wce.exe

The executable wce.exe has been detected as malware by 50 anti-virus scanners.
Remove wce.exe - Powered by Reason Core Security
MD5:
be9387bf647993e501c5d78e49bd4ab5

SHA-1:
f0c52cea19c204f5cdbe952cc7cfc182e20d8d43

SHA-256:
c6333c684762ed4b4129c7f9f49c88c33384b66dfb1f100e459ec6f18526dff7

Scanner detections:
50 / 68

Status:
Malware

Analysis date:
12/5/2016 9:42:30 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.Generic.9381454
969

Agnitum Outpost
HackTool.Agent
7.1.1

AhnLab V3 Security
Dropper/Win32.Injector
2014.06.05

Antiy Labs AVL
Trojan[Dropper]/Win32.Injector
0.1.0.1

avast!
Win64:Malware-gen
2014.9-140610

AVG
HackTool
2015.0.3447

Baidu Antivirus
HackTool.Win64.Agent
4.0.3.14610

Bitdefender
Trojan.Generic.9381454
1.0.20.805

Bkav FE
W32.Clod035.Trojan
1.3.0.4959

ByteHero BDV
Virus.Win32.Heur.g
6.10.2014.10

Comodo Security
UnclassifiedMalware
18442

Dr.Web
Trojan.Inject1.25824
9.0.1.0161

Emsisoft Anti-Malware
Trojan.Generic.9381454
8.14.06.10.03

ESET NOD32
Win32/HackTool.WinCred (variant)
8.9897

Fortinet FortiGate
Riskware/Win64_Agent
6/10/2014

F-Prot
W32/Heuristic-KPP
v6.4.7.1.166

F-Secure
Trojan.Generic.9381454
11.2014-10-06_3

G Data
Trojan.Generic.9381454
14.6.24

IKARUS anti.virus
HackTool.Win64
t3scan.1.6.1.0

K7 AntiVirus
Hacktool
13.1712305

K7 Gateway Antivirus
Hacktool
13.1712305

Kaspersky
HEUR:Trojan.Win32.Generic
14.0.0.3732

Kingsoft AntiVirus
Win32.HackTool.Undef.(kcloud)
331020.49267

McAfee
Artemis!BE9387BF6479
5600.7103

McAfee Web Gateway
Artemis!BE9387BF6479
7.7103

Microsoft Security Essentials
HackTool:Win32/Wincred.H
1.10600

MicroWorld eScan
Trojan.Generic.9381454
15.0.0.483

NANO AntiVirus
Trojan.Win32.Injector.crhamv
0.28.0.60100

Norman
Troj_Generic.MWIJR
11.20140610

nProtect
Trojan/W32.HackTool.466944.G
14.06.05.01

Panda Antivirus
Trj/CI.A
14.06.10.03

Qihoo 360 Security
Win32/Trojan.bde
1.0.0.1015

Quick Heal
HackTool.Wincred.r5 (Not a Virus)
6.14.14.00

Rising Antivirus
PE:Trojan.Win32.Generic.157B70C6!360411334
23.00.65.14608

Trend Micro House Call
TROJ_SPNR.3CHQ13
7.2.161

Trend Micro
TROJ_SPNR.3CHQ13
10.465.10

Vba32 AntiVirus
TrojanDropper.Injector
3.12.26.0

VIPRE Antivirus
Trojan.Win32.Generic
29968

ViRobot
Trojan.Win32.S.Inject.466944.G
2011.4.7.4223

Remove wce.exe - Powered by Reason Core Security
File size:
456 KB (466,944 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
7/13/2013 9:47:15 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
10.0

CTPH (ssdeep):
6144:jtVhpoHvYAtHDyBTEmFcs3FWZgGbTMiz+KvichkRJpLeNcGM0jhfNf7jv3M:jtVhpowIyvGqKvbhkfpLeyG7h1Pv3M

Entry address:
0x206C

Entry point:
E8, 27, 2D, 00, 00, E9, 95, FE, FF, FF, B8, 58, C0, 40, 00, C3, A1, C0, EB, 40, 00, 56, 6A, 14, 5E, 85, C0, 75, 07, B8, 00, 02, 00, 00, EB, 06, 3B, C6, 7D, 07, 8B, C6, A3, C0, EB, 40, 00, 6A, 04, 50, E8, D5, 2D, 00, 00, 59, 59, A3, A8, DB, 40, 00, 85, C0, 75, 1E, 6A, 04, 56, 89, 35, C0, EB, 40, 00, E8, BC, 2D, 00, 00, 59, 59, A3, A8, DB, 40, 00, 85, C0, 75, 05, 6A, 1A, 58, 5E, C3, 33, D2, B9, 58, C0, 40, 00, EB, 05, A1, A8, DB, 40, 00, 89, 0C, 02, 83, C1, 20, 83, C2, 04, 81, F9, D8, C2, 40, 00, 7C, EA, 6A...
 
[+]

Code size:
29 KB (29,696 bytes)

Remove wce.exe - Powered by Reason Core Security