home

Feniks Tekhniks, TOV

Publisher Information

Feniks Tekhniks, TOV is a software publisher located in Kryzhanivka, Odeska in Ukraine*. Thre are 2 additional code signing certificates issued to this publisher.
Authority:
COMODO CA Limited

Valid from:
8/17/2016 3:00:00 AM

Valid to:
7/23/2017 2:59:59 AM

Subject:
CN="Feniks Tekhniks, TOV", OU=IT, O="Feniks Tekhniks, TOV", STREET="vul. Paustovskoho, 37", L=Kryzhanivka, S=Odeska, PostalCode=67562, C=UA

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
5c81c3a71c4d60f7af7fbce11853b06a

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP (M), PUP.DLHelper
100.00%

1 / 68      (Malware)
2atitle2a.exe  (e3613f206823ca486e3510626fd25b7e)

1 / 68      (Malware)
idlyhiraysjo.exe  (dccf3daabc19387d3649607fc91097f3)

1 / 68      (Malware)
obduction-codex.exe  (735ef8cac94d0283238da36cf8954373)

1 / 68      (Malware)
sims-4.exe  (cefc70864e18cc32712ca3c8a25d330e)

1 / 68      (Malware)
nero-ekspress-skachat-nero-express-dlya-windows-7.exe  (c980be2fec43a018e9dc4504ed2896b5)

1 / 68      (Malware)
video7_8.exe  (d6bbe5a1c043c37cf65b604dbf8aec54)

1 / 68      (Malware)
vlasov-suk-p-8.ukr-007-16-s.pdf.exe  (45d293d128ecc5c0bcf973caad960037)

1 / 68      (Malware)
opera.exe  (a4d27e0a251f1fe2d532fd35ce3c8fb5)

1 / 68      (Malware)
94f5c6f3-eed1-29a8-18e8-2a827c384646_1d2011e120ff3c3  (433940b638345e436f37bec69e35dad2)

1 / 68      (Malware)
bundle270816205316z.exe  (0cbf7dbbc001ed1d49a8199dec3b536c)

1 / 68      (PUP)
bundle270816171513z.exe  (8270975719e4bcc479de02886674ffec)

1 / 68      (Malware)
pdltki-mutanti-cherepashki-nndzya-2-2016.exe  (57a860609c1e9a37ccbcd03df2dd6750)

1 / 68      (Malware)
thesims-3.exe  (9f617afaef12ab11d286a786e34eda3d)

1 / 68      (Malware)
nero-ekspress-skachat-nero-express-dlya-windows-7.exe  (8991b133e9fb6966cc0f547824d9672e)

1 / 68      (Malware)
jvqggnfl.exe  (55ce58c5f8b7f4ad7b2b27c107686ba7)

1 / 68      (Malware)
sanktum-3d-vertikalnaya-anamorfnaya-stereopara--sanctum-3d-half-overunder-alister-grirson-2010-trill  (79eb223ccc9b05203f17dad18a6c1ceb)

1 / 68      (Malware)
nakrutkavarbaxovwarface-2016.vbs.exe  (d8d44b3b0cf284cb8d68321e37a4a640)

1 / 68      (Malware)
prezentatcya-mi--natcya-dina.-pershiy-urok--rozumaka.exe (by Microsoft)  (c0e685f760dc6f594be7f265e2db0d0d)

1 / 68      (Malware)
konspekt-uroku-na-temu-chim-mozhe-pishatis-ukranetc.-pershiy-urok-2015-2016-n.r.--rozumaka.exe (by Microsoft)  (06adc1c900348e6f41ac64591601c064)

1 / 68      (Malware)
query.exe  (01ba04d0d590584aeb92b987db2e9565)

1 / 68      (Malware)
until-dawn-2015.exe  (e825bb6d87a7c0399e7398cf1de10976)

1 / 68      (Malware)
mwmvaywrg87m9.exe  (bab1f907409f4c21d733801d9a624c97)

1 / 68      (Malware)
shrift-kassovogo-apparata-merkuriy-114.exe (by Microsoft)  (f30917c6e4f57c4da3ca52809cdecd6e)

1 / 68      (Malware)
bundle270816103401z.exe  (2250e574e79fb46954cfd4187e5ff112)

1 / 68      (Malware)
bundle270816100538z.exe  (6499cd334e7aef1d0b9544f860cc3d37)

1 / 68      (Malware)
lednikovyj.period.stolknovenie.neizbezhno-2016.avi.exe  (8e2d07fda7edce13f7e9fea4d39cb532)

1 / 68      (Malware)
lednikovyj.period.stolknovenie.neizbezhno-2016.avi.exe  (cc9ae075f01e5e00037e50b390c23094)

1 / 68      (Malware)
gmt-max.org-elite-dangerous.exe  (246ee8d9efdcc41f23eaf587788eb369)

1 / 68      (Malware)
bundle260816151149z.exe  (0447dcf824949aabc233ac625f587596)

1 / 68      (Malware)
setup.exe  (7f2a44c197a015b8718289a393161301)

 
Latest 30 of 377 files

Downloads URLs for files signed by Feniks Tekhniks, TOV.

1 / 68      (Malware)
http://strangegamesattack.ru/1472312148282229533/sims-4/.../  (sims-4.exe)

1 / 68      (Malware)
http://glue-tech.com/files/bundles/.../b9705.exe  (d46f08126c30a7cfda4f1521527e7725)

1 / 68      (Malware)
http://glue-tech.com/files/bundles/.../c9d63.exe  (0447dcf824949aabc233ac625f587596)

1 / 68      (Malware)
http://glue-tech.com/files/bundles/.../c9d63.exe  (6245392eef4c0c5536ddf59ce42cd02d)

The certificates below are also signed by Feniks Tekhniks, TOV.

00DDACFDE75A821FDE69314D858A702384  (Jul 22, 2016 to Jul 23, 2017)

00ECFC08CCA71C4B36FF9DE8DC7CEF8E9B  (Oct 26, 2016 to Jul 23, 2017)

* Note, the details and description above are based on the code signing digital signature issued to Feniks Tekhniks, TOV by COMODO CA Limited on August 17, 2016 with the serial number '5c81c3a71c4d60f7af7fbce11853b06a'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.