5f6fb52b4050251acf3041eb24912674.exe
The file 5f6fb52b4050251acf3041eb24912674.exe has the status Malicious. It can be found on Windows 7 x64 in directory C:\Users\Administrator\AppData\Local\Temp.
Possible list of detection names:
- Ransom.FileCryptor
- Trojan.Zbot!gen35
- HEUR:Trojan.Win32.Generic
- Gen:Heur.Zard.24
- Win32:Fareit-AO [Trj]
- Gen:Heur.Zard.24 (B)
- BackDoor.Tishop.2
- BehavesLike.Win32.MultiPlug.cc
- Mal/ZboCheMan-D
- TR/Crypt.EPACK.Gen8
- PWS:Win32/Zbot.gen!AJ
- PWS-Zbot.gen.anq
- a variant of Win32/Kryptik.APOH
HASH
MD5: 5f6fb52b4050251acf3041eb24912674 SHA1: faef6db7ca7570c2ec98fd405e32658bd1f5d543 SHA256: e9835bfcc68da1bad5e1c7b470cdd595d07fd1cc9aa879f2f325c80e1d6e6ade
Informations
CodeSize: 28672 Directory: C:\Users\Administrator\AppData\Local\Temp EntryPoint: 0x6fcf FileName: 5f6fb52b4050251acf3041eb24912674.exe FilePermissions: rw-r--r-- FileSize: 193 kB FileType: Win32 EXE FileTypeExtension: exe ImageFileCharacteristics: Executable, 32-bit ImageVersion: 0.0 InitializedDataSize: 167936 LinkerVersion: 11.0 MachineType: Intel 386 or later, and compatibles MIMEType: application/octet-stream OSVersion: 5.1 PEType: PE32 Subsystem: Windows GUI SubsystemVersion: 5.1 TimeStamp: 2011:03:26 08:06:26+01:00 UninitializedDataSize: 0
Related file: https://kernel-panik.me/database/file/utvy-exe/