microsoft_office_2010_keygen_by_viking.exe

The executable microsoft_office_2010_keygen_by_viking.exe has been detected as malware by 24 anti-virus scanners. The program is a setup application that uses the Self-extracting archive installer, however the file is not signed with an authenticode signature from a trusted source.
Remove microsoft_office_2010_keygen_by_viking.exe - Powered by Reason Core Security
MD5:
a2d5c4a30d2936402095d5b728c181b0

SHA-1:
5c56bf24854050f135fc19b0166bdfb479f615d6

SHA-256:
2e3566fc7feb4ca58cb99cdad252cc711c0f59c849d0e30af4d60fe5ec6e32e7

Scanner detections:
24 / 68

Status:
Malware

Analysis date:
12/4/2016 11:32:24 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.GenericKD.1710034
969

Avira AntiVirus
TR/Rogue.94208.11
7.11.154.8

Antiy Labs AVL
Trojan/Win32.TSGeneric
1.0.0.1

avast!
Win32:Malware-gen
2014.9-140610

AVG
CoinMiner
2015.0.3447

Bitdefender
Trojan.GenericKD.1710034
1.0.20.805

Dr.Web
Trojan.BtcMine.511
9.0.1.0161

Emsisoft Anti-Malware
Trojan-Dropper.RAR.CoinMiner
8.14.06.10.02

ESET NOD32
Win32/CoinMiner.RP (variant)
8.9920

Fortinet FortiGate
W32/CoinMiner.RP!tr
6/10/2014

G Data
Trojan.GenericKD.1710034
14.6.24

IKARUS anti.virus
Trojan.CoinMiner
t3scan.1.6.1.0

K7 AntiVirus
Trojan
13.1712348

K7 Gateway Antivirus
Trojan
13.1712348

Malwarebytes
Trojan.Dropper.GF
v2014.06.10.02

McAfee
Artemis!A2D5C4A30D29
5600.7103

McAfee Web Gateway
Artemis!A2D5C4A30D29
7.7103

MicroWorld eScan
Trojan.GenericKD.1710034
15.0.0.483

NANO AntiVirus
Trojan.Win32.MulDrop5.dakxix
0.28.0.60253

Qihoo 360 Security
HEUR/Malware.QVM06.Gen
1.0.0.1015

The Hacker
Trojan/KillProc.l
6.8.0.5.466

Total Defense
Win32/BitcoinMiner.THSPYLB
37.0.10989

Trend Micro House Call
TROJ_GE.D6817155
7.2.161

VIPRE Antivirus
Trojan.Win32.Generic
30144

Remove microsoft_office_2010_keygen_by_viking.exe - Powered by Reason Core Security
File size:
1.2 MB (1,237,080 bytes)

File type:
Executable application (Win32 EXE)

Installer:
Self-extracting archive

File PE Metadata
Compilation timestamp:
12/1/2013 8:08:23 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:3NBIcrm9+rwWLyhfnLbzSJLa9qnpnVj7bTFhBAbFdmbr8UM3FE63LJhz:AwmgrlL0vjSBa9kDj7vab3mbr8UM3v3/

Entry address:
0x1D728

Entry point:
E8, F0, 57, 00, 00, E9, 78, FE, FF, FF, 8B, FF, 55, 8B, EC, 56, 8D, 45, 08, 50, 8B, F1, E8, 05, FD, FF, FF, C7, 06, E4, 81, 42, 00, 8B, C6, 5E, 5D, C2, 04, 00, C7, 01, E4, 81, 42, 00, E9, BA, FD, FF, FF, 8B, FF, 55, 8B, EC, 56, 8B, F1, C7, 06, E4, 81, 42, 00, E8, A7, FD, FF, FF, F6, 45, 08, 01, 74, 07, 56, E8, D1, C9, FF, FF, 59, 8B, C6, 5E, 5D, C2, 04, 00, 8B, FF, 55, 8B, EC, 56, 57, 8B, 7D, 08, 8B, 47, 04, 85, C0, 74, 47, 8D, 50, 08, 80, 3A, 00, 74, 3F, 8B, 75, 0C, 8B, 4E, 04, 3B, C1, 74, 14, 83, C1, 08...
 
[+]

Entropy:
7.9165  (probably packed)

Code size:
149.5 KB (153,088 bytes)

Remove microsoft_office_2010_keygen_by_viking.exe - Powered by Reason Core Security