» keygen.exe
Overview
Analysis
File Details

keygen.exe

The application keygen.exe has been detected as a potentially unwanted program by 23 anti-malware scanners.

File name:

keygen.exe

MD5:

7233fa1eabb9eb31adde17b08b340f6e

SHA-1:

cd8e06b944d14c733046955fca5905508f5ea971

SHA-256:

96c2d26a1da4482f9cbb2b4b6b90e15fcb4e3787556e058be907049981b5e108

Scanner detections:

23 / 68

Status:

Potentially unwanted

Analysis date:

4/16/2024 5:32:07 AM UTC (today)

Scan engine

Detection

Engine version

Agnitum Outpost

Riskware.Keygen

7.1.1

AhnLab V3 Security

Win-Trojan/Refroso.41984.D

2015.01.10

Avira AntiVirus

TR/Refroso.aqdh

7.11.200.114

avast!

Win32:Malware-gen

2014.9-150130

AVG

Generic19

2016.0.3213

ESET NOD32

Win32/Keygen.AS (variant)

9.10990

Fortinet FortiGate

W32/Malware_fam.NB

1/30/2015

F-Prot

W32/MalwareS.XCW

v6.4.7.1.166

G Data

Win32.Trojan.Agent.EAG9QS

15.1.24

IKARUS anti.virus

not-a-virus.Keygen.IDMru

t3scan.1.8.6.0

K7 AntiVirus

Trojan

13.190.14599

Malwarebytes

Trojan.Agent.CK

v2015.01.30.02

McAfee

Generic.dx!7233FA1EABB9

5600.6869

NANO AntiVirus

Trojan.Win32.Kreeper.kikpv

0.30.0.64448

Norman

Suspicious_Gen2.DIYEA

11.20150130

nProtect

Trojan/W32.Refroso.41984.F

15.01.09.01

Sophos

Mal/KeyGen-W

4.98

SUPERAntiSpyware

Trojan.Agent/Gen-Keygen

10084

Trend Micro House Call

GRAY_Gen.0Z1307

7.2.30

Trend Micro

GRAY_Gen.0Z1307

10.465.30

Vba32 AntiVirus

Trojan.Refroso

3.12.26.3

VIPRE Antivirus

Trojan.Keygen.GJ

36512

Zillya! Antivirus

Trojan.Refroso.Win32.14237

2.0.0.2031

File size:

41 KB (41,984 bytes)

File type:

Executable application (Win32 EXE)

File PE Metadata

Compilation timestamp:

6/19/1992 3:22:17 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

768:I2vxFeceIg+pQB746Cuv9/wdnIecdq9WmmJJePf4PZOlBeXGdgifMY:tvxFTg+eBuuv94dnIeDnSJePfWOlBeXK

Entry address:

0x5FE0

Entry point:

B8, E4, 47, 45, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, 39, 3D, 99, 50, 9A, AE, 65, 40, 95, 11, B1, 92, 65, 1E, D2, 33, E8, A9, D6, B8, 79, F2, 9E, 35, 78, 4D, C4, 4E, 1E, 5F, 95, A3, 33, AC, B5, 18, 8B, 50, 7E, 85, A7, 0B, E4, B2, F3, C6, 37, 7E, E5, 63, 64, 2E, FE, D7, E6, 52, 55, 10, 5B, 31, 44, ED, DE, DE, 86, 92, 43, 50, 9A, 84, DB, 46, B2, 56, F0, 1A, B9, F0, CA, DF, AC, 20, 9A, 20, 48, B8, E4, 0F, 11, 55, 81, C8, 80... 
[+]

Entropy:

7.8051

Packer / compiler:

PECompact v2

Code size:

21 KB (21,504 bytes)

Remove keygen.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.