home

keygen.exe

The executable keygen.exe has been detected as malware by 22 anti-virus scanners.
MD5:
c47398197250d2972ec1f46fa181ddd5

SHA-1:
7418ce0041f23036edc119bf91a82de65bdd8d54

SHA-256:
adc066a12eb8b86908ba747bd15f78ef941ac71de501d7c0316a61a812ff76c4

Scanner detections:
22 / 68

Status:
Malware

Analysis date:
4/26/2024 7:53:34 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Strictor.26170
826

Agnitum Outpost
Backdoor.Hupigon
7.1.1

AhnLab V3 Security
Unwanted/Win32.Keygen
2014.10.10

Avira AntiVirus
SPR/Keygen.AR.13
7.11.177.116

Bitdefender
Gen:Variant.Strictor.26170
1.0.20.1525

Bkav FE
HW32.Paked
1.3.0.4959

Dr.Web
BackDoor.Pigeon.63298
9.0.1.0305

Emsisoft Anti-Malware
Gen:Variant.Strictor.26170
8.14.11.01.01

ESET NOD32
Win32/Keygen.AR (variant)
8.10538

F-Secure
Gen:Variant.Strictor.26170
11.2014-01-11_7

G Data
Gen:Variant.Strictor.26170
14.11.24

IKARUS anti.virus
Backdoor.Hupigon
t3scan.1.7.8.0

McAfee
Artemis!C47398197250
5600.6960

MicroWorld eScan
Gen:Variant.Strictor.26170
15.0.0.915

NANO AntiVirus
Trojan.Win32.Pigeon.pfpos
0.28.2.62483

Norman
Suspicious_Gen4.BHRS
11.20141101

Rising Antivirus
PE:Trojan.Win32.Generic.152C3B91!355220369
23.00.65.141030

Sophos
Mal/KeyGen-V
4.98

Trend Micro House Call
TROJ_SPNR.08FI14
7.2.305

Trend Micro
TROJ_SPNR.08FI14
10.465.01

VIPRE Antivirus
Trojan.Win32.Generic.pak!cobra
33778

Zillya! Antivirus
Backdoor.Hupigon.Win32.139415
2.0.0.1949

File size:
2.4 MB (2,474,496 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\securstar.drivecrypt.v5.4.0.incl.keyfilemaker.and.patch-di - [ www.torrentday.com ]\di-scd5.part1\keygen.exe

File PE Metadata
Compilation timestamp:
3/21/2010 2:20:42 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:yVvaeW4T7/ObzwLyO/aaizb2Jx4+wtvCu3RWuljBDEXY:iPWDf0yJP2n5Ov7zlj5Eo

Entry address:
0x262E4

Entry point:
55, 8B, EC, 83, C4, F0, B8, 28, 53, 42, 00, E8, BC, 02, FE, FF, E8, E3, DE, FF, FF, E8, B2, ED, FF, FF, E8, 45, EE, FF, FF, E8, 70, E6, FD, FF, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.8046

Developed / compiled with:
Microsoft Visual C++

Code size:
146.5 KB (150,016 bytes)

Remove keygen.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.