home

mtkdroidtools.exe

MD5:
d38029fe64817f979e06ba025be8b026

SHA-1:
7bb0eb65f8fac46b7446b5cf81f2e60a94ecdda1

SHA-256:
3d4907bf0edffd204fef0980298413a439e059305be753678927dffaa171461c

Scanner detections:
4 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/24/2024 8:25:59 PM UTC  (today)

Scan engine
Detection
Engine version

Baidu Antivirus
Trojan.Win32.Asim
4.0.3.14324

Comodo Security
UnclassifiedMalware
17870

Norman
Suspicious_Gen4.EXDQY
11.20140324

Rising Antivirus
PE:Trojan.Win32.Generic.159C20CC!362553548
23.00.65.14322

File size:
487.5 KB (499,200 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
5/24/2013 11:42:52 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.50

CTPH (ssdeep):
6144:oWNfC7yhdh42DLNPDZqik8QIWUrSW929JcU1f9yWHYFUTB3d2HhTu0XfJH:vfCGhdC2DLNPtqDQWUOacc2giTZdixH

Entry address:
0x1000

Entry point:
68, 90, 02, 00, 00, 68, 00, 00, 00, 00, 68, 28, AA, 47, 00, E8, FA, 43, 02, 00, 83, C4, 0C, 68, 00, 00, 00, 00, E8, F9, 43, 02, 00, A3, 2C, AA, 47, 00, 68, 00, 00, 00, 00, 68, 00, 10, 00, 00, 68, 00, 00, 00, 00, E8, E6, 43, 02, 00, A3, 28, AA, 47, 00, B8, 50, 4B, 47, 00, A3, 48, AA, 47, 00, E8, B2, 92, 05, 00, E8, 45, 90, 05, 00, E8, 18, 64, 05, 00, E8, 5B, 59, 05, 00, E8, FF, 58, 05, 00, E8, A9, 53, 05, 00, E8, 86, 53, 05, 00, E8, F8, 52, 05, 00, E8, 1D, 49, 05, 00, E8, CB, 46, 05, 00, E8, 37, 2F, 05, 00...
 
[+]

Packer / compiler:
PKLITE32, 0x1.1

Code size:
359.5 KB (368,128 bytes)

Scan mtkdroidtools.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.