» prix.exe
Overview
Analysis
File Details

prix.exe

The executable prix.exe has been detected as malware by 26 anti-virus scanners.

File name:

prix.exe

MD5:

7920c807f6080cece1e043fe009242a5

SHA-1:

16f082d1d8c7e765fb1a71158a1877015a33fa26

SHA-256:

0a9408c60f62f82355e836616aaa3e843f078e2d13e515f2f3cd7c10bd878ed8

Scanner detections:

26 / 68

Status:

Malware

Analysis date:

4/26/2024 10:01:50 PM UTC (today)

Scan engine

Detection

Engine version

AhnLab V3 Security

Win-Trojan/Buzus.98304.X

2010.12.27

Avira AntiVirus

SPR/Tool.inj.268800

7.11.0.179

avast!

Win32:Malware-gen

2014.9-140923

AVG

Generic19

2015.0.3342

Clam AntiVirus

Trojan.Poison-595

0.98/17411

Comodo Security

Backdoor.Win32.Agent.CEP_svr23

7201

Dr.Web

BackDoor.Poison.2753

9.0.1.0266

ESET NOD32

Win32/HackTool.Inject (variant)

8.5734

Fortinet FortiGate

HackerTool/X1nject

9/23/2014

F-Prot

W32/MalwareS.BACP

v6.4.6.2.117

F-Secure

Backdoor:W32/Agent.DQBX

11.2014-23-09_3

G Data

Win32:Malware-gen

14.9.21

K7 AntiVirus

Riskware

13.74.3335

Kaspersky

Backdoor.Win32.Poison

14.0.0.3207

McAfee

Generic BackDoor!bgb

5600.6998

Microsoft Security Essentials

Backdoor:Win32/Poison.AR

1.163.1557.0

Norman

W32/Suspicious_Gen2.CCX.dropper

11.20140923

Panda Antivirus

Bck/Bifrost.gen

14.09.23.12

Quick Heal

Trojan.Buzus.azbw

9.14.11.00

Rising Antivirus

Trojan.Win32.Generic.52249BFB

23.00.65.14921

Sophos

Mal/Generic-L

4.60

Trend Micro House Call

TROJ_BREDLAB.SMD

7.2.266

Trend Micro

TROJ_BREDLAB.SMD

10.465.23

Vba32 AntiVirus

Backdoor.Poison.bdmi

3.12.14.2

VIPRE Antivirus

Trojan.Win32.Generic

7842

ViRobot

Trojan.Win32.Buzus.98304.K

2010.12.27.4222

File size:

456.8 KB (467,774 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\windows\prix.exe

File PE Metadata

Compilation timestamp:

3/17/2005 7:31:50 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

12288:b1dlZo5yHGxXXmDxMEp26iqTNhog+P1pu:b1dlZo5FxXXmDxZZohvu

Entry address:

0x7481

Entry point:

55, 8B, EC, 6A, FF, 68, F0, E7, 40, 00, 68, C4, AD, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, 84, E0, 40, 00, 33, D2, 8A, D4, 89, 15, E0, 52, 41, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, DC, 52, 41, 00, C1, E1, 08, 03, CA, 89, 0D, D8, 52, 41, 00, C1, E8, 10, A3, D4, 52, 41, 00, 33, F6, 56, E8, F6, 23, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, B0, 00, 00, 00, 59, 89, 75, FC, E8, 16, 02, 00, 00, FF, 15, 80, E0, 40, 00, A3, E4, 69, 41, 00, E8... 
[+]

Developed / compiled with:

Microsoft Visual C++ v6.0

Code size:

52 KB (53,248 bytes)

Remove prix.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.