» MT-Global.exe
Overview
Analysis
File Details

MT-Global.exe

mIRCTurk

The application MT-Global.exe, “mIRCTurk Global 2.1 Installation ” has been detected as a potentially unwanted program by 42 anti-malware scanners. This is a setup and installation application, however the file is not signed with an authenticode signature from a trusted source.

File name:

MT-Global.exe

Publisher:

mIRCTurk

Description:

mIRCTurk Global 2.1 Installation

Version:

2.1

MD5:

ef9823de499f14ac28ba73a264b4425b

SHA-1:

1adc0549fea489a6ae8ec5de9adf4579589ff990

SHA-256:

25a8a2dfc4a48600526efd438b0adac7deda1b36b9a24d92de04fe9c2840cba5

Scanner detections:

42 / 68

Status:

Potentially unwanted

Analysis date:

4/19/2024 11:03:21 PM UTC (a few moments ago)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.Generic.1563134

886

Avira AntiVirus

TR/Spamthru.F

7.11.155.78

avast!

Win32:Mirc-Z [PUP]

2014.9-140902

Baidu Antivirus

Hacktool.Win32.mIRC

4.0.3.1492

Bitdefender

Trojan.Generic.1563134

1.0.20.1225

Bkav FE

W32.Clod7ac.Trojan

1.3.0.4959

Comodo Security

UnclassifiedMalware

18585

Dr.Web

Trojan.MulDrop2.50154

9.0.1.0245

Emsisoft Anti-Malware

Trojan.Generic.1563134

8.14.09.02.01

Fortinet FortiGate

Riskware/Sim

9/2/2014

F-Prot

W32/Qhost.R.gen

v6.4.7.1.166

F-Secure

Trojan.Generic.1563134

11.2014-02-09_3

G Data

Trojan.Generic.1563134

14.9.24

Kaspersky

not-a-virus:Client-IRC.Win32.mIRC

14.0.0.3315

McAfee

Artemis!EF9823DE499F

5600.7020

MicroWorld eScan

Trojan.Generic.1563134

15.0.0.735

NANO AntiVirus

Trojan.Win32.MulDrop2.vrtul

0.28.0.60253

Norman

Suspicious_Gen2.IZJT

11.20140902

nProtect

Trojan.Generic.1563134

14.06.17.01

Panda Antivirus

Generic Trojan

14.09.02.01

Qihoo 360 Security

Win32/Trojan.d6a

1.0.0.1015

Rising Antivirus

PE:Trojan.Win32.Generic.125D8302!308118274

23.00.65.14831

Trend Micro House Call

TROJ_GEN.R03WB01FF14

7.2.245

VIPRE Antivirus

Trojan.SpamThru

30402

ViRobot

ClientIRC.mIRC.2161800

2011.4.7.4223

XVirus List

Win32.Detected

2.9.2

File size:

2.1 MB (2,161,800 bytes)

mIRCTurk

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\mt-global.exe

File PE Metadata

Compilation timestamp:

6/20/1992 1:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

49152:kwHnSDy5hvrJATDTOElgzLv8G41L3AlU1hGyIFVFHEf/VlF:kwjryXlQR4yLzFVy5

Entry address:

0x17D64

Entry point:

55, 8B, EC, 83, C4, F0, B8, 9C, 7C, 41, 00, E8, 6C, AB, FE, FF, B8, C4, 7D, 41, 00, E8, 6A, 18, FF, FF, 8B, 15, AC, 86, 41, 00, 89, 02, 8B, 15, AC, 86, 41, 00, 8B, 12, A1, B0, 86, 41, 00, E8, 80, D5, FF, FF, 8B, 15, AC, 86, 41, 00, 8B, 12, A1, 50, 86, 41, 00, E8, 82, 71, FF, FF, A1, AC, 86, 41, 00, E8, 64, 0A, FF, FF, E8, 87, 9B, FE, FF, 00, 00, 00, FF, FF, FF, FF, 01, 00, 00, 00, 2A, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C++

Code size:

91.5 KB (93,696 bytes)

Remove MT-Global.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.