os5.exe

The executable os5.exe has been detected as malware by 10 anti-virus scanners.
Remove os5.exe - Powered by Reason Core Security
MD5:
09b7df0fb5fa4ec800ca581f82526d3d

SHA-1:
670756d69594ca2e26bc58da000ec03f73346a9e

SHA-256:
a8a4ee07936c8a37d3e0ab40215909aef43d3678900200c296140d250298cab9

Scanner detections:
10 / 68

Status:
Malware

Analysis date:
12/10/2016 11:59:58 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Generic.XPL.Wmedia.C25D385F
969

Bitdefender
Generic.XPL.Wmedia.C25D385F
1.0.20.805

Emsisoft Anti-Malware
Generic.XPL.Wmedia.C25D385F
8.14.06.10.02

F-Secure
Generic.XPL.Wmedia.C25D385F
11.2014-10-06_3

G Data
Generic.XPL.Wmedia.C25D385F
14.6.24

IKARUS anti.virus
Backdoor.Win32.Cmdexer
t3scan.1.6.1.0

MicroWorld eScan
Generic.XPL.Wmedia.C25D385F
15.0.0.483

nProtect
Generic.XPL.Wmedia.C25D385F
14.06.10.01

Qihoo 360 Security
Malware.QVM07.Gen
1.0.0.1015

Vba32 AntiVirus
Malware-Cryptor.Win32.General.4.1
3.12.26.0

Remove os5.exe - Powered by Reason Core Security
File size:
40 KB (40,960 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
3/26/2003 10:47:18 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
6.0

CTPH (ssdeep):
384:qfzT0mSJfQfHkeaSEkA94CufREirL3DztlcHyCnFbHreAWoUvx1:qH0mYQfE5S5A9Xq9lE1FbLeVoUvx

Entry address:
0x105A

Entry point:
55, 8B, EC, 6A, FF, 68, B0, 60, 40, 00, 68, 44, 26, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 10, 53, 56, 57, 89, 65, E8, FF, 15, 04, 60, 40, 00, 33, D2, 8A, D4, 89, 15, 38, 9C, 40, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, 34, 9C, 40, 00, C1, E1, 08, 03, CA, 89, 0D, 30, 9C, 40, 00, C1, E8, 10, A3, 2C, 9C, 40, 00, 6A, 00, E8, 35, 14, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, 9A, 00, 00, 00, 59, 83, 65, FC, 00, E8, FF, 10, 00, 00, FF, 15, 00, 60, 40, 00, A3, 44, B1, 40, 00, E8...
 
[+]

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
20 KB (20,480 bytes)

Remove os5.exe - Powered by Reason Core Security