» rtiq8ipc2
Overview
Analysis
File Details

rtiq8ipc2

Silk

Gain dig - www.Silk.com

The file rtiq8ipc2, “Remove curve grade naturally” has been detected as malware by 20 anti-virus scanners.

File name:

rtiq8ipc2

Publisher:

Gain dig - www.Silk.com

Product:

Silk

Description:

Remove curve grade naturally

Version:

7.0.0.2

MD5:

5432a71030b50cc976207f5ada8ecf72

SHA-1:

14c52be698cf6748c34c7fd7d119bc96be83f768

SHA-256:

92a7be205e6ab2757cfbcebf8d250d4a8f3b40625c2b40cce0099a1c1a23c583

Scanner detections:

20 / 68

Status:

Malware

Analysis date:

4/24/2024 6:15:06 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.GenericKD.2250693

675

AhnLab V3 Security

Trojan/Win32.MDA

2015.03.28

avast!

Win32:Malware-gen

2014.9-150401

AVG

Win32/Cryptor

2016.0.3153

Bitdefender

Trojan.GenericKD.2250693

1.0.20.455

Comodo Security

Backdoor.Win32.Androm.GLT

21558

Emsisoft Anti-Malware

Trojan.GenericKD.2250693

8.15.04.01.07

ESET NOD32

Win32/Filecoder.CO

9.11387

Fortinet FortiGate

W32/Foreign.CO!tr

4/1/2015

F-Secure

Trojan.GenericKD.2250693

11.2015-01-04_4

G Data

Trojan.GenericKD.2250693

15.4.25

Kaspersky

Trojan-Ransom.Win32.Foreign

14.0.0.2258

Malwarebytes

Trojan.Agent.DED

v2015.04.01.07

McAfee

Generic-FAWH!5432A71030B5

5600.6809

MicroWorld eScan

Trojan.GenericKD.2250693

16.0.0.273

Norman

Kryptik.CFAG

11.20150401

nProtect

Trojan.GenericKD.2250693

15.03.27.01

Panda Antivirus

Trj/Genetic.gen

15.04.01.07

Sophos

Mal/Generic-S

4.98

ViRobot

Trojan.Win32.Agent.258560.E[h]

2014.3.20.0

File size:

375.5 KB (384,512 bytes)

Product version:

7.0

Language:

Arabic (Saudi Arabia)

Common path:

C:\users\{user}\appdata\local\temp\rtiq8ipc2

File PE Metadata

Compilation timestamp:

3/26/2015 4:53:41 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

6144:/ZIjEirIjAOA1fCxDteM5Rw9fQvTN7YYAfrP6ExFU/tSSPmcakIMlU0cPm5r:ajEir4mxCxomRwuvTNMYoP6EM/8SPmdQ

Entry address:

0x2723

Entry point:

E8, 18, 6A, 00, 00, E9, 78, FE, FF, FF, B8, 38, 05, 42, 00, C3, A1, 20, BA, 44, 00, 56, 6A, 14, 5E, 85, C0, 75, 07, B8, 00, 02, 00, 00, EB, 06, 3B, C6, 7D, 07, 8B, C6, A3, 20, BA, 44, 00, 6A, 04, 50, E8, C1, 6A, 00, 00, 59, 59, A3, 00, AA, 44, 00, 85, C0, 75, 1E, 6A, 04, 56, 89, 35, 20, BA, 44, 00, E8, A8, 6A, 00, 00, 59, 59, A3, 00, AA, 44, 00, 85, C0, 75, 05, 6A, 1A, 58, 5E, C3, 33, D2, B9, 38, 05, 42, 00, EB, 05, A1, 00, AA, 44, 00, 89, 0C, 02, 83, C1, 20, 83, C2, 04, 81, F9, B8, 07, 42, 00, 7C, EA, 6A... 
[+]

Entropy:

6.8302

Code size:

75.5 KB (77,312 bytes)

Remove rtiq8ipc2 - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.