» polydex_v3.exe
Overview
Analysis
File Details
Downloads (1)

polydex_v3.exe

PolyDex v3

Freyr

The application polydex_v3.exe has been detected as a potentially unwanted program by 27 anti-malware scanners.

File name:

polydex_v3.exe

Publisher:

Freyr

Product:

PolyDex v3

Version:

1.2.2.7

MD5:

e4adcfb84b20426ab84d9bfc71c06c91

SHA-1:

518e1abb21c5548e12d00522ac2e9055ebae0851

SHA-256:

2085919b8b836e89b4d2743f8fe5197acffba19e75aa8b656aec07d1e8af8aef

Scanner detections:

27 / 68

Status:

Potentially unwanted

Analysis date:

5/7/2024 9:52:52 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.Generic.6140525

926

Agnitum Outpost

Trojan.Agent

7.1.1

Avira AntiVirus

TR/Gendal.6140525

7.11.163.82

avast!

Win32:PUP-gen [PUP]

2014.9-140723

AVG

Dropper.Generic3

2015.0.3404

Bitdefender

Trojan.Generic.6140525

1.0.20.1020

Bkav FE

W32.Clod6d4.Trojan

1.3.0.4959

Clam AntiVirus

Win.Trojan.6140525-1

0.98/21411

Comodo Security

UnclassifiedMalware

18930

Dr.Web

Win32.HLLW.Autoruner1.12041

9.0.1.0204

Emsisoft Anti-Malware

Trojan.Generic.6140525

8.14.07.23.04

Fortinet FortiGate

W32/SPNR.11JT11!tr

7/23/2014

F-Secure

Trojan.Generic.6140525

11.2014-23-07_4

G Data

Trojan.Generic.6140525

14.7.24

IKARUS anti.virus

Trojan.SuspectCRC

t3scan.1.6.1.0

Malwarebytes

HackTool.Agent

v2014.07.23.04

McAfee

Artemis!E4ADCFB84B20

5600.7060

MicroWorld eScan

Trojan.Generic.6140525

15.0.0.612

NANO AntiVirus

Trojan.Win32.Gendal.tbcmx

0.28.2.60990

Norman

Suspicious_Gen2.QRUQK

11.20140723

nProtect

Trojan.Generic.6140525

14.07.21.01

Qihoo 360 Security

Win32/Trojan.0a0

1.0.0.1015

Rising Antivirus

PE:Trojan.Win32.Generic.12A2F699!312669849

23.00.65.14721

Sophos

Mal/Generic-L

4.98

Trend Micro House Call

TROJ_SPNR.11JT11

7.2.204

Trend Micro

TROJ_SPNR.11JT11

10.465.23

VIPRE Antivirus

Trojan.Win32.Generic

31482

File size:

83.5 KB (85,504 bytes)

Product version:

1.2.2.7

Trademarks:

Original file name:

PolyDexv3.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\realhackings\email password cracker\polydex_v3realhackings.com\polydex_v3 realhackings.com\polydex_v3.exe

File PE Metadata

Compilation timestamp:

5/10/2011 4:13:15 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows Console

Linker version:

6.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

1536:yvjG0nFJe5ouWYCk5htWIvORJ8kdqYWSJOLgFOw+oT6/j+s:mjGYK5ouWYCWhtW3JXdASgLa+oZ

Entry address:

0x1599E

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 0B, 68, A8, 1F, C3, 6B, 64, E4, F0, DD, 28, 56, C0, 5B, FA, 24, A6, 6A, 00, 9E, B4, 89, 49, 1B, AB, 23, 0F, 0D, 47, FE... 
[+]

Entropy:

5.9833

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

78.5 KB (80,384 bytes)

The file polydex_v3.exe has been seen being distributed by the following URL.

temp:PolyDex_v3.exe

Remove polydex_v3.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.