× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 50a18d4b19d3ccfdbe94506174414396f3d58c6762d158a023e69eb49f2cba1b
File name: 63ad7a77555dfd2e50363265f5dccc2b8e420422
Detection ratio: 16 / 55
Analysis date: 2014-09-29 05:01:50 UTC ( 3 years, 1 month ago ) View latest
Antivirus Result Update
Antiy-AVL Trojan[Backdoor]/Win32.Napolar 20140929
Avast Win32:Rootkit-gen [Rtk] 20140929
AVG Inject2.AXRN 20140929
Avira (no cloud) TR/Crypt.ZPACK.99663 20140929
Baidu-International Trojan.Win32.Injector.bBMNO 20140928
Bkav HW32.Paked.65D3 20140929
ByteHero Trojan.Malware.Obscu.Gen.006 20140929
ESET-NOD32 a variant of Win32/Injector.BMNO 20140929
Ikarus Trojan.Win32.Inject 20140929
Kaspersky HEUR:Trojan.Win32.Generic 20140928
Malwarebytes Trojan.Agent.BPEN 20140929
McAfee RDN/Generic.dx!dfw 20140929
McAfee-GW-Edition BehavesLike.Win32.Trojan.dh 20140928
Qihoo-360 HEUR/QVM10.1.Malware.Gen 20140929
Sophos AV Mal/Generic-S 20140929
Tencent Win32.Trojan.Bp-generic.Ixrn 20140929
Ad-Aware 20140929
AegisLab 20140929
Yandex 20140928
AhnLab-V3 20140928
AVware 20140927
BitDefender 20140929
CAT-QuickHeal 20140927
ClamAV 20140929
CMC 20140925
Comodo 20140929
Cyren 20140929
DrWeb 20140929
Emsisoft 20140929
F-Prot 20140929
F-Secure 20140928
Fortinet 20140929
GData 20140929
Jiangmin 20140928
K7AntiVirus 20140926
K7GW 20140926
Kingsoft 20140929
Microsoft 20140929
eScan 20140929
NANO-Antivirus 20140929
Norman 20140929
nProtect 20140928
Panda 20140928
Rising 20140927
SUPERAntiSpyware 20140928
Symantec 20140929
TheHacker 20140929
TotalDefense 20140928
TrendMicro 20140929
TrendMicro-HouseCall 20140929
VBA32 20140926
VIPRE 20140929
ViRobot 20140929
Zillya 20140929
Zoner 20140925
Execution parents
Compressed bundles
File identification
MD5 bd6466701c9e93ab24d77c34d44106a7
SHA1 cb8d0fd19585b217660c1a135d965ce159cbcd42
SHA256 50a18d4b19d3ccfdbe94506174414396f3d58c6762d158a023e69eb49f2cba1b
ssdeep
6144:2yLw3+Sg7IfjfTWOk3mB9N1hdziqOCpVR1fmF:2yUOSg2k3q1ZpD1w

authentihash 9bca2b65ecc1aa96b360777af5e09bd3b770bb3e5de72e03490b06a87b2f6240
File size 290.0 KB ( 296960 bytes )
File type Win32 EXE
Magic literal
PE32 executable for MS Windows (GUI) Intel 80386 32-bit

TrID Win32 Executable (generic) (52.9%)
Generic Win/DOS Executable (23.5%)
DOS Executable Generic (23.5%)
Tags
peexe

VirusTotal metadata
First submission 2014-09-27 12:27:27 UTC ( 3 years, 1 month ago )
Last submission 2016-10-08 19:20:13 UTC ( 1 year, 1 month ago )
File names Sf8Hv2ikZp.msc
50a18d4b19d3ccfdbe94506174414396f3d58c6762d158a023e69eb49f2cba1b.exe
zwroty.exe
07.exe
bd6466701c9e93ab24d77c34d44106a7.exe
008756880
63ad7a77555dfd2e50363265f5dccc2b8e420422
bd6466701c9e93ab24d77c34d44106a7
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Created processes
Opened mutexes
Runtime DLLs