home

róka rudi a balatonon.exe

The executable róka rudi a balatonon.exe has been detected as malware by 8 anti-virus scanners.
MD5:
6ec3b99aafe8154040887e5486e78355

SHA-1:
fb9a8333aebda484d1edb7ba73fe4d17420f866f

SHA-256:
1bdba294dc891545f3a111b65c83e313cba8347bf1f2a94b463bc5461f6b0397

Scanner detections:
8 / 68

Status:
Malware

Analysis date:
4/20/2024 1:31:43 AM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
Backdoor.Hupigon
7.1.1

Baidu Antivirus
Backdoor.Win32.Gpigeon2010
4.0.3.1491

Bkav FE
W32.Clodbc4.Trojan
1.3.0.4959

Comodo Security
Backdoor.Win32.Hupigon.70
17863

McAfee
Artemis!6EC3B99AAFE8
5600.7021

Reason Heuristics
Threat.Win.Reputation.IMP
14.9.2.16

Rising Antivirus
PE:Backdoor.Win32.Gpigeon2010.wh!1075329345
23.00.65.14830

Zillya! Antivirus
Backdoor.Hupigon.Win32.155766
2.0.0.1822

File size:
10.8 MB (11,329,566 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:y1ktLG3oI1YyM/kQ0BX3tAwsd+cYhL65NAH+8XvwuuzjaHzcdRfuENmqNOajsg:y1FM/DwtAwnN6QH+owTjaTcjfuErNxjd

Entry address:
0xAE001

Entry point:
60, E8, 03, 00, 00, 00, E9, EB, 04, 5D, 45, 55, C3, E8, 01, 00, 00, 00, EB, 5D, BB, ED, FF, FF, FF, 03, DD, 81, EB, 00, E0, 0A, 00, 83, BD, 22, 04, 00, 00, 00, 89, 9D, 22, 04, 00, 00, 0F, 85, 65, 03, 00, 00, 8D, 85, 2E, 04, 00, 00, 50, FF, 95, 4D, 0F, 00, 00, 89, 85, 26, 04, 00, 00, 8B, F8, 8D, 5D, 5E, 53, 50, FF, 95, 49, 0F, 00, 00, 89, 85, 4D, 05, 00, 00, 8D, 5D, 6B, 53, 57, FF, 95, 49, 0F, 00, 00, 89, 85, 51, 05, 00, 00, 8D, 45, 77, FF, E0, 56, 69, 72, 74, 75, 61, 6C, 41, 6C, 6C, 6F, 63, 00, 56, 69, 72...
 
[+]

Packer / compiler:
ASPack v2.12

Code size:
496.5 KB (508,416 bytes)

Remove róka rudi a balatonon.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.