home

e0a0c193fe7a8ac3b2d9c1311f9e2620.pe

oliere

vigili tenute

The file e0a0c193fe7a8ac3b2d9c1311f9e2620.pe, “Labbra santa perni misere” has been detected as malware by 40 anti-virus scanners.
Publisher:
vigili tenute

Product:
oliere

Description:
Labbra santa perni misere

Version:
4.02.0004

MD5:
e0a0c193fe7a8ac3b2d9c1311f9e2620

SHA-1:
20e569e42ccd4554b2445514c4ddc2fb20a12dad

SHA-256:
860d240af55e34985a8f25e663184c296e3b90436745f431b8e4fa1543c99015

Scanner detections:
40 / 68

Status:
Malware

Analysis date:
4/16/2024 8:06:33 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Symmi.3490
658

Agnitum Outpost
Trojan.Lilu
7.1.1

AhnLab V3 Security
Trojan/Win32.Agent
2015.01.22

Avira AntiVirus
TR/ATRAPS.Gen2
7.11.204.50

avast!
Win32:VBCrypt-AXT [Trj]
2014.9-150418

AVG
SHeur4
2016.0.3136

Baidu Antivirus
Trojan.Win32.Lilu
4.0.3.15418

Bitdefender
Gen:Variant.Symmi.3490
1.0.20.540

Comodo Security
TrojWare.Win32.VB.QMSB
20801

Dr.Web
Trojan.MulDrop3.56923
9.0.1.0108

Emsisoft Anti-Malware
Gen:Variant.Symmi.3490
8.15.04.18.08

ESET NOD32
Win32/VB.QMS
9.11054

Fortinet FortiGate
W32/VBKrypt.MBSX!tr
4/18/2015

F-Prot
W32/VB.KO.gen
v6.4.7.1.166

F-Secure
Gen:Variant.Symmi.3490
11.2015-18-04_7

G Data
Gen:Variant.Symmi.3490
15.4.24

herdProtect (fuzzy)
variant of virussign.com_1ad81fc831e8a8ca7bfd77d0fd4aa2c0.vir
2015.7.19.21

IKARUS anti.virus
Win32.VBCrypt
t3scan.1.8.6.0

K7 AntiVirus
P2PWorm
13.202.15316

Kaspersky
Trojan.Win32.Lilu
14.0.0.2173

Malwarebytes
Backdoor.Agent.SKP
v2015.04.18.08

McAfee
Generic Malware.nv!ats
5600.6792

Microsoft Security Essentials
Worm:Win32/Gamarue.F
1.11302

MicroWorld eScan
Gen:Variant.Symmi.3490
16.0.0.324

NANO AntiVirus
Trojan.Win32.Lilu.dpcerb
0.30.8.659

Norman
Lilu.A
11.20150418

nProtect
Trojan/W32.Lilu.290816
15.03.19.01

Panda Antivirus
Trj/Genetic.gen
15.04.18.08

Qihoo 360 Security
Malware.Radar01.Gen
1.0.0.1015

Quick Heal
Worm.Gamarue.F3
4.15.14.00

Rising Antivirus
PE:Dropper.Vbex!1.9A13
23.00.65.15416

Sophos
Mal/Behav-405
4.98

SUPERAntiSpyware
Trojan.Agent/Gen-Dropper
9928

Total Defense
Win32/Gamarue.HRJIQaC
37.0.11397

Trend Micro House Call
TSPY_VBKRYPT_CA082BF8.TOMC
7.2.108

Trend Micro
TSPY_VBKRYPT_CA082BF8.TOMC
10.465.18

Vba32 AntiVirus
TScope.Trojan.VB
3.12.26.3

VIPRE Antivirus
Worm.Win32.Gamarue.vbqm
36870

ViRobot
Trojan.Win32.A.Lilu.290816[h]
2014.3.20.0

Zillya! Antivirus
Trojan.VB.Win32.93732
2.0.0.2106

File size:
284 KB (290,816 bytes)

Product version:
4.02.0004

Copyright:
siepi voci vegeti

Trademarks:
baveri tracci

Original file name:
rossi.exe

Language:
English (United States)

Common path:
C:\users\{user}\downloads\e0a0c193fe7a8ac3b2d9c1311f9e2620.pe

File PE Metadata
Compilation timestamp:
6/5/2012 6:53:15 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
3072:mSQ0EWVwZhKxC5Rt+k60Zh+qw6PYSsszfHZTZJ2lC:mPA6wxmuJspr2l

Entry address:
0x10B8

Entry point:
68, 40, 11, 40, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 72, 6B, 6F, D9, C8, B3, B9, 4E, A8, 21, 0D, BA, 6F, 67, D7, D7, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 65, 6D, 62, 65, 6C, 6C, 69, 73, 68, 65, 72, 73, 00, 00, 00, 00, 00, 00, 00, 00, 07, 00, 00, 00, 10, 57, 40, 00, 07, 00, 00, 00, C4, 56, 40, 00, 07, 00, 00, 00, 5C, 56, 40, 00, 07, 00, 00, 00, 14, 56, 40, 00, 07, 00, 00, 00, BC, 55, 40, 00, 07, 00, 00, 00, 6C, 55, 40, 00...
 
[+]

Entropy:
4.6484

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
276 KB (282,624 bytes)

Remove e0a0c193fe7a8ac3b2d9c1311f9e2620.pe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.