» Stub.exe
Overview
Analysis
File Details

Stub.exe

Microsoft.net

The executable Stub.exe has been detected as malware by 20 anti-virus scanners.

File name:

Stub.exe

Publisher:

Microsoft.net

Product:

Microsoft.net

Version:

5.0.0.0

MD5:

31c02573af38b69c1adb8970e9376b9d

SHA-1:

e216d996f2dc9ebb8c9127a650431be3ffde5938

SHA-256:

8f2cee9f60fee782557855526a6e06fb84cd00ceab09c71fbccba215c6ef41c7

Scanner detections:

20 / 68

Status:

Malware

Analysis date:

4/24/2024 11:40:23 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.Generic.9015675

925

Avira AntiVirus

TR/ATRAPS.Gen

7.11.132.168

avast!

Win32:Malware-gen

2014.9-140725

AVG

Dropper.Generic8

2015.0.3403

Bitdefender

Trojan.Generic.9015675

1.0.20.1030

Clam AntiVirus

WIN.Trojan.Agent-320776

0.98/18355

Emsisoft Anti-Malware

Trojan.Generic.9015675

8.14.07.25.08

ESET NOD32

MSIL/Spy.Agent.QN (variant)

8.9443

Fortinet FortiGate

MSIL/Agent.NRZX!tr

7/25/2014

F-Secure

Trojan.Generic.9015675

11.2014-25-07_6

G Data

Trojan.Generic.9015675

14.7.24

IKARUS anti.virus

Trojan.SuspectCRC

t3scan.2.2.29

Kaspersky

HEUR:Trojan.Win32.Generic

14.0.0.3508

Malwarebytes

Trojan.Downloader.CH

v2014.07.25.08

Microsoft Security Essentials

Backdoor:MSIL/Bladabindi.G

1.10302

MicroWorld eScan

Trojan.Generic.9015675

15.0.0.618

nProtect

Trojan.Generic.9015675

14.02.19.01

Panda Antivirus

Trj/dtcontx.I

14.07.25.08

Rising Antivirus

PE:Backdoor.MSIL.Bladabindi!1.9E49

23.00.65.14723

Vba32 AntiVirus

TScope.Trojan.MSIL

3.12.24.3

File size:

274 KB (280,576 bytes)

Product version:

5.0.0.0

Trademarks:

Microsoft.net

Original file name:

Stub.exe

File type:

Executable application (Win32 EXE)

Language:

Turkish (Turkey)

Common path:

C:\users\{user}\appdata\local\temp\stub.exe

File PE Metadata

Compilation timestamp:

3/28/2013 2:46:27 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

6144:R1ltAHKZRX9YmuVeopnGh4zRZ/FZRK3MX2UjwF:s1V5+IJFZM2z

Entry address:

0x2B842

Entry point:

FF, 25, 50, B8, 42, 00, 00, 00, 00, 00, 00, 00, 00, 00, 24, B8, 02, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Code size:

166.5 KB (170,496 bytes)

Remove Stub.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.