home

resumo_pendencias.exe

LUYARA FELIX DE ARAUJO 05168873359

The executable resumo_pendencias.exe has been detected as malware by 33 anti-virus scanners. According to AVG, this software downloads additional adware offers during setup.
Publisher:
LUYARA FELIX DE ARAUJO 05168873359  (signed and verified)

Version:
1.0.0.0

MD5:
28da9f2ffb04bdfbb86549b4288bb5c9

SHA-1:
3b1a0ca55a37fcc608e136535eb8529c242ccad1

SHA-256:
4d100ba53a3c8378c0c41a31dfe3c8084a6e324f5774af4413507108517d3789

Scanner detections:
33 / 68

Status:
Malware

Analysis date:
8/15/2025 8:11:02 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.GenericKD.2111749
63

Agnitum Outpost
Trojan.PWS.Banbra
7.1.1

AhnLab V3 Security
Trojan/Win32.Banker
2015.04.10

Avira AntiVirus
TR/Agent.69640
3.6.1.96

avast!
MSIL:Downloader-MU [Drp]
2014.9-161202

AVG
Downloader.MSIL
2017.0.2541

Baidu Antivirus
Trojan.Win32.Banker
4.0.3.16122

Bitdefender
Trojan.GenericKD.2111749
1.0.20.1685

Comodo Security
TrojWare.MSIL.TrojanDownloader.Agent.~AIZ
21709

Emsisoft Anti-Malware
Trojan.GenericKD.2111749
8.16.12.02.11

ESET NOD32
MSIL/TrojanDownloader.Agent.AIZ
10.11451

Fortinet FortiGate
W32/Banbra.BIQS!tr
12/2/2016

F-Secure
Trojan.GenericKD.2111749
11.2016-02-12_6

G Data
Trojan.GenericKD.2111749
16.12.25

IKARUS anti.virus
Trojan-Downloader.MSIL.Agent
t3scan.1.8.9.0

K7 AntiVirus
Trojan-Downloader
13.202.15544

Kaspersky
Trojan-Banker.Win32.Banbra
14.0.0.-800

Malwarebytes
Trojan.Agent
v2016.12.02.11

McAfee
RDN/PWS-Banker!dr
5600.6197

MicroWorld eScan
Trojan.GenericKD.2111749
17.0.0.1011

NANO AntiVirus
Trojan.Win32.Banbra.dnmqkz
0.30.10.952

Norman
Banker.GRFL
11.20161202

nProtect
Trojan.GenericKD.2111749
15.04.09.02

Panda Antivirus
Trj/CI.A
16.12.02.11

Qihoo 360 Security
Trojan.Generic
1.0.0.1015

Quick Heal
TrojanBanker.Banbra.r3
12.16.14.00

Sophos
Mal/Generic-S
4.98

Trend Micro House Call
TROJ_GEN.F0C2C00AS15
7.2.337

Trend Micro
TROJ_GEN.F0C2C00AS15
10.465.02

Vba32 AntiVirus
TrojanBanker.Banbra
3.12.26.3

VIPRE Antivirus
Trojan.Win32.Generic.pak!cobra
39206

ViRobot
Trojan.Win32.Agent.69640[h]
2014.3.20.0

Zillya! Antivirus
Trojan.Banbra.Win32.22841
2.0.0.2134

File size:
68 KB (69,640 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2015

Original file name:
LoaderDEL.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\resumo_pendencias.exe

Digital Signature
Signed by:
LUYARA FELIX DE ARAUJO 05168873359

Authority:
GlobalSign nv-sa

Valid from:
11/10/2014 1:19:06 PM

Valid to:
11/11/2015 1:19:06 PM

Subject:
CN=LUYARA FELIX DE ARAUJO 05168873359, OU=TI, O=LUYARA FELIX DE ARAUJO 05168873359, L=Imperatriz, S=Maranhao, C=BR

Issuer:
CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121D20CD8AF8CA0767E911EE22F03281F76

File PE Metadata
Compilation timestamp:
1/21/2015 9:46:01 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
1536:v68NvUVoDlqoI19kyfaQnVfkrhJR+iE2HQMC8W:i8NvUVYlq51KcwR+NoQMRW

Entry address:
0x3F1E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
8 KB (8,192 bytes)

Remove resumo_pendencias.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.