» vkill.exe
Overview
Analysis
File Details

vkill.exe

Abdul-Majeed K. Sulaiman

The application vkill.exe by Abdul-Majeed K. Sulaiman has been detected as a potentially unwanted program by 20 anti-malware scanners.

File name:

vkill.exe

Publisher:

Abdul-Majeed K. Sulaiman (signed and verified)

MD5:

2d2be4c0fc3fbad5855cddd77ae22b82

SHA-1:

5469014a795fd8f8a4804cbea971df337ae8fff9

SHA-256:

001a2421953dcf950a562da5a58560c495efe6678987baffffa91700f82140db

Scanner detections:

20 / 68

Status:

Potentially unwanted

Analysis date:

4/19/2024 10:16:01 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.Generic.7987470

566

Agnitum Outpost

Riskware.Killer

7.1.1

Arcabit

Trojan.Generic.D79E10E

1.0.0.425

AVG

Win32/DH{gRKBEwA1HhMXGA}

2016.0.3044

Baidu Antivirus

Hacktool.Win32.Killer

4.0.3.15719

Bitdefender

Trojan.Generic.7987470

1.0.20.1000

Comodo Security

UnclassifiedMalware

22803

Dr.Web

Trojan.KillProc.19387

9.0.1.0200

Emsisoft Anti-Malware

Trojan.Generic.7987470

8.15.07.19.12

F-Secure

Trojan.Generic.7987470

11.2015-19-07_1

G Data

Trojan.Generic.7987470

15.7.25

IKARUS anti.virus

Trojan.SuspectCRC

t3scan.1.9.5.0

Kaspersky

not-a-virus:RiskTool.Win32.Killer

14.0.0.1715

McAfee

Artemis!2D2BE4C0FC3F

5600.6700

MicroWorld eScan

Trojan.Generic.7987470

16.0.0.600

NANO AntiVirus

Trojan.Win32.AntiAV.coecba

0.30.24.2487

nProtect

Trojan.Generic.7987470

15.07.17.01

Qihoo 360 Security

Win32/Virus.RiskTool.248

1.0.0.1015

Quick Heal

RiskTool.Killer.r4 (Not a Virus)

7.15.14.00

Rising Antivirus

PE:Trojan.Win32.Generic.137A6C68!326790248

23.00.65.15717

File size:

375.8 KB (384,848 bytes)

File type:

Executable application (Win32 EXE)

Digital Signature

Signed by:

Abdul-Majeed K. Sulaiman

Authority:

DigiCert Inc

Valid from:

12/23/2011 1:00:00 AM

Valid to:

1/4/2013 1:00:00 PM

Subject:

CN=Abdul-Majeed K. Sulaiman, O=Abdul-Majeed K. Sulaiman, L=Shuhadaa, C=KW

Issuer:

CN=DigiCert Assured ID Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:

03252B3BB9CB5DD059F9FB15D4640065

File PE Metadata

Compilation timestamp:

2/25/2011 6:11:31 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

CTPH (ssdeep):

6144:n1BbvZY5iUFZHifR+WpAJrEcelerNW5czXqPx3Nu5P0PDDRpr:1BTGYAt53pXMOP0n

Entry address:

0x5FBC

Entry point:

E8, C8, 46, 00, 00, E9, 17, FE, FF, FF, 56, 8B, 74, 24, 08, 57, 56, E8, 49, 48, 00, 00, 83, F8, FF, 59, 74, 50, 83, FE, 01, A1, C0, F3, 41, 00, 75, 09, F6, 80, 84, 00, 00, 00, 01, 75, 0B, 83, FE, 02, 75, 1C, F6, 40, 44, 01, 74, 16, 6A, 02, E8, 1E, 48, 00, 00, 6A, 01, 8B, F8, E8, 15, 48, 00, 00, 3B, C7, 59, 59, 74, 1C, 56, E8, 09, 48, 00, 00, 59, 50, FF, 15, 1C, 80, 41, 00, 85, C0, 75, 0A, FF, 15, 54, 80, 41, 00, 8B, F8, EB, 02, 33, FF, 56, E8, 6A, 47, 00, 00, 8B, C6, C1, F8, 05, 8B, 04, 85, C0, F3, 41, 00... 
[+]

Code size:

92 KB (94,208 bytes)

Remove vkill.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.