» msjirevub.exe
Overview
Analysis
File Details
Behaviors (1)

msjirevub.exe

Pidgin

The Pidgin developer community

The executable msjirevub.exe has been detected as malware by 29 anti-virus scanners.

File name:

msjirevub.exe

Publisher:

The Pidgin developer community

Product:

Pidgin

Version:

2.10.9

MD5:

8634457b93456c141713c67798fda94f

SHA-1:

c9d4d2a1e8ff0a67bd33337a040cab3e3cc48ace

Scanner detections:

29 / 68

Status:

Malware

Analysis date:

4/23/2024 10:20:15 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.GenericKD.2230052

680

AhnLab V3 Security

Trojan/Win32.Agent

2015.03.25

avast!

Win32:Crypt-RXK [Trj]

2014.9-150327

AVG

Crypt4

2016.0.3158

Baidu Antivirus

Worm.Win32.Ngrbot

4.0.3.15327

Bitdefender

Trojan.GenericKD.2230052

1.0.20.430

Dr.Web

BackDoor.IRC.NgrBot.449

9.0.1.086

Emsisoft Anti-Malware

Trojan.GenericKD.2230052

8.15.03.27.07

ESET NOD32

Win32/Kryptik.DCCB (variant)

9.11370

Fortinet FortiGate

W32/Kryptik.DCCB!tr

3/27/2015

F-Secure

Trojan.GenericKD.2230052

11.2015-27-03_6

G Data

Trojan.GenericKD.2230052

15.3.25

IKARUS anti.virus

Trojan.Win32.Crypt

t3scan.1.8.6.0

K7 AntiVirus

Trojan

13.202.15364

Kaspersky

Worm.Win32.Ngrbot

14.0.0.2283

Malwarebytes

Trojan.Agent.ED

v2015.03.27.07

McAfee

Trojan-FFZS!8634457B9345

5600.6814

Microsoft Security Essentials

Worm:Win32/Gamarue.AQ

1.1.11502.0

MicroWorld eScan

Trojan.GenericKD.2230052

16.0.0.258

NANO AntiVirus

Trojan.Win32.NgrBot.dpgsma

0.30.8.659

nProtect

Trojan.GenericKD.2230052

15.03.24.01

Panda Antivirus

Trj/Chgt.O

15.03.27.07

Qihoo 360 Security

HEUR/QVM10.1.Malware.Gen

1.0.0.1015

Quick Heal

Trojan.Lethic.MUE.B4

3.15.14.00

Reason Heuristics

Threat.Win.Reputation.IMP

15.4.3.11

Sophos

Mal/Generic-S

4.98

Trend Micro House Call

TROJ_GEN.R00GC0DCN15

7.2.86

Trend Micro

TROJ_GEN.R00GC0DCN15

10.465.27

VIPRE Antivirus

Trojan.Win32.Generic

38729

File size:

168 KB (172,032 bytes)

Product version:

2.10.9

Original file name:

pidgin.exe

File type:

Executable application (Win32 EXE)

Common path:

C:\documents and settings\all users\msjirevub.exe

File PE Metadata

Compilation timestamp:

3/17/2015 3:17:39 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

3072:719XV4H+j/FLga2ILDviSLhUOz1Br2MGziQVJY+xomC5ioLo:7XaHMFkadpz1Br2xpCUUo

Entry address:

0x17125

Entry point:

E8, 12, 23, 00, 00, E9, 78, FE, FF, FF, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 18, 91, 42, 00, 89, 0D, 14, 91, 42, 00, 89, 15, 10, 91, 42, 00, 89, 1D, 0C, 91, 42, 00, 89, 35, 08, 91, 42, 00, 89, 3D, 04, 91, 42, 00, 66, 8C, 15, 30, 91, 42, 00, 66, 8C, 0D, 24, 91, 42, 00, 66, 8C, 1D, 00, 91, 42, 00, 66, 8C, 05, FC, 90, 42, 00, 66, 8C, 25, F8, 90, 42, 00, 66, 8C, 2D, F4, 90, 42, 00, 9C, 8F, 05, 28, 91, 42, 00, 8B, 45, 00, A3, 1C, 91, 42, 00, 8B, 45, 04, A3, 20, 91, 42, 00, 8D, 45, 08, A3, 2C, 91, 42... 
[+]

Code size:

125.5 KB (128,512 bytes)

Policies Explorer Run

Name:

3705886594

Remove msjirevub.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.