» zkverify.exe
Overview
Analysis
File Details

zkverify.exe

Software

The executable zkverify.exe has been detected as malware by 29 anti-virus scanners.

File name:

zkverify.exe

Publisher:

Software

Product:

Software

Version:

1.0.0.0

MD5:

41dfb31247505d9d5d40310dc25024ba

SHA-1:

cd3885e8a027ee316b9cc658a7a8ba155c966686

SHA-256:

a57424c8326213b6bd24008b4f15bec210e9a97b5ae9c295b88c6ccc423237c5

Scanner detections:

29 / 68

Status:

Malware

Analysis date:

5/2/2024 8:18:20 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Backdoor.MSIL.Agent.HD

-39

Avira AntiVirus

TR/Dropper.Gen

8.3.3.4

Arcabit

Backdoor.MSIL.Agent.HD

1.0.0.802

avast!

Win32:Malware-gen

2014.9-170315

AVG

MSIL9

2018.0.2439

Baidu Antivirus

Win32.Trojan.WisdomEyes.16070401.9500

4.0.3.17315

Bitdefender

Backdoor.MSIL.Agent.HD

1.0.20.370

Clam AntiVirus

Win.Trojan.Agent-1365399

0.99.211

Dr.Web

Trojan.Starter.2890

9.0.1.074

Emsisoft Anti-Malware

Backdoor.MSIL.Agent.HD

8.17.03.15.11

ESET NOD32

MSIL/Injector.IFO (variant)

11.15091

Fortinet FortiGate

MSIL/Injector.MJM!tr

3/15/2017

F-Prot

W32/MSIL_Injector.BB.gen

v6.4.7.1.166

F-Secure

Backdoor.MSIL.Agent.HD

11.2017-15-03_4

G Data

Backdoor.MSIL.Agent.HD

17.3.A:25.11190B:25.9088

IKARUS anti.virus

Trojan.MSIL.Injector

0.2.1.2

K7 AntiVirus

Trojan

13.10.5.22721

Kaspersky

HEUR:Trojan.Win32.Generic

14.0.0.-1312

Malwarebytes

Trojan.Agent

v2017.03.15.11

McAfee

Trojan-FKBG

5600.6095

MicroWorld eScan

Backdoor.MSIL.Agent.HD

18.0.0.222

NANO AntiVirus

Trojan.Win32.Starter.dzylkf

1.0.70.15657

Qihoo 360 Security

HEUR/QVM03.0.0000.Malware.Gen

1.0.0.1120

Quick Heal

Trojan.Dynamer

3.17.14.00

Rising Antivirus

Malware.Generic.c!tfe (thunder:12:MUX3WwNzjpF)

23.00.65.17313

Sophos

Troj/MSIL-FMQ

4.98

SUPERAntiSpyware

Trojan.Agent/Gen-Dropper

8534

Vba32 AntiVirus

Backdoor.DarkKomet

3.12.26.4

VIPRE Antivirus

Trojan.Win32.Generic

56658

File size:

990.2 KB (1,013,929 bytes)

Product version:

1.0.0.0

Software

Trademarks:

Software

Original file name:

Software.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\zkverify.exe

File PE Metadata

Compilation timestamp:

12/22/2015 6:25:11 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

.NET CLR dependent:

Yes

Entry address:

0x1AEDE

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

100 KB (102,400 bytes)

Remove zkverify.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.