utvy.exe
The file utvy.exe has the status Malicious. It can be found on Windows 7 x64 in directory C:\Users\Administrator\AppData\Roaming\Ofve.
Possible list of detection names:
- PWS-Zbot.gen.anq
- Ransom.FileCryptor,
- Trojan.Zbot!gen35
- a variant of Win32/Kryptik.APOH
- HEUR:Trojan.Win32.Generic
- Gen:Heur.Mint.Zard.24
- Win32:Fareit-AO [Trj]
- Mal/ZboCheMan-D
- BackDoor.Tishop.2
- Gen:Heur.Mint.Zard.24 (B)
- TR/Crypt.EPACK.Gen8
- PWS:Win32/Zbot.gen!AJ
- Gen:NN.ZexaF.34096.mSW@aSu!MNli
HASH
MD5: d802288a337790b115acd371e6f5cda1 SHA1: 33323f1db0fb38f75be888c8ee0425a8fee9468a SHA256: 74fea8873c66eb765c834ede2bad51971ba6585d4dea818d1102f2374f2a6a23
Informations
CodeSize: 28672 Directory: C:\Users\Administrator\AppData\Roaming\Ofve EntryPoint: 0x6fcf FileName: utvy.exe FilePermissions: rw-r--r-- FileSize: 193 kB FileType: Win32 EXE FileTypeExtension: exe ImageFileCharacteristics: Executable, 32-bit ImageVersion: 0.0 InitializedDataSize: 167936 LinkerVersion: 11.0 MachineType: Intel 386 or later, and compatibles MIMEType: application/octet-stream OSVersion: 5.1 PEType: PE32 Subsystem: Windows GUI SubsystemVersion: 5.1 TimeStamp: 2011:03:26 08:06:26+01:00 UninitializedDataSize: 0