» info-install.exe
Overview
Analysis
File Details

info-install.exe

The executable info-install.exe has been detected as malware by 34 anti-virus scanners. This is a setup and installation application, however the file is not signed with an authenticode signature from a trusted source.

File name:

info-install.exe

MD5:

2b1235ba6b59756488787e1afde3b83e

SHA-1:

329e48bfb02f0aa445683425ea334a0a83309192

SHA-256:

be3d32406e1723af0a33c1838e9c470777911d94a3951dd5c1f595b7e05700bf

Scanner detections:

34 / 68

Status:

File is infected by a Virus

Explanation:

The file is infected by a polymorphic file infector virus.

Analysis date:

5/2/2024 6:38:00 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Win32.Virtob.Gen.12

-39

Agnitum Outpost

Win32.Virut.AB.Gen

7.1.1

AhnLab V3 Security

Win32/Virut.F

2015.06.02

Avira AntiVirus

W32/Virut.Gen

8.3.1.6

avast!

Win32:Vitro

2014.9-170315

AVG

Generic32

2018.0.2439

Bitdefender

Win32.Virtob.Gen.12

1.0.20.370

Bkav FE

HW32.Packed

1.3.0.6379

Comodo Security

Virus.Win32.Virut.CE

22304

Dr.Web

Win32.Virut.56

9.0.1.074

Emsisoft Anti-Malware

Win32.Virtob.Gen.12

8.17.03.15.03

ESET NOD32

Win32/Virut.NBP

11.11718

Fortinet FortiGate

W32/FakeAV.RQ!tr

3/15/2017

F-Prot

W32/Virut.E.gen

v6.4.7.1.166

F-Secure

Win32.Virtob.Gen.12

11.2017-15-03_4

G Data

Win32.Virtob.Gen.12

17.3.25

IKARUS anti.virus

Trojan.Win32.Spy

t3scan.1.9.2.0

K7 AntiVirus

Virus

13.204.16103

Kaspersky

Virus.Win32.Virut

14.0.0.-1311

McAfee

W32/Virut.n.gen

5600.6095

Microsoft Security Essentials

Virus:Win32/Virut.BO

1.1.11701.0

MicroWorld eScan

Win32.Virtob.Gen.12

18.0.0.222

NANO AntiVirus

Trojan.Win32.MulDrop1.cuupf

0.30.24.1636

nProtect

Virus/W32.Virut.Gen

15.06.01.01

Panda Antivirus

W32/Sality.AO

17.03.15.03

Quick Heal

W32.Virut.G

3.17.14.00

Rising Antivirus

PE:Win32.Virut.cx!1553679

23.00.65.17313

Sophos

W32/Scribble-B

4.98

Total Defense

Win32/Virut.17408

37.1.62.1

Trend Micro House Call

PE_VIRUX.R-3

7.2.74

Trend Micro

PE_VIRUX.R-3

10.465.15

Vba32 AntiVirus

Virus.Virut.14

3.12.26.4

VIPRE Antivirus

Virus.Win32.Virut.ce

40752

ViRobot

Win32.Virut.AM[h]

2014.3.20.0

File size:

87.5 KB (89,600 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\info-install.exe

File PE Metadata

Compilation timestamp:

3/3/2007 2:01:51 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

Entry address:

0x49A7

Entry point:

BA, C7, 45, 73, 84, 4A, 81, E9, 4C, EA, 83, CD, F6, D5, FE, C6, 68, EA, 6A, 00, 00, F8, 58, F7, D1, 86, ED, 86, CE, EB, 12, 00, 00, 00, F0, 7D, 0C, 30, F0, 90, 40, B6, 17, E9, D9, 0E, 01, 00, 00, FC, BA, A8, BB, 00, D2, 87, CA, F7, D1, 8B, D5, BA, 8B, 3F, 71, A7, 66, 81, 98, 00, 58, 01, 10, 26, 17, EB, A1, 00, 00, 00, 49, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 40, 19, 00, 10, 14, 13, 00, 10, E0, 12, 00, 10, E4, 18, 00... 
[+]

Entropy:

7.3119

Code size:

14.5 KB (14,848 bytes)

Remove info-install.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.