home

server.exe

The executable server.exe has been detected as malware by 40 anti-virus scanners.
MD5:
44d30e637e30d008129114f35f3a1ad8

SHA-1:
227c759d0affa075eb01cc6efdf22c86223853bb

SHA-256:
6f039672901d5d1c8e0a57f42b87b17b36463d8d9d3f52660b0d570bf16da94d

Scanner detections:
40 / 68

Status:
Malware

Analysis date:
4/25/2024 7:37:25 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Backdoor.Bifrose.ACI
1022

Agnitum Outpost
Trojan.Agent
7.1.1

AhnLab V3 Security
Win-Trojan/Bifrose.27517.AE
2014.01.26

Avira AntiVirus
BDS/Bifrose.aci.352
7.11.127.52

avast!
Win32:Bifrose-AAX [Trj]
2014.9-140418

AVG
BackDoor.Generic12
2015.0.3500

Baidu Antivirus
Backdoor.Win32.Bifrose
4.0.3.14418

Bitdefender
Backdoor.Bifrose.ACI
1.0.20.540

Bkav FE
W32.GenericBifroseFamLS
1.3.0.4923

Clam AntiVirus
Trojan.Bifrose-705
0.98/18155

Comodo Security
Backdoor.Win32.Bifrose.NBB
17671

Dr.Web
BackDoor.Bifrost.569
9.0.1.0108

Emsisoft Anti-Malware
Backdoor.Bifrose.ACI
8.14.04.18.12

ESET NOD32
Win32/Bifrose.ACI
8.9336

Fortinet FortiGate
W32/Bifrose.BBT!tr
4/18/2014

F-Prot
W32/Backdoor.WBI
v6.4.7.1.166

F-Secure
Backdoor.Bifrose.ACI
11.2014-18-04_6

G Data
Backdoor.Bifrose.ACI
14.4.24

IKARUS anti.virus
Backdoor.Win32.Bifrose
t3scan.2.2.29

K7 AntiVirus
Backdoor
13.175.10963

Kaspersky
Backdoor.Win32.Bifrose
14.0.0.3997

Malwarebytes
Malware.Packer.Gen
v2014.04.18.12

McAfee
Backdoor-CEP.gen.f
5600.7156

Microsoft Security Essentials
Backdoor:Win32/Bifrose
1.165.247.01

MicroWorld eScan
Backdoor.Bifrose.ACI
15.0.0.324

NANO AntiVirus
Trojan.Win32.Bifrose.ijiag
0.28.0.57380

Norman
Bifrose.CHBA
11.20140418

nProtect
Backdoor/W32.Bifrose.27549.D
14.01.25.01

Panda Antivirus
Bck/Bifrose.AIO
14.04.18.12

Qihoo 360 Security
Malware.QVM06.Gen
1.0.0.1015

Quick Heal
Backdoor.Bifrose.aci.n1
4.14.12.00

Rising Antivirus
PE:Backdoor.Bifrose.ead!1074766785
23.00.65.14416

Sophos
Troj/Bifrose-UP
4.97

SUPERAntiSpyware
Trojan.Agent/Gen-BiFrose
10658

Total Defense
Win32/Bifrose.TY
37.0.10498

Trend Micro House Call
BKDR_BIFROSE.AQR
7.2.108

Trend Micro
BKDR_BIFROSE.AQR
10.465.18

Vba32 AntiVirus
Malware-Cryptor.Inject.gen
3.12.24.3

VIPRE Antivirus
Backdoor.Win32.Bifrose.aci
25786

ViRobot
Backdoor.Win32.Bifrose.25000
2011.4.7.4223

File size:
26.9 KB (27,549 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
12/1/2006 8:03:19 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
384:ABiuVkeLtFA7IJyY1ou/1fTE4iggeFW8tJI5LKd9CR7Zs2UjAR2B1n5HsWOsL:4VzTAI319fmgDbTIpKd9als2OACyp+

Entry address:
0x74A1

Entry point:
55, 8B, EC, 83, EC, 44, 56, FF, 15, 10, 10, 40, 00, 8B, F0, 8A, 06, 3C, 22, 75, 14, 8A, 46, 01, 46, 84, C0, 74, 04, 3C, 22, 75, F4, 80, 3E, 22, 75, 0D, 46, EB, 0A, 3C, 20, 7E, 06, 46, 80, 3E, 20, 7F, FA, 8A, 06, 84, C0, 74, 04, 3C, 20, 7E, E9, 83, 65, E8, 00, 8D, 45, BC, 50, FF, 15, 0C, 10, 40, 00, E8, 5D, 00, 00, 00, 68, 24, 10, 40, 00, 68, 20, 10, 40, 00, E8, 34, 00, 00, 00, F6, 45, E8, 01, 59, 59, 74, 06, 0F, B7, 45, EC, EB, 03, 6A, 0A, 58, 50, 56, 6A, 00, 6A, 00, FF, 15, 04, 10, 40, 00, 50, E8, C6, FE...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
26 KB (26,624 bytes)

Remove server.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.