home

sbportscanner.sb

ScrapeBox Port Scanner

Guenter Kraemer

The file sbportscanner.sb has been detected as malware by 9 anti-virus scanners.
Publisher:
Softtouch Software Design  (signed by Guenter Kraemer)

Product:
ScrapeBox Port Scanner

Version:
1.0.0.4

MD5:
2f4b16944985e360889c5e83e9398a5d

SHA-1:
7c9c302b93ed27e83d74abd9b8eda9687436ef4d

SHA-256:
2fcb6dce52c3ca55e7aecb4d7519c2b6496a8597d665935ce57592f4dfefb4d8

Scanner detections:
9 / 68

Status:
Malware

Analysis date:
4/26/2024 8:55:53 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Graftor.Elzob.20425
855

Agnitum Outpost
Packed/PECompact
7.1.1

Bitdefender
Gen:Variant.Graftor.Elzob.20425
1.0.20.1375

Emsisoft Anti-Malware
Gen:Variant.Graftor.Elzob.20425
8.14.10.02.10

F-Secure
Gen:Variant.Graftor.Elzob.20425
11.2014-02-10_5

G Data
Gen:Variant.Graftor.Elzob.20425
14.10.24

IKARUS anti.virus
Win32.SuspectCrc
t3scan.1.6.1.0

MicroWorld eScan
Gen:Variant.Graftor.Elzob.20425
15.0.0.825

Rising Antivirus
PE:Trojan.Win32.Generic.15FED23A!369021498
23.00.65.14930

File size:
495.7 KB (507,568 bytes)

Product version:
1.0.0.0

Copyright:
(C)2010-2012 Softtouch Software Design

Original file name:
sbportscanner.exe

Language:
English (United States)

Digital Signature
Signed by:
Guenter Kraemer

Authority:
COMODO CA Limited

Valid from:
4/24/2012 3:00:00 AM

Valid to:
4/25/2013 2:59:59 AM

Subject:
CN=Guenter Kraemer, O=Guenter Kraemer, STREET=29 Paseo Anabelle, L=Cebu City, S=Cebu, PostalCode=6000, C=PH

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
3B6E278BF83B442812C49661DB19A57E

File PE Metadata
Compilation timestamp:
9/29/2012 3:06:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:DBF4Pr4LpJQRcKxgUeX8fTkGqH6q0BVvm3HHyyoQLplmNoH3A:DT4PrenKxHeMf83YQyyoQLplmCQ

Entry address:
0x1000

Entry point:
B8, 78, A5, 54, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, 13, 5F, AC, 93, F6, DA, 0E, 4A, 3E, 62, 1D, 64, 84, 49, A8, 0C, 99, B2, F5, 69, 35, D4, 52, AF, E7, 82, B9, EB, DF, 2D, 1B, DD, 5F, 55, ED, BE, 51, CB, BA, 79, 06, CE, B9, 06, C3, 57, 03, D8, 92, 66, 83, 3E, 63, CF, BF, AD, A3, E9, EF, F3, 52, AE, 0A, A5, DF, 59, 93, 9E, CE, E4, D8, D0, 15, 4F, 3E, 32, F6, F9, 2A, 83, D0, 95, A4, 50, B5, 67, D6, DD, 48, 2C, 15, 57, 27...
 
[+]

Entropy:
7.9402

Packer / compiler:
PECompact v2

Code size:
970.5 KB (993,792 bytes)

Remove sbportscanner.sb - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.