home

베어 TooL.exe

Project1

nhuttan.studio@gmail.com

The executable 베어 TooL.exe has been detected as malware by 17 anti-virus scanners.
Publisher:
nhuttan.studio@gmail.com

Product:
Project1

Version:
1.00

MD5:
2b4bb3362e9c48b01c1ba11e9595e390

SHA-1:
2cf08a825743cb399cd5e7135a130489dd13a771

SHA-256:
775b3d13b8708542ab12a629b2a6ed748f7977fceb50c0b72b12de5f444ab106

Scanner detections:
17 / 68

Status:
Malware

Analysis date:
4/16/2024 9:03:40 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Dropper.Gen
7.11.56.52

avast!
Win32:Crypt-KOW [Trj]
2014.9-140424

AVG
Dropper.Generic7
2015.0.3494

Bitdefender
Gen:Variant.Barys.1548
1.0.20.570

Emsisoft Anti-Malware
Gen:Variant.Barys.1548
8.14.04.24.12

F-Prot
W32/Virut.AI!Generic
v6.4.6.5.141

F-Secure
Gen:Variant.Barys.1548
11.2014-24-04_5

G Data
Gen:Variant.Barys.1548
14.4.22

IKARUS anti.virus
Trojan.Backdoor.Bifrose
t3scan.1.3.5.0

Malwarebytes
HackTool.Agent
v2014.04.24.12

McAfee
Artemis!2B4BB3362E9C
5600.7150

MicroWorld eScan
Gen:Variant.Barys.1548
15.0.0.342

Norman
W32/Suspicious_Gen5.IIUN
11.20140424

Panda Antivirus
Trj/CI.A
14.04.24.12

Trend Micro House Call
TROJ_GEN.RCBZ7KQ
7.2.114

Trend Micro
TROJ_GEN.RCBZ7KQ
10.465.24

VIPRE Antivirus
Trojan.Win32.Generic
14966

File size:
4 MB (4,216,430 bytes)

Product version:
1.00

Original file name:
베어 TooL.exe

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
9/6/2007 12:33:49 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:/o+26qI4wo6LYxlKryJ15oNbzcImUPfFWYvIfq3GowPoBo9o8oNE:54xd/Kr+1WNbzcI1fFWYv0s

Entry address:
0x1154

Entry point:
68, 90, 6C, 7D, 00, E8, F0, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 78, A4, 30, F5, 04, 13, C4, 42, A0, ED, DA, 50, BE, B6, 21, 4B, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 50, 72, 6F, 6A, 65, 63, 74, 31, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, FF, CC, 31, 00, 0F, C8, 0F, AE, 89, 38, CB, 3F, 4B, A2, A4, 73, D4, 10, 89, 74, 64, A8, 4A, 83, A6, A5, BD, 1B, 44, 8A, 97, E9, 15, D7, E5, 4A, D3, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00...
 
[+]

Entropy:
7.9314

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
3.9 MB (4,137,984 bytes)

Remove 베어 TooL.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.