5f6fb52b4050251acf3041eb24912674.exe

danger



The file 5f6fb52b4050251acf3041eb24912674.exe has the status Malicious. It can be found on Windows 7 x64 in directory C:\Users\Administrator\AppData\Local\Temp.

Possible list of detection names:

  • Ransom.FileCryptor
  • Trojan.Zbot!gen35
  • HEUR:Trojan.Win32.Generic
  • Gen:Heur.Zard.24
  • Win32:Fareit-AO [Trj]
  • Gen:Heur.Zard.24 (B)
  • BackDoor.Tishop.2
  • BehavesLike.Win32.MultiPlug.cc
  • Mal/ZboCheMan-D
  • TR/Crypt.EPACK.Gen8
  • PWS:Win32/Zbot.gen!AJ
  • PWS-Zbot.gen.anq
  • a variant of Win32/Kryptik.APOH

HASH

MD5: 5f6fb52b4050251acf3041eb24912674
SHA1: faef6db7ca7570c2ec98fd405e32658bd1f5d543
SHA256: e9835bfcc68da1bad5e1c7b470cdd595d07fd1cc9aa879f2f325c80e1d6e6ade

=> VirusTotal


Informations

CodeSize: 28672
Directory: C:\Users\Administrator\AppData\Local\Temp
EntryPoint: 0x6fcf
FileName: 5f6fb52b4050251acf3041eb24912674.exe
FilePermissions: rw-r--r--
FileSize: 193 kB
FileType: Win32 EXE
FileTypeExtension: exe
ImageFileCharacteristics: Executable, 32-bit
ImageVersion: 0.0
InitializedDataSize: 167936
LinkerVersion: 11.0
MachineType: Intel 386 or later, and compatibles
MIMEType: application/octet-stream
OSVersion: 5.1
PEType: PE32
Subsystem: Windows GUI
SubsystemVersion: 5.1
TimeStamp: 2011:03:26 08:06:26+01:00
UninitializedDataSize: 0

Related file: https://kernel-panik.me/database/file/utvy-exe/