home

maximilian wietrzichowski ausgleich 14.07.2015 - stellvertretender sachbearbeiter directpay gmbh.com

BullGuard Ltd.

The file maximilian wietrzichowski ausgleich 14.07.2015 - stellvertretender sachbearbeiter directpay gmbh.com has been detected as malware by 37 anti-virus scanners.
Publisher:
BullGuard Ltd.  (signed and verified)

MD5:
2ad92e1c2c6990d02ad059e5fc485ca6

SHA-1:
5303ad0ee99a517795aad58b38bbbe3c5249c3a9

SHA-256:
7f2661b2055d3e975043591136043406f6f37988d8166c418f8b1cf37f4e0088

Scanner detections:
37 / 68

Status:
Malware

Analysis date:
4/18/2024 6:54:34 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.GenericKD.2564521
-3

AegisLab AV Signature
Backdoor.W32.Matsnu.oe!c
2.1.4+

AhnLab V3 Security
Backdoor/Win32.Matsnu
2016.05.22

Avira AntiVirus
TR/Trustezeb.187176
8.3.3.4

Arcabit
Trojan.Generic.D2721A9
1.0.0.688

avast!
Win32:Malware-gen
2014.9-170207

AVG
Generic_s
2018.0.2475

Baidu Antivirus
Win32.Trojan.WisdomEyes.151026.9950
4.0.3.1727

Bitdefender
Trojan.GenericKD.2564521
1.0.20.190

Bkav FE
W32.Clod435.Trojan
1.3.0.8042

Comodo Security
UnclassifiedMalware
25069

Dr.Web
Trojan.DownLoader14.54622
9.0.1.038

Emsisoft Anti-Malware
Trojan.GenericKD.2564521
8.17.02.07.08

ESET NOD32
Win32/Trustezeb
11.13525

Fortinet FortiGate
W32/Trustezeb.K!tr
2/7/2017

F-Prot
W32/Trojan2.OVRI
v6.4.7.1.166

F-Secure
Trojan.GenericKD.2564521
11.2017-07-02_3

G Data
Trojan.GenericKD.2564521
17.2.25

IKARUS anti.virus
Trojan.Inject
t3scan.2.0.9.0

K7 AntiVirus
Trojan
13.225.19670

Kaspersky
HEUR:Trojan.Win32.Generic
14.0.0.-1132

Malwarebytes
Trojan.Trustezeb
v2017.02.07.08

McAfee
Artemis!2AD92E1C2C69
5600.6131

Microsoft Security Essentials
Trojan:Win32/Matsnu.O
1.1.12804.0

MicroWorld eScan
Trojan.GenericKD.2564521
18.0.0.114

NANO AntiVirus
Trojan.Win32.Matsnu.ducflv
1.0.30.8482

nProtect
Trojan.GenericKD.2564521
16.05.20.01

Panda Antivirus
Trj/Genetic.gen
17.02.07.08

Qihoo 360 Security
HEUR/QVM20.1.Malware.Gen
1.0.0.1120

Rising Antivirus
Trjoan.Generic-FsUa9SBT8m (Cloud)
23.00.65.17205

Sophos
Mal/TrustEz-D
4.98

SUPERAntiSpyware
Trojan.Agent/Gen-Malagent
8606

Trend Micro House Call
TROJ_MATSNU.WWR
7.2.38

Trend Micro
TROJ_MATSNU.WWR
10.465.07

VIPRE Antivirus
Trojan.Win32.Generic
49542

ViRobot
Backdoor.Win32.S.Agent.187176[h]
2014.3.20.0

Zillya! Antivirus
Backdoor.Matsnu.Win32.173
2.0.0.2881

File size:
182.8 KB (187,176 bytes)

Common path:
C:\users\{user}\downloads\maximilian wietrzichowski ausgleich 14.07.2015 - stellvertretender sachbearbeiter directpay gmbh.com

Digital Signature
Signed by:
BullGuard Ltd.

Authority:
GlobalSign nv-sa

Valid from:
10/3/2013 12:17:17 PM

Valid to:
11/28/2015 10:07:14 AM

Subject:
CN=BullGuard Ltd., OU=IT, O=BullGuard Ltd., L=Heathrow, S=Middlesex, C=GB

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11215F21A71B97B71413D7ABE170135E2B7E

File PE Metadata
Compilation timestamp:
6/9/2015 5:47:59 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
4.58

Entry address:
0x2A72

Entry point:
55, 8B, EC, 83, EC, 30, 8B, F8, 8B, F0, B9, A7, 7E, 00, 00, 51, 8B, 4D, E8, 89, 4D, E4, 49, 68, E8, 00, 00, 00, 6A, 21, E8, 56, FD, FF, FF, 33, C9, 03, F0, 56, 51, FF, 15, 14, B1, 40, 00, 89, 45, F7, 50, 68, F9, 3E, 41, 00, 6A, 00, FF, 15, 1C, B1, 40, 00, 8B, D8, 53, 6A, 00, 6A, 00, 6A, 00, FF, 15, 30, B1, 40, 00, 8B, C8, 41, 75, EF, 33, C0, 50, 8B, 05, 33, 22, 41, 00, 50, FF, 15, 3C, B1, 40, 00, 89, 45, D4, 3D, FF, FF, FF, FF, 0F, 85, 75, 1F, 00, 00, E8, 90, 2E, 00, 00, C7, 45, DC, 32, 00, 00, 00, 8B, 45...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
37.5 KB (38,400 bytes)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.