» microsoft.com
Overview
Analysis
File Details

microsoft.com

The file microsoft.com has been detected as malware by 19 anti-virus scanners.

File name:

microsoft.com

Version:

1.0.0.0

MD5:

7102dccef0fe3170228926c9c5b24d62

SHA-1:

e806d30c9bb25a5eb3e4ad82fda1ecf6e33a0758

SHA-256:

d62d791798e65cfb3dbecca26b2b75dc55f1e7387fa2a842de1c1d2e74f20951

Scanner detections:

19 / 68

Status:

Malware

Analysis date:

4/24/2024 11:24:24 PM UTC (a few moments ago)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Zusy.82458

1017

AegisLab AV Signature

HackTool.MSIL.Agent

2.1.4+

Agnitum Outpost

Trojan.DR.Injector

7.1.1

Avira AntiVirus

TR/Agent.bao.3

7.11.144.186

avast!

MSIL:Agent-BAO [Trj]

2014.9-140423

AVG

Generic10_c

2015.0.3495

Baidu Antivirus

Trojan.Win32.Injector

4.0.3.14423

Bitdefender

Gen:Variant.Zusy.82458

1.0.20.565

Dr.Web

Trojan.DownLoader9.22024

9.0.1.0113

Emsisoft Anti-Malware

Gen:Variant.Zusy.82458

8.14.04.23.05

ESET NOD32

MSIL/TrojanDownloader.Agent.OR

8.9707

F-Secure

Gen:Variant.Zusy.82458

11.2014-23-04_4

G Data

Gen:Variant.Zusy.82458

14.4.24

Kaspersky

Trojan-Dropper.Win32.Injector

14.0.0.3971

Malwarebytes

Backdoor.Bot

v2014.04.23.05

McAfee

Artemis!7102DCCEF0FE

5600.7151

MicroWorld eScan

Gen:Variant.Zusy.82458

15.0.0.339

Vba32 AntiVirus

TScope.Trojan.MSIL

3.12.26.0

VIPRE Antivirus

Trojan.Win32.Generic

28498

File size:

222 KB (227,328 bytes)

Product version:

1.0.0.0

Original file name:

a.exe

Language:

Language Neutral

Common path:

C:\ProgramData\microsoft.com

File PE Metadata

Compilation timestamp:

2/2/2014 7:47:05 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

3072:Rot0j2XFUE+bFALIUjhjAik9nyYWPLQS/JUzl1Ob7z:Rot9U3Fw7k9ndS/J81OX

Entry address:

0x3890E

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

218.5 KB (223,744 bytes)

Remove microsoft.com - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.