home

windows 8 activator.exe

Windows

The application windows 8 activator.exe, “Windows 8 Activator 1.00 Installation ” has been detected as a potentially unwanted program by 8 anti-malware scanners. This is a self-extracting archive and installer, however the file is not signed with an authenticode signature from a trusted source.
Publisher:
Windows

Description:
Windows 8 Activator 1.00 Installation

Version:
1.00

MD5:
1e937c600b76a84ab482152898425347

SHA-1:
aa1bd176263e543f4ee1a93e62174aebd7618ef5

SHA-256:
1d24307440df8ddb521491c5123d9b59cec925fe40f9901f3699b60902fbfe53

Scanner detections:
8 / 68

Status:
Potentially unwanted

Analysis date:
4/19/2024 10:46:57 PM UTC  (today)

Scan engine
Detection
Engine version

AVG
Dropper.Generic7
2015.0.3279

Bitdefender
Trojan.Generic.KDV.904294
1.0.20.1650

Dr.Web
Trojan.DownLoader8.9173
9.0.1.0330

ESET NOD32
MSIL/Injector.TZ (variant)
8.8143

F-Secure
Trojan.Generic.KDV.904294
11.2014-26-11_4

G Data
Trojan.Generic.KDV.904294
14.11.22

IKARUS anti.virus
not-a-virus:Keygen.SuspectCRC
t3scan.2.0.0.0

Kaspersky
HEUR:Trojan.Win32.Generic
14.0.0.2888

File size:
22.9 MB (23,980,540 bytes)

Copyright:
Windows

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\put back after scan\done\windows 8 activator\windows 8 activator.exe

File PE Metadata
Compilation timestamp:
6/19/1992 11:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
393216:UBeU+QznOeo1hSobIN6ARNeYpDnGOaIWzY9sIZx2ok5sqWKdvQahGqt8yzCqaXr3:UBe9Wnjc7UjDnVWz8Zx1GzpvjlOqaXSq

Entry address:
0x25468

Entry point:
55, 8B, EC, 83, C4, F0, B8, 88, 53, 42, 00, E8, 24, F2, FD, FF, B8, C8, 54, 42, 00, E8, 2A, 1C, FE, FF, 8B, 15, 40, 88, 42, 00, 89, 02, 8B, 15, 40, 88, 42, 00, 8B, 12, A1, 48, 88, 42, 00, E8, E4, D3, FF, FF, 8B, 15, 40, 88, 42, 00, 8B, 12, A1, DC, 87, 42, 00, E8, 7A, 64, FF, FF, A1, 40, 88, 42, 00, E8, AC, 4E, FE, FF, E8, DF, E0, FD, FF, 00, 00, 00, FF, FF, FF, FF, 01, 00, 00, 00, 2A, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.9991

Developed / compiled with:
Microsoft Visual C++

Code size:
145.5 KB (148,992 bytes)

Remove windows 8 activator.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.