan.Agent.FCL
v2016.05.18.06

McAfee
RDN/Generic.bfr!hy
5600.6395

Microsoft Security Essentials
TrojanDownloader:Win32/Small.gen!AP
1.11302

MicroWorld eScan
Gen:Variant.Graftor.165807
17.0.0.417

NANO AntiVirus
Trojan.Win32.BQGY.djpsec
0.30.0.64448

Panda Antivirus
Trj/CI.A
16.05.18.06

Quick Heal
Trojan.Agen.r3
5.16.14.00

Rising Antivirus
PE:Malware.XPACK-HIE/Heur!1.9C48
23.00.65.16516

Sophos
Mal/Generic-S
4.98

Trend Micro House Call
TROJ_GEN.R08NC0CLV14
7.2.139

Trend Micro
TROJ_GEN.R08NC0CLV14
10.465.18

VIPRE Antivirus
Trojan.Win32.Generic
36394

File size:
982.6 KB (1,006,224 bytes)

Product version:
1.03.0008

Copyright:
Beitrittsinteressen

Trademarks:
Quoll

Original file name:
Carbon.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\kb13007035.exe

Digital Signature
Signed by:
DotFix Software

Authority:
COMODO CA Limited

Valid from:
7/14/2012 9:00:00 PM

Valid to:
7/15/2013 8:59:59 PM

Subject:
CN=DotFix Software, O=DotFix Software, STREET=Nekrasova str. 7, L=Tula, S=Tulskaya obl., PostalCode=300045, C=RU

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00F3976D4C7DBBEE87A0D211C51894BA32

File PE Metadata
Compilation timestamp:
11/28/2014 9:03:38 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
24576:BxMeC2wnANErKTZOGvo/mBoXRe94IIpjsYAa+jh:BOpnANkKT1vo/xRAVjh

Entry address:
0x127C

Entry point:
68, 20, 5A, 4E, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 48, 00, 00, 00, 00, 00, 00, 00, B0, 9E, B9, 3E, 30, A3, 92, 47, AA, B9, 56, 7D, 04, F4, 38, FE, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 4E, 61, 74, 75, 72, 72, E4, 75, 6D, 6C, 69, 63, 68, 6B, 65, 69, 74, 38, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, FF, CC, 31, 00, 0F, 0F, 0F, C4, FA, CC, 7B, F9, 4A, A6, 02, 6C, BD, AD, 02, 88, 68, B1, C8, 6C, 18, B2, 39, E8, 4D, 80, 52, 7D, CB, 01, B7, 71, 9B, 3A, 4F, AD...
 
[+]

Developed / compiled with:
Microsoft Visual Basic v5.0/v6.0

Code size:
964 KB (987,136 bytes)

Remove kb13007035.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.