home

hotaru.scr

The file hotaru.scr has been detected as malware by 6 anti-virus scanners.
MD5:
6b33fc933061416bf6c875315f93e40a

SHA-1:
f2a0799f5bcf9db6ad30ce8057260a06f7e4ff31

SHA-256:
f8a745069e05f38796ce6a819ae5e689c69a9df4b487a0e978ae5dd4e5a617f1

Scanner detections:
6 / 68

Status:
Malware

Analysis date:
4/30/2024 4:23:51 PM UTC  (today)

Scan engine
Detection
Engine version

Emsisoft A-Squared
Trojan-Spy.Win32.Starax!IK
4.5.0.43

Fortinet FortiGate
PossibleThreat
3/7/2017

F-Prot
W32/Starax.A
v6.4.5.1.85

IKARUS anti.virus
Trojan-Spy.Win32.Starax
t3scan.1.1.74.0

McAfee
Artemis!6B33FC933061
5600.6103

Prevx
Medium Risk Malware
3.0

File size:
1.5 MB (1,539,999 bytes)

Common path:
C:\windows\hotaru.scr

File PE Metadata
Compilation timestamp:
1/31/2003 2:25:49 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.0

Entry address:
0x12F79

Entry point:
6A, 60, 68, 20, A7, 41, 00, E8, 07, 37, 00, 00, BF, 94, 00, 00, 00, 8B, C7, E8, 4F, 37, 00, 00, 89, 65, E8, 8B, F4, 89, 3E, 56, FF, 15, 0C, A1, 41, 00, 8B, 4E, 10, 89, 0D, C4, 23, 42, 00, 8B, 46, 04, A3, D0, 23, 42, 00, 8B, 56, 08, 89, 15, D4, 23, 42, 00, 8B, 76, 0C, 81, E6, FF, 7F, 00, 00, 89, 35, C8, 23, 42, 00, 83, F9, 02, 74, 0C, 81, CE, 00, 80, 00, 00, 89, 35, C8, 23, 42, 00, C1, E0, 08, 03, C2, A3, CC, 23, 42, 00, 33, F6, 56, 8B, 3D, 14, A1, 41, 00, FF, D7, 66, 81, 38, 4D, 5A, 75, 1F, 8B, 48, 3C, 03...
 
[+]

Entropy:
4.6359

Developed / compiled with:
Microsoft Visual C++ v7.0

Code size:
97 KB (99,328 bytes)

Remove hotaru.scr - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.