» kostenplan-8305.3382.7167.17291261851075717649177844391112079160116134452542492879221486990264804083
Overview
Analysis
File Details

kostenplan-8305.3382.7167.17291261851075717649177844391112079160116134452542492879221486990264804083

Asthma Bigot

Digidesign, A Division of Avid Technology, Inc.

The file kostenplan-8305.3382.7167.17291261851075717649177844391112079160116134452542492879221486990264804083 has been detected as malware by 25 anti-virus scanners.

File name:

Publisher:

Digidesign, A Division of Avid Technology, Inc.

Product:

Asthma Bigot

Description:

Bavujy

Version:

3, 8, 3

MD5:

e67f65412e16219cc78fae80c66cd524

SHA-1:

9792e940e598ee24331f924ef858f4bb988f64b8

SHA-256:

f255dd27ce9fd4cdbfd46334b316513d7433df4d2c7747d7db8e0a7e3ad68898

Scanner detections:

25 / 68

Status:

Malware

Analysis date:

4/26/2024 6:59:57 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.GenericKD.1643809

1024

Avira AntiVirus

TR/Dldr.JQOZ

7.11.143.202

avast!

Win32:Trojan-gen

2014.9-140416

Baidu Antivirus

Trojan.Win32.Kryptik

4.0.3.14416

Bitdefender

Trojan.GenericKD.1643809

1.0.20.530

Dr.Web

Trojan.PWS.Stealer.4118

9.0.1.0106

Emsisoft Anti-Malware

Trojan.GenericKD.1643809

8.14.04.16.01

ESET NOD32

Win32/TrojanDownloader.Agent.ANJ

8.9685

F-Prot

W32/Trojan5.JRD

v6.4.7.1.166

F-Secure

Trojan.GenericKD.1643809

11.2014-16-04_4

G Data

Trojan.GenericKD.1643809

14.4.24

IKARUS anti.virus

Trojan-Spy.Zbot

t3scan.1.6.1.0

K7 AntiVirus

Trojan

13.176.11784

Kaspersky

Trojan-Downloader.Win32.Agent

14.0.0.4007

Malwarebytes

Trojan.Downloader

v2014.04.16.01

McAfee

Trojan-FEAZ!E67F65412E16

5600.7158

MicroWorld eScan

Trojan.GenericKD.1643809

15.0.0.318

Norman

Suspicious_Gen4.GEYPO

11.20140416

nProtect

Trojan.Downloader.JQOZ

14.04.16.01

Panda Antivirus

Suspicious file

14.04.16.01

Qihoo 360 Security

Win32/Trojan.Downloader.a15

1.0.0.1015

Sophos

Troj/Dwnldr-LMP

4.98

Trend Micro House Call

TROJ_GEN.F0D1H00DF14

7.2.106

Trend Micro

TROJ_DLOADR.GEUT

10.465.16

VIPRE Antivirus

Trojan.Win32.Generic

28294

File size:

47.5 KB (48,640 bytes)

Product version:

3 8 3631

Jenny 1999 2010

Original file name:

Plato.exe

Language:

English (United States)

Common path:

C:\users\{user}\downloads\kostenplan-8305.3382.7167.1729126185107571764917784439111207916011613445254249287922148699026480408324439550781727915412562097645.doc.exe

File PE Metadata

Compilation timestamp:

4/8/2008 1:02:39 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

5.0

CTPH (ssdeep):

768:mgG6s4a7JRc4vl7eanig3hmVOeRnJ4qPHicwFm:jG6CJRbcwhTeJJ4qPHicwFm

Entry address:

0x4FAC

Entry point:

6A, 59, 68, B4, 0C, 8C, 7B, E9, 00, 04, 00, 00, 4A, 53, 48, 46, 48, 56, 58, 53, 47, 4C, 4A, 58, 4F, 4E, 56, 58, 4E, 43, 45, 4C, 4D, 41, 4B, 51, 47, 43, 46, 47, 57, 54, 54, 49, 44, 4C, 51, 4B, 56, 53, 42, 55, 4C, 4B, 50, 45, 54, 45, 49, 42, 56, 52, 44, 54, 4B, 4B, 4E, 4F, 43, 44, 43, 53, 47, 42, 50, 4F, 52, 55, 50, 44, 45, 58, 48, 4C, 4A, 48, 57, 46, 4B, 54, 54, 48, 43, 58, 52, 4A, 50, 52, 4F, 50, 42, 4D, 47, 44, 46, 44, 4B, 44, 56, 50, 4C, 46, 58, 4D, 4E, 4A, 59, 46, 59, 49, 47, 48, 42, 45, 48, 4D, 41, 4F... 
[+]

Developed / compiled with:

Microsoft Visual C++ v7.1

Code size:

20 KB (20,480 bytes)

Remove kostenplan-8305.3382.7167.17291261851075717649177844391112079160116134452542492879221486990264804083 - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.