home

poshboutique2.exe

The executable poshboutique2.exe has been detected as malware by 13 anti-virus scanners.
MD5:
3712a3826de16fee94a69a26f6b11e6d

SHA-1:
0c0df7acda7979bc67747f4672dca108075af3a0

SHA-256:
73d204534f0ffd32648789a5ad14433710aa4fec243b0d80e084f8bfc537dbe4

Scanner detections:
13 / 68

Status:
Malware

Analysis date:
4/26/2024 1:32:11 AM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
Suspicious
7.1.1

AhnLab V3 Security
Win32/MalPackedB.suspicious
2013.03.10

AVG
Win32/Heur
2018.0.2438

Dr.Web
Trojan.Starter.1707
9.0.1.075

Fortinet FortiGate
W32/Krap.K!tr
3/16/2017

F-Prot
W32/Agent.HJ.gen
v6.4.6.5.141

IKARUS anti.virus
Trojan.SuspectCRC
t3scan.2.0.0.0

K7 AntiVirus
Riskware
13.163.8328

Norman
Packed_RLPack.O
11.20170316

nProtect
Trojan/W32.Agent.283992.H
13.03.09.01

Quick Heal
(Suspicious) - DNAScan
3.17.12.00

Trend Micro House Call
TROJ_PAM_00000201CD.T3
7.2.75

VIPRE Antivirus
Trojan.Win32.Packer.RLPackV1.21
15942

File size:
277.3 KB (283,992 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
1/4/2010 3:55:02 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

Entry address:
0x49000

Entry point:
60, E8, 00, 00, 00, 00, 8B, 2C, 24, 83, C4, 04, 83, 7C, 24, 28, 01, 75, 0C, 8B, 44, 24, 24, 89, 85, 32, 03, 00, 00, EB, 0C, 8B, 85, 36, 03, 00, 00, 89, 85, 32, 03, 00, 00, 83, BD, 2A, 03, 00, 00, 01, 0F, 84, 96, 00, 00, 00, 8B, 85, 1A, 03, 00, 00, 03, 85, 32, 03, 00, 00, 8B, 08, 8D, 9D, 22, 03, 00, 00, 89, 0B, 8D, 9D, CF, 00, 00, 00, 89, 18, E8, 3E, 02, 00, 00, 8D, 9D, E8, 02, 00, 00, 53, 50, FF, 95, 22, 03, 00, 00, 68, 00, 02, 00, 00, 8D, 9D, 3A, 03, 00, 00, 53, 6A, 00, FF, D0, 50, 8F, 85, 3A, 05, 00, 00...
 
[+]

Entropy:
6.3617

Packer / compiler:
ASPack v1.08.04

Code size:
164 KB (167,936 bytes)

Remove poshboutique2.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.