» monitorpoweroff.exe
Overview
Analysis
File Details

monitorpoweroff.exe

The executable monitorpoweroff.exe has been detected as malware by 14 anti-virus scanners.

File name:

monitorpoweroff.exe

MD5:

bac15e1a44ead930d73d9793b7d4eeee

SHA-1:

8ad4bb2fd1c0b347ca788516565c9a28fb94fb97

SHA-256:

4f710268b11dd9133a747a9abb5df11afa6ea919bf34d3c26d7d04bdeab3d513

Scanner detections:

14 / 68

Status:

Malware

Analysis date:

4/26/2024 8:00:07 PM UTC (today)

Scan engine

Detection

Engine version

Avira AntiVirus

TR/BadJoke.Delf.gb.1

7.11.214.42

Baidu Antivirus

Trojan.Win32.BadJoke

4.0.3.1571

Fortinet FortiGate

Riskware/BadJoke_Delf

7/1/2015

IKARUS anti.virus

Hoax.Win32.BadJoke.Delf

t3scan.1.8.6.0

Kaspersky

Hoax.Win32.BadJoke.Delf

14.0.0.1800

McAfee

Artemis!BAC15E1A44EA

5600.6717

NANO AntiVirus

Trojan.Win32.Folderfu.cwljfq

0.30.0.296

Norman

Suspicious_Gen2.VFIJF

11.20150701

nProtect

Trojan/W32.Agent.361472.BX

15.03.06.01

Panda Antivirus

Trj/CI.A

15.07.01.10

Trend Micro House Call

TROJ_GEN.R047C0EK714

7.2.182

Trend Micro

TROJ_GEN.R047C0EK714

10.465.01

VIPRE Antivirus

Hoax.Win32.BadJoke.Delf!VOR (not malicious)

38168

Zillya! Antivirus

Tool.BadJoke.Win32.2610

2.0.0.2089

File size:

353 KB (361,472 bytes)

File type:

Executable application (Win32 EXE)

File PE Metadata

Compilation timestamp:

6/20/1992 12:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

6144:74VnUPpfqNlvnx8713G9c2TdMWDBWvOpIiYM+82WLco0:anUPpfqHvCJqc2TSAcvO6M+9WN

Entry address:

0x4D020

Entry point:

55, 8B, EC, 83, C4, F0, B8, B0, CE, 44, 00, E8, 34, 95, FB, FF, A1, D4, ED, 44, 00, 8B, 00, E8, 40, E7, FF, FF, A1, D4, ED, 44, 00, 8B, 00, BA, 80, D0, 44, 00, E8, 53, E3, FF, FF, 8B, 0D, A8, EE, 44, 00, A1, D4, ED, 44, 00, 8B, 00, 8B, 15, 68, CC, 44, 00, E8, 2F, E7, FF, FF, A1, D4, ED, 44, 00, 8B, 00, E8, A3, E7, FF, FF, E8, 92, 70, FB, FF, 00, 00, FF, FF, FF, FF, 11, 00, 00, 00, 4D, 6F, 6E, 69, 74, 6F, 72, 20, 50, 6F, 77, 65, 72, 20, 4F, 66, 66, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C++

Code size:

304.5 KB (311,808 bytes)

Remove monitorpoweroff.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.