» server.exe
Overview
Analysis
File Details

server.exe

The executable server.exe has been detected as malware by 36 anti-virus scanners.

File name:

server.exe

MD5:

4c0c283b5057bd484457b75993d628c2

SHA-1:

0036487d3f6276c2b511bf610078c5c1f9c62849

SHA-256:

644bf09e75739ac89518f60b659c4c9689acd357163e732546106d56c6e42f6b

Scanner detections:

36 / 68

Status:

Malware

Analysis date:

5/2/2024 8:40:04 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.Generic.13154158

-40

AegisLab AV Signature

Backdoor.W32.Mutter.13!c

2.1.4+

Agnitum Outpost

Backdoor.Mutter

7.1.1

AhnLab V3 Security

Win-Trojan/Mutter.554496

2016.03.14

Avira AntiVirus

BDS/Mutter.13.A

8.3.3.2

Arcabit

Trojan.Generic.DC8B76E

1.0.0.662

avast!

Win32:Mutter [Trj]

2014.9-170315

AVG

BackDoor.Mutter.A

2018.0.2438

Baidu Antivirus

Backdoor.Win32.Mutter

4.0.3.17315

Bitdefender

Trojan.Generic.13154158

1.0.20.370

Clam AntiVirus

Win.Trojan.Mutter

0.98/21511

Comodo Security

Backdoor.Win32.Mutter.13

24540

Dr.Web

BackDoor.Diem.13

9.0.1.074

Emsisoft Anti-Malware

Trojan.Generic.13154158

8.17.03.15.04

ESET NOD32

Win32/Mutter.13

11.13174

Fortinet FortiGate

W32/Mutter.13!tr.bdr

3/15/2017

F-Prot

W32/Malware!7cdd

v6.4.7.1.166

F-Secure

Trojan.Generic.13154158

11.2017-15-03_4

G Data

Trojan.Generic.13154158

17.3.25

IKARUS anti.virus

Backdoor.Win32.FTP.Ics

t3scan.2.0.9.0

Kaspersky

Backdoor.Win32.Mutter

14.0.0.-1313

McAfee

BackDoor-JD

5600.6094

Microsoft Security Essentials

Backdoor:Win32/Mutter.1_3

1.1.12505.0

MicroWorld eScan

Trojan.Generic.13154158

18.0.0.222

NANO AntiVirus

Trojan.Win32.Mutter.fkkc

1.0.18.6677

nProtect

Backdoor/W32.Mutter.552960

16.03.11.01

Panda Antivirus

Bck/Mutter.14

17.03.15.04

Qihoo 360 Security

Malware.Radar01.Gen

1.0.0.1120

Rising Antivirus

PE:Backdoor.Mosucker.w!170374 [F]

23.00.65.17313

Sophos

Troj/Mutter-13

4.98

Trend Micro House Call

BKDR_MUTER.A

7.2.74

Trend Micro

BKDR_MUTER.A

10.465.15

Vba32 AntiVirus

Backdoor.Mutter

3.12.26.4

VIPRE Antivirus

Diem`s Mutter

47868

ViRobot

Backdoor.Win32.Mutter_13[h]

2014.3.20.0

Zillya! Antivirus

Backdoor.Mutter.Win32.1

2.0.0.2724

File size:

540 KB (552,960 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\ceh\cehv8 module 06 trojans and backdoors\miscellaneous trojans\diem`s mutter v1.4\server.exe

File PE Metadata

Compilation timestamp:

6/19/1992 3:22:17 PM

OS version:

1.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

Entry address:

0x7016C

Entry point:

55, 8B, EC, 83, C4, F4, B8, 54, FF, 46, 00, E8, 74, 62, F9, FF, 68, 4C, 02, 47, 00, 68, 64, 02, 47, 00, E8, 79, 68, F9, FF, 85, C0, 76, 1B, 6A, 00, 6A, 00, 6A, 10, 68, 4C, 02, 47, 00, 68, 64, 02, 47, 00, E8, 60, 68, F9, FF, 50, E8, F2, 6A, F9, FF, 68, 70, 02, 47, 00, 6A, 00, E8, 4E, 68, F9, FF, 85, C0, 76, 18, 6A, 00, 6A, 00, 6A, 10, 68, 70, 02, 47, 00, 6A, 00, E8, 38, 68, F9, FF, 50, E8, CA, 6A, F9, FF, 68, 70, 02, 47, 00, 6A, 00, E8, 26, 68, F9, FF, 85, C0, 76, 18, 6A, 00, 6A, 00, 6A, 10, 68, 70, 02, 47... 
[+]

Entropy:

6.5351

Developed / compiled with:

Microsoft Visual C++

Code size:

445 KB (455,680 bytes)

Remove server.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.