home

f1bbde13ab10ab38249d2555ba97f0f0.pe

The file f1bbde13ab10ab38249d2555ba97f0f0.pe has been detected as malware by 38 anti-virus scanners.
MD5:
f1bbde13ab10ab38249d2555ba97f0f0

SHA-1:
e755a7291d184836d94b2a73de78efc00332175f

SHA-256:
8dcea1910b498e121005662bff4fa6fd5cb4ca0ed04a8fc964eb2ad791171469

Scanner detections:
38 / 68

Status:
File is infected by a Virus

Explanation:
The file is infected by a polymorphic file infector virus.

Analysis date:
4/18/2024 9:22:33 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Win32.Prepend.Delf.Gen
658

Agnitum Outpost
Trojan.Malex
7.1.1

AhnLab V3 Security
Win32/Delf
2015.04.09

Avira AntiVirus
DR/Delphi.Gen
3.6.1.96

avast!
Win32:Trojan-gen
2014.9-150418

AVG
Worm/Delf
2016.0.3136

Baidu Antivirus
Virus.Win32.Delf
4.0.3.15418

Bitdefender
Win32.Prepend.Delf.Gen
1.0.20.540

Bkav FE
W32.Delfvt.PE
1.3.0.6379

Comodo Security
Virus.Win32.Lamer.KO
21697

Dr.Web
Trojan.KillFiles.8611
9.0.1.0108

Emsisoft Anti-Malware
Win32.Prepend.Delf.Gen
8.15.04.18.09

ESET NOD32
Win32/Delf.NBA
9.11445

Fortinet FortiGate
W32/Delf.DE
4/18/2015

F-Prot
W32/Trojan2.JZZD
v6.4.7.1.166

F-Secure
Win32.Prepend.Delf.Gen
11.2015-18-04_7

G Data
Win32.Prepend.Delf.Gen
15.4.25

IKARUS anti.virus
Trojan-Dropper.Delf
t3scan.1.8.9.0

K7 AntiVirus
Trojan
13.202.15530

Kaspersky
Virus.Win32.Delf
14.0.0.2173

Malwarebytes
Trojan.Agent.KLF
v2015.04.18.09

McAfee
Obfuscated-FBU!hb
5600.6792

Microsoft Security Essentials
Trojan:Win32/Malex.gen!D
1.1.11502.0

MicroWorld eScan
Win32.Prepend.Delf.Gen
16.0.0.324

NANO AntiVirus
Virus.Win32.Lamer.lynhz
0.30.10.952

Norman
Smalltroj.PWXX
11.20150418

nProtect
Win32.Prepend.Delf.Gen
15.04.07.01

Panda Antivirus
W32/Knase.C
15.04.18.09

Qihoo 360 Security
Win32/Virus.0d8
1.0.0.1015

Quick Heal
W32.Fujack.DN
4.15.14.00

Reason Heuristics
Threat.Win.Reputation.IMP
15.4.18.5

Rising Antivirus
PE:Trojan.Delf!1.65A3
23.00.65.15416

Sophos
W32/Belvima-A
4.98

SUPERAntiSpyware
Trojan.Agent/Gen-Kryptik
9928

Total Defense
Win32/Delf.RS
37.0.11539

Vba32 AntiVirus
BScope.Backdoor.Alusinus
3.12.26.3

VIPRE Antivirus
Trojan.Win32.Generic
39184

Zillya! Antivirus
Virus.Delf.Win32.47
2.0.0.2132

File size:
970.1 KB (993,391 bytes)

Common path:
C:\users\{user}\downloads\f1bbde13ab10ab38249d2555ba97f0f0.pe

File PE Metadata
Compilation timestamp:
6/19/1992 3:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:rjS3Yvyn/0TQIW5EykhXG5RzXsqo6lzVNp:ru3Y5EE05d1o6lp

Entry address:
0x6034

Entry point:
55, 8B, EC, 83, C4, F0, B8, DC, 5F, 40, 00, E8, 80, E3, FF, FF, E8, 37, FC, FF, FF, E8, 82, FD, FF, FF, E8, 51, EA, FF, FF, B8, 80, 60, 40, 00, E8, B7, F3, FF, FF, B8, 8C, 60, 40, 00, E8, AD, F3, FF, FF, B8, 98, 60, 40, 00, E8, A3, F3, FF, FF, E8, AA, D7, FF, FF, 00, 00, FF, FF, FF, FF, 03, 00, 00, 00, 43, 3A, 5C, 00, FF, FF, FF, FF, 03, 00, 00, 00, 44, 3A, 5C, 00, FF, FF, FF, FF, 07, 00, 00, 00, 45, 3A, 5C, 54, 65, 6D, 70, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.8125

Developed / compiled with:
Microsoft Visual C++

Code size:
20.5 KB (20,992 bytes)

Remove f1bbde13ab10ab38249d2555ba97f0f0.pe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.