» sssf82.tmp
Overview
Analysis
File Details

sssf82.tmp

The file sssf82.tmp has been detected as malware by 30 anti-virus scanners.

File name:

sssf82.tmp

MD5:

577b3359f6ff9e7c3311d23bbbdeadca

SHA-1:

6633420b5112c773977ffbc4da0cfd8d36e565f5

SHA-256:

963448033fd8c7b0cdf1bb816fc47713b8a51ebf963f252602f446a826c08dc7

Scanner detections:

30 / 68

Status:

Malware

Analysis date:

4/16/2024 7:46:29 AM UTC (today)

Scan engine

Detection

Engine version

Agnitum Outpost

Backdoor.Pushdo

7.1.1

AhnLab V3 Security

Backdoor/Win32.Pushdo

2013.08.19

Avira AntiVirus

TR/Dldr.Cutwail.BS.168

7.11.97.40

avast!

Win32:Downloader-TZE [Trj]

2014.9-140922

AVG

Crypt2

2015.0.3343

Bitdefender

Trojan.GenericKDV.1139558

1.0.20.1325

Comodo Security

Heur.Suspicious

16788

Emsisoft Anti-Malware

Trojan.GenericKDV.1139558

8.14.09.22.12

ESET NOD32

Win32/Kryptik.BGRT (variant)

8.8701

Fortinet FortiGate

W32/Pushdo.YOY!tr

9/22/2014

F-Secure

Trojan.GenericKDV.1139558

11.2014-22-09_2

G Data

Trojan.GenericKDV.1139558

14.9.22

IKARUS anti.virus

Trojan-Downloader.Win32.Cutwail

t3scan.2.0.127

K7 AntiVirus

Riskware

13.170.9312

Kaspersky

Backdoor.Win32.Pushdo

14.0.0.3212

Malwarebytes

Backdoor.Pushdo

v2014.09.22.12

McAfee

RDN/Generic BackDoor!si

5600.6999

Microsoft Security Essentials

TrojanDownloader:Win32/Cutwail.BS

1.163.1557.0

MicroWorld eScan

Trojan.GenericKDV.1139558

15.0.0.795

NANO AntiVirus

Trojan.Win32.Pushdo.cadtop

0.26.0.53954

Norman

Cutwail.BUN

11.20140922

nProtect

Backdoor/W32.Pushdo.44544.B

13.08.16.03

Panda Antivirus

Trj/CI.A

14.09.22.12

Quick Heal

TrojanDownloader.Cutwail

9.14.12.00

Sophos

Mal/Generic-S

4.91

SUPERAntiSpyware

Trojan.Agent/Gen-Kryptik

10344

Trend Micro House Call

TROJ_GEN.R0CCH01H713

7.2.265

Trend Micro

BKDR_PUSHDO.SMP

10.465.22

Vba32 AntiVirus

Backdoor.Pushdo

3.12.22.3

VIPRE Antivirus

Trojan.Win32.Generic

20652

File size:

43.5 KB (44,544 bytes)

Common path:

C:\users\{user}\appdata\local\temp\sssf82.tmp

File PE Metadata

Compilation timestamp:

2/2/2009 5:55:14 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

5.12

CTPH (ssdeep):

768:yvoWc2oi0iTKaJJ03dmp3CXbKS9sEJtsOJ3NZRipTFHN:AoM5ma03d7Xb9sEwOPZRi1FHN

Entry address:

0x1000

Entry point:

6A, 00, E8, 2B, 04, 00, 00, A3, 54, 34, 40, 00, B9, DC, 20, 66, 00, 60, 68, 38, 34, 40, 00, E8, 1C, 04, 00, 00, 33, C3, 90, F7, E6, 85, C2, 57, 90, 5E, 61, E2, E8, 68, 00, 20, 00, 00, 90, 6A, 00, 85, C0, 6A, 00, 33, C3, 6A, 00, B9, 00, 00, 00, 00, 68, E1, 00, 00, 00, 90, FF, 35, 54, 34, 40, 00, 50, 5B, 6A, 00, 6A, 00, 68, 1F, 30, 40, 00, E8, E4, 03, 00, 00, 68, 1F, 30, 40, 00, E8, CE, 03, 00, 00, 68, 39, 30, 40, 00, 50, E8, 65, 00, 00, 00, 33, FF, 8B, F8, FF, D7, A3, 44, 34, 40, 00, 68, 04, 30, 40, 00, B8... 
[+]

Entropy:

7.0881

Packer / compiler:

TASM / MASM

Code size:

1.5 KB (1,536 bytes)

Remove sssf82.tmp - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.