» server info by windows hacker.exe
Overview
Analysis
File Details

server info by windows hacker.exe

Servers Info By Windows Hacker

The executable server info by windows hacker.exe has been detected as malware by 12 anti-virus scanners. This backdoor trojan may be used to conduct distributed denial of service attacks, or used to install additional trojans or other forms of malicious software as well as can steal your sensitive information.

File name:

Product:

Servers Info By Windows Hacker

Version:

1.0.0.0

MD5:

5c2a30eea2fd212da0dd239d7f492395

SHA-1:

8d7d6dbdf8b82454bf042553cb92014a645f5fae

SHA-256:

7812220715ed39e8d7ce8b97e9b5e6d3f3f0fa13b15aa61c46805cfc5b19d0b4

Scanner detections:

12 / 68

Status:

Malware

Analysis date:

5/4/2024 3:34:29 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Barys.7755

896

Avira AntiVirus

TR/Dropper.Gen

7.11.30.172

avast!

Win.Threat.Undefined

140813-1

Dr.Web

Trojan.Fsysna.7287

9.0.1.05190

ESET NOD32

MSIL/Bladabindi.O trojan

7.0.302.0

Fortinet FortiGate

MSIL/Agent.AFY!tr

8/22/2014

F-Secure

Gen:Variant.Barys.9279

11.2014-22-08_6

IKARUS anti.virus

Win32.SuspectCrc

t3scan.1.7.5.0

Kaspersky

HEUR:Trojan.Win32.Generic

14.0.0.3366

Microsoft Security Essentials

Backdoor:MSIL/Bladabindi.AA

1.10904

MicroWorld eScan

Gen:Variant.Barys.7755

15.0.0.702

Rising Antivirus

PE:Backdoor.MSIL.Bladabindi!1.9DE6

23.00.65.14820

File size:

178.5 KB (182,784 bytes)

Product version:

1.0.0.0

Original file name:

Servers Info By Windows Hacker.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

File PE Metadata

Compilation timestamp:

7/28/2014 10:05:02 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

3072:QwgmB2zFGgqCfp4M1GemzOfYsI8hCQdvMaQ+bjN:51+RmzEptj

Entry address:

0x195EE

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 1E, F6, D5, 53, 00, 00, 00, 00, 02, 00, 00, 00, 9A, 00, 00, 00, 1C, A0, 01, 00, 1C, 7A, 01, 00, 52, 53, 44, 53, F4, A6, B8, E5, 5C, 44, 77, 41, 94, 38, 09, 24, D8, 8E, 57, 4C, 01, 00, 00, 00, 43, 3A, 5C, 55, 73, 65, 72, 73, 5C, 61, 64, 6D, 69, 6E, 5C, 41, 70, 70, 44, 61, 74, 61, 5C, 4C, 6F, 63, 61, 6C, 5C, 54, 65, 6D, 70, 6F, 72, 61, 72, 79, 20, 50, 72, 6F, 6A, 65, 63, 74, 73, 5C, 53, 65, 72, 76, 65, 72, 73, 20, 49, 6E... 
[+]

Entropy:

6.5393

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

93.5 KB (95,744 bytes)

Remove server info by windows hacker.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.