home

f190b3f612a7d495fd1f4f13fd78c4b0.pe

The file f190b3f612a7d495fd1f4f13fd78c4b0.pe has been detected as malware by 40 anti-virus scanners.
MD5:
f190b3f612a7d495fd1f4f13fd78c4b0

SHA-1:
fb4e07448376f4f88d4b56bdbc5e31f4a5585c6b

SHA-256:
b55c2f0a4b45430531f5a5c80aa09b82d7fd3d26a2dcf5df6181348a12e6d442

Scanner detections:
40 / 68

Status:
Malware

Analysis date:
4/19/2024 9:50:48 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
GenPack:Backdoor.Hangup.B
658

Agnitum Outpost
Backdoor.Qukart.C
7.1.1

AhnLab V3 Security
Win-Trojan/Berbew.51712
2015.03.23

Avira AntiVirus
TR/Spy.Qukart.NA
7.11.219.26

avast!
Win32:Malware-gen
2014.9-150418

AVG
BackDoor.Padodor.gen
2016.0.3136

Baidu Antivirus
Trojan.Win32.Qukart
4.0.3.15418

Bitdefender
GenPack:Backdoor.Hangup.B
1.0.20.540

Bkav FE
W32.HfsAutoB
1.3.0.6379

Clam AntiVirus
Trojan.Crypted-29
0.98/21511

Comodo Security
Worm.Win32.Qukart.K
21494

Dr.Web
BackDoor.HangUp.46080
9.0.1.0108

Emsisoft Anti-Malware
GenPack:Backdoor.Hangup
8.15.04.18.09

ESET NOD32
Win32/Spy.Qukart
9.11358

Fortinet FortiGate
W32/Webber.G!tr
4/18/2015

F-Prot
W32/Qukart.F
v6.4.7.1.166

F-Secure
GenPack:Backdoor.Hangup.B
11.2015-18-04_7

G Data
GenPack:Backdoor.Hangup
15.4.25

IKARUS anti.virus
Trojan-Spy.Win32.Qukart
t3scan.1.8.6.0

K7 AntiVirus
Proxy-Program
13.202.15341

Kaspersky
Trojan-Proxy.Win32.Qukart
14.0.0.2173

Malwarebytes
Backdoor.Agent.RDKGen
v2015.04.18.09

McAfee
BackDoor-AXJ.gen
5600.6792

Microsoft Security Essentials
Backdoor:Win32/Berbew.G
1.1.11400.0

MicroWorld eScan
GenPack:Backdoor.Hangup.B
16.0.0.324

NANO AntiVirus
Trojan.Win32.Qukart.dlmpge
0.30.8.659

Norman
Berbew.C
11.20150418

nProtect
Trojan-Proxy/W32.Qukart.46080.WD
15.03.20.01

Panda Antivirus
Bck/Webber.S
15.04.18.09

Qihoo 360 Security
Win32/Trojan.Spy.9e0
1.0.0.1015

Quick Heal
Worm.Dorkbot.A
4.15.14.00

Rising Antivirus
PE:Trojan.Spy.Qukart.gp!1074206427
23.00.65.15416

Sophos
Troj/Padodor-K
4.98

SUPERAntiSpyware
Backdoor.Peed/Variant
9928

Total Defense
Win32/Webber.W
37.0.11507

Trend Micro House Call
BKDR_BERBEW.G
7.2.108

Trend Micro
BKDR_BERBEW.G
10.465.18

Vba32 AntiVirus
Backdoor.Padodor
3.12.26.3

VIPRE Antivirus
BehavesLike.Win32.Malware.ssc (mx-v)
38656

ViRobot
Backdoor.Win32.Berbew.46080[h]
2014.3.20.0

File size:
45 KB (46,080 bytes)

Common path:
C:\users\{user}\downloads\f190b3f612a7d495fd1f4f13fd78c4b0.pe

File PE Metadata
Compilation timestamp:
2/10/2020 6:16:35 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.55

CTPH (ssdeep):
768:Um8E8dq5FGY3sWIQS+xJsxlRMATNcDn76kUqjzTiLfW/1H5:+dqzGysWIQS+xJsxlRfqDnuFqjUf8

Entry address:
0x2E000

Entry point:
90, 90, 90, 60, 90, 90, B8, 00, 10, 40, 00, 90, 90, 90, 6A, 04, 90, 90, 90, 90, 90, 90, 90, 5F, 90, 90, 90, 83, F8, 00, 90, 90, 90, 74, 4F, 90, 90, BB, 6C, 7D, 40, 00, 90, 89, D9, 90, 90, 90, 90, 90, 29, C1, 90, 90, 90, 90, 90, 90, 31, D2, 50, 90, 90, 90, 90, 90, 90, 90, 90, 89, C8, 90, F7, F7, 90, 90, 90, 90, 90, 90, 91, 90, 90, 90, 90, 90, 90, 58, 90, 90, 90, BE, 97, 1D, 82, 68, 90, 90, 31, 30, 90, 90, 90, 90, 01, F8, 90, 90, 90, 90, E2, F0, 90, 90, 90, B8, 00, A0, 42, 00, 90, 83, F8, 00, 90, 90, 74, 52...
 
[+]

Entropy:
6.9376

Code size:
27.5 KB (28,160 bytes)

Remove f190b3f612a7d495fd1f4f13fd78c4b0.pe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.