» razorunda3.exe
Overview
Analysis
File Details

razorunda3.exe

WinRAR

Alexander Roshal

The executable razorunda3.exe has been detected as malware by 39 anti-virus scanners.

File name:

razorunda3.exe

Publisher:

Alexander Roshal

Product:

WinRAR

Description:

Command line RAR

Version:

4.20.0

MD5:

e03c4c54747e49da377d83e66a0a4b59

SHA-1:

526f1099042345c81ac58053305a6a453eaa9565

SHA-256:

65d8f428996602c79a1f7df8c1d9c0a18662891eabde09f12132206885d5d7b8

Scanner detections:

39 / 68

Status:

Malware

Analysis date:

4/28/2024 6:49:13 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.Agent.BHWQ

-40

AegisLab AV Signature

Backdoor.W32.Simda.ammk!c

2.1.4+

Agnitum Outpost

Backdoor.Simda

7.1.1

AhnLab V3 Security

Trojan/Win32.Simda

2016.03.10

Avira AntiVirus

TR/Crypt.XPACK.Gen7

8.3.3.2

Arcabit

Trojan.Agent.BHWQ

1.0.0.657

avast!

Win32:Dropper-gen [Drp]

2014.9-170316

AVG

Simda

2018.0.2438

Baidu Antivirus

Win32.Trojan.WisdomEyes.151026.9950

4.0.3.17316

Bitdefender

Trojan.Agent.BHWQ

1.0.20.375

Comodo Security

Backdoor.Win32.Simda.S

24488

Dr.Web

Trojan.Rodricter.153

9.0.1.075

Emsisoft Anti-Malware

Trojan.Agent.BHWQ

8.17.03.16.01

ESET NOD32

Win32/Simda

11.13154

Fortinet FortiGate

W32/Kryptik.CRRD!tr

3/16/2017

F-Prot

W32/Simda.BW.gen

v6.4.7.1.166

F-Secure

Trojan.Agent.BHWQ

11.2017-16-03_5

G Data

Trojan.Agent.BHWQ

17.3.25

IKARUS anti.virus

Trojan.Win32.Simda

t3scan.2.0.9.0

K7 AntiVirus

Trojan

13.214.18958

Kaspersky

HEUR:Trojan.Win32.Generic

14.0.0.-1315

Malwarebytes

Trojan.Agent.FSAVXGen

v2017.03.16.01

McAfee

Packed-APIXOR!E03C4C54747E

5600.6094

Microsoft Security Essentials

Backdoor:Win32/Simda

1.1.12505.0

MicroWorld eScan

Trojan.Agent.BHWQ

18.0.0.225

NANO AntiVirus

Trojan.Win32.Simda.doagxv

1.0.18.6677

nProtect

Backdoor/W32.Simda.731136.D

16.03.09.01

Panda Antivirus

Trj/Genetic.gen

17.03.16.01

Qihoo 360 Security

HEUR/QVM19.1.Malware.Gen

1.0.0.1120

Quick Heal

TrojanDwnldr.Cutwail.BF5

3.17.14.00

Rising Antivirus

PE:Malware.Generic(Thunder)!1.A1C4 [F]

23.00.65.17314

Sophos

Mal/Simda-V

4.98

Total Defense

Win32/Simda.AXXJJTC

37.1.62.1

Trend Micro House Call

BKDR_SIMDA.SMJA

7.2.75

Trend Micro

BKDR_SIMDA.SMJA

10.465.16

Vba32 AntiVirus

Backdoor.Simda

3.12.26.4

VIPRE Antivirus

Trojan.Win32.Generic

47762

ViRobot

Backdoor.Win32.A.Simda.731136.U[h]

2014.3.20.0

Zillya! Antivirus

Backdoor.Simda.Win32.2308

2.0.0.2713

File size:

714 KB (731,136 bytes)

Product version:

4.20.0

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\_temp\razorunda3.exe

File PE Metadata

Compilation timestamp:

2/18/2015 12:38:49 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

Entry address:

0x1520

Entry point:

55, 8B, EC, 83, EC, 14, 57, C7, 45, FC, 00, 00, 00, 00, FF, 15, 2C, 90, 4A, 00, 6A, 00, FF, 15, 18, 90, 4A, 00, 6A, 00, FF, 15, 14, 90, 4A, 00, 68, 54, A0, 4A, 00, FF, 15, 1C, 90, 4A, 00, 68, 58, A0, 4A, 00, FF, 15, 20, 90, 4A, 00, 68, 5C, A0, 4A, 00, FF, 15, 0C, 90, 4A, 00, 68, 64, A0, 4A, 00, FF, 15, 0C, 90, 4A, 00, 68, 6C, A0, 4A, 00, FF, 15, 0C, 90, 4A, 00, 68, 74, A0, 4A, 00, FF, 15, 0C, 90, 4A, 00, 68, 7C, A0, 4A, 00, FF, 15, 0C, 90, 4A, 00, 68, 84, A0, 4A, 00, FF, 15, 0C, 90, 4A, 00, 68, 8C, A0, 4A... 
[+]

Developed / compiled with:

Microsoft Visual C++

Code size:

669.5 KB (685,568 bytes)

Remove razorunda3.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.