home

truetransset.exe

The executable truetransset.exe, “Sky123.Org - TrueTransSet” has been detected as malware by 13 anti-virus scanners.
Description:
Sky123.Org - TrueTransSet

Version:
1.0.0.12

MD5:
92885a9d927ff9e73dfb61d287a5cb1b

SHA-1:
bce448300144b26db6b836696a54d7939ed91206

SHA-256:
ea76c62964d919bae1b999b956bdb38ffcaa9cf1484bbc4122c8b48aab85f6a9

Scanner detections:
13 / 68

Status:
Malware

Analysis date:
4/20/2024 2:58:36 AM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
Worm.Autoit.Gen
7.1.1

avast!
Win32:Malware-gen
2014.9-141122

AVG
Worm/Autoit
2015.0.3282

Bkav FE
W32.Cloda9a.Trojan
1.3.0.4959

ESET NOD32
Win32/Packed.Autoit.E.Gen
8.9639

Fortinet FortiGate
W32/Dx.VZP!tr
11/22/2014

G Data
Win32.Trojan.Agent.HMKP5W
14.11.24

IKARUS anti.virus
Worm.Win32.AutoIt
t3scan.2.2.29

McAfee
Artemis!92885A9D927F
5600.6938

Norman
Suspicious_Gen2.MEPZN
11.20141122

Sophos
Generic PUA LM
4.98

Vba32 AntiVirus
Trojan.Autoit.F
3.12.26.0

VIPRE Antivirus
Trojan.Win32.Generic
28090

File size:
321.9 KB (329,615 bytes)

Copyright:
Skyfree

File type:
Executable application (Win32 EXE)

Language:
Chinese (Simplified, PRC)

Common path:
C:\Program Files\msbuild\es\es\files\truetransset.exe

File PE Metadata
Compilation timestamp:
12/24/2008 4:00:07 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6144:qlZ/zUMu4pDSxsCMRzf7x3SfS1JAzXBtL76wdOzj9kq5LHml6:qHLUMuiv9RgfSjAzRt7dajO4Hr

Entry address:
0xAE2E0

Entry point:
60, BE, 00, F0, 46, 00, 8D, BE, 00, 20, F9, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 75, D1, F8, 89...
 
[+]

Entropy:
7.8083

Packer / compiler:
UPX 2.90LZMA

Code size:
256 KB (262,144 bytes)

Remove truetransset.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.