» OSHFusion.exe
Overview
Analysis
File Details
Downloads (1)

OSHFusion.exe

OSHFusionInjector

The application OSHFusion.exe has been detected as a potentially unwanted program by 27 anti-malware scanners. The file has been seen being downloaded from www.file-upload.net.

File name:

OSHFusion.exe

Product:

OSHFusionInjector

Version:

1.0.0.0

MD5:

c138e801a2b65e03812ff3aa9d24fb60

SHA-1:

ccb97fa92a97bfcfc31292918f5cfad06800c011

SHA-256:

42d6e1aa75ee6f27f6157f1f98d541d523da6c976306cd5377f2b58f6a3c9c1c

Scanner detections:

27 / 68

Status:

Potentially unwanted

Analysis date:

4/19/2024 9:41:54 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.Generic.8523218

379

Agnitum Outpost

Trojan.Rogue

7.1.1

AhnLab V3 Security

PUP/Win32.Generic

2016.01.16

Avira AntiVirus

TR/Rogue.8523218

8.3.2.4

Arcabit

Trojan.Generic.D820DD2

1.0.0.642

avast!

Win32:PUP-gen [PUP]

2014.9-160122

AVG

Dropper.Generic7

2017.0.2857

Baidu Antivirus

Hacktool.MSIL.DllInject

4.0.3.16122

Bitdefender

Trojan.Generic.8523218

1.0.20.110

Comodo Security

UnclassifiedMalware

23974

Emsisoft Anti-Malware

Trojan.Generic.8523218

8.16.01.22.05

ESET NOD32

MSIL/DllInject.HS potentially unsafe

10.12876

F-Secure

Trojan.Generic.8523218

11.2016-22-01_6

G Data

Trojan.Generic.8523218

16.1.25

IKARUS anti.virus

Backdoor.Win32.Shark

t3scan.1.9.5.0

K7 AntiVirus

Unwanted-Program

13.212.18449

McAfee

GenericR-CTS!C138E801A2B6

5600.6513

MicroWorld eScan

Trojan.Generic.8523218

17.0.0.66

NANO AntiVirus

Trojan.Win32.Rogue.dftpvx

1.0.14.5380

nProtect

Trojan.Generic.8523218

16.01.15.02

Panda Antivirus

Generic Malware

16.01.22.05

Qihoo 360 Security

Win32/Trojan.77c

1.0.0.1077

Sophos

Mal/Generic-S

4.98

Trend Micro House Call

TROJ_SPNR.11H414

7.2.22

Trend Micro

TROJ_SPNR.11H414

10.465.22

VIPRE Antivirus

Trojan.Win32.Generic

46532

ViRobot

Trojan.Win32.Z.Rogue.196608.A[h]

2014.3.20.0

File size:

192 KB (196,608 bytes)

Product version:

1.0.0.0

Original file name:

OSHFusion.exe

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\oshfusion by z3ro63\oshfusion.exe

File PE Metadata

Compilation timestamp:

12/25/2012 12:43:19 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

1536:g8Msf4ZlqQ5DGng3Lo89OnORTn0dEf4Zlq:g8MxZT5An85k5Z

Entry address:

0x1F73E

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

3.7710

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

118 KB (120,832 bytes)

The file OSHFusion.exe has been seen being distributed by the following URL.

http://www.file-upload.net/download5.php?valid=971.73747270715&id=7202767&name=OSHFusion.exe

Remove OSHFusion.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.