» mohob-heapmem view.exe
Overview
Analysis
File Details

mohob-heapmem view.exe

mohob1@msn.com

Mohob-Heapmam view

The executable mohob-heapmem view.exe, “Mohob-Heapmam view” has been detected as malware by 30 anti-virus scanners.

File name:

Publisher:

Mohob-Heapmam view

Product:

mohob1@msn.com

Description:

Mohob-Heapmam view

Version:

1.00

MD5:

8bd27eb4593ee63fdff3cc5f2e698395

SHA-1:

c7f9af6693e04b334065e528f2cf4197d849e319

SHA-256:

e33aa2369b0de7359a46bfded3476781a1d5c9479bb064eedc57ac89b105ac4d

Scanner detections:

30 / 68

Status:

Malware

Analysis date:

4/27/2024 1:16:39 AM UTC (today)

Scan engine

Detection

Engine version

AhnLab V3 Security

Trojan/Win32.CSon

2012.08.06

Avira AntiVirus

TR/Agent.ahhtma

7.11.38.238

avast!

Win32:VB-OUL [Trj]

2014.9-150428

AVG

Dropper.Generic2

2016.0.3125

Bitdefender

Trojan.Agent.AQOB

1.0.20.590

Clam AntiVirus

Trojan.VB-19887

0.98/18155

Comodo Security

TrojWare.Win32.Trojan.VB.~CEJ

13162

Dr.Web

Trojan.MulDrop1.46416

9.0.1.0118

Emsisoft Anti-Malware

Virus.Win32.VBInject!IK

8.15.04.28.02

ESET NOD32

Win32/Injector.EUZ (variant)

9.7360

Fortinet FortiGate

W32/VBDrpr.AHT!tr

4/28/2015

F-Prot

W32/Dropper.ANLR

v6.4.6.5.141

F-Secure

Trojan.Agent.AQOB

11.2015-28-04_3

G Data

Trojan.Agent.AQOB

15.4.22

IKARUS anti.virus

Virus.Win32.VBInject

t3scan.1.1.122.0

K7 AntiVirus

Trojan

13.145.7431

Kaspersky

Trojan-Dropper.Win32.VB

14.0.0.2122

McAfee

Generic VB.i

5600.6781

Microsoft Security Essentials

VirTool:Win32/VBInject.gen!CI

1.163.1557.0

Norman

W32/VBInject.AS

11.20150428

nProtect

Trojan-Dropper/W32.Agent.151552.CR

12.08.06.01

Panda Antivirus

Trj/Buzus.AH

15.04.28.02

Quick Heal

Win32.Trojan-Dropper.VB.ahht.3

4.15.12.00

Rising Antivirus

Trojan.Win32.VBInject.mi

23.00.65.15426

Sophos

Mal/VBDrop-J

4.79

Trend Micro House Call

TROJ_VBDROP.SMIB

7.2.118

Trend Micro

TROJ_VBDROP.SMIB

10.465.28

Vba32 AntiVirus

OScope.Trojan.VB.01066

3.12.18.2

VIPRE Antivirus

VirTool.Win32.VBInject.gen.ci

12512

ViRobot

Dropper.VB.65536.C

2011.4.7.4223

File size:

148 KB (151,552 bytes)

Product version:

1.00

Mohob-Heapmam view

Trademarks:

mohob-Heapmam view

Original file name:

bong.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

File PE Metadata

Compilation timestamp:

9/11/2009 3:24:59 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

3072:0oQe9wRqh1DB9xhc3w4j17XMnqtK5asxIbA:0r6Aq1Duw4j1+q3

Entry address:

0x60EE

Entry point:

68, C4, 14, 40, 00, E9, E1, B2, FF, FF, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

7.0680

Code size:

24 KB (24,576 bytes)

Remove mohob-heapmem view.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.