» zone4_bra.exe
Overview
Analysis
File Details

zone4_bra.exe

Zone4

Infovine

The application zone4_bra.exe has been detected as a potentially unwanted program by 24 anti-malware scanners.

File name:

zone4_bra.exe

Publisher:

Infovine

Product:

Zone4

Version:

1, 0, 0, 1

MD5:

f97d23bccd0415b0b8272e12b042d8ee

SHA-1:

cc05bae1211e8b7c2fd544a467344c07ded01a1f

SHA-256:

301eae7fa87d6a327c883d50ba812f1b46e4c00ff67c27b36c6f70547151a2ad

Scanner detections:

24 / 68

Status:

Potentially unwanted

Analysis date:

4/26/2024 8:30:00 AM UTC (today)

Scan engine

Detection

Engine version

Agnitum Outpost

Riskware.Themida

7.1.1

Avira AntiVirus

TR/Strictor.6729728.1

8.3.2.2

AVG

Generic13_c

2016.0.2966

Bkav FE

HW32.Packed

1.3.0.7133

ESET NOD32

Win32/Packed.Themida suspicious (variant)

9.12206

Fortinet FortiGate

PossibleThreat

10/4/2015

K7 AntiVirus

Trojan

13.2017124

Kaspersky

UDS:DangerousObject.Multi.Generic

14.0.0.1325

McAfee

Artemis!F97D23BCCD04

5600.6622

Qihoo 360 Security

HEUR/QVM19.1.Malware.Gen

1.0.0.1015

Rising Antivirus

PE:Malware.Generic/QRS!1.9E2D[F1]

23.00.65.151002

Sophos

Mal/EncPk-OJ

4.98

Trend Micro

TROJ_GEN.R01TC0EFN15

10.465.04

VIPRE Antivirus

Trojan.Win32.Generic

43482

File size:

6.4 MB (6,729,728 bytes)

Product version:

1, 0, 0, 1

Original file name:

Zone4.exe

File type:

Executable application (Win32 EXE)

Language:

Korean

Common path:

C:\Program Files\ongame\zone4\zone4_bra.exe

File PE Metadata

Compilation timestamp:

4/17/2015 3:23:18 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

7.10

CTPH (ssdeep):

98304:FB2lainVjLJWAUsOM5maeTJho80oTqF7QcWgS4n3y8CCjmeuU2nR6kJOf:FBkVjLJWAUsOMY9tmZDFQD85iNRFJO

Entry address:

0x19D2000

Entry point:

68, 00, 00, 00, 00, 68, 01, 00, 00, 00, 68, 00, 00, 40, 00, 68, 00, 10, DD, 01, E9, 00, 04, 00, 00, CE, 21, 00, 00, 00, 00, 00, 00, 20, 21, 00, 00, 36, 21, 00, 00, 4A, 21, 00, 00, 5C, 21, 00, 00, 0E, 21, 00, 00, 7E, 21, 00, 00, 8A, 21, 00, 00, 96, 21, 00, 00, 6E, 21, 00, 00, 00, 21, 00, 00, 00, 00, 00, 00, B4, 21, 00, 00, 00, 00, 00, 00, 64, 75, 6D, 6D, 79, 00, 64, 75, 6D, 6D, 79, 00, 64, 75, 6D, 6D, 79, 00, 64, 75, 6D, 6D, 79, 00, 64, 75, 6D, 6D, 79, 00, 64, 75, 6D, 6D, 79, 00, 6B, 65, 72, 6E, 65, 6C, 33... 
[+]

Packer / compiler:

PKLITE32 v1.1

Code size:

9.8 MB (10,256,384 bytes)

Remove zone4_bra.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.