2169

The Witcher 3

Acunetix Ltd.

The file 2169 has been detected as malware by 31 anti-virus scanners.
Publisher:
CD Projekt Red  (signed by Acunetix Ltd.)

Product:
The Witcher 3

Version:
3.0.0

MD5:
7969576f84e25e6960d4a3a7e0c09729

SHA-1:
d37a29bd30234232754f1a805cfd94bc2a27bc7e

SHA-256:
214b8da7ea5b8dd3306792a442eacdada6390c76bab15c3319dc69896857560c

Scanner detections:
31 / 68

Status:
Malware

Analysis date:
12/26/2024 4:18:18 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.GenericKD.3204205
153

AegisLab AV Signature
Troj.W32.Generic!c
2.1.4+

Agnitum Outpost
Trojan.Agent
7.1.1

AhnLab V3 Security
Trojan/Win32.Agent.N1991841284
3.7.4.14

Avira AntiVirus
TR/Crypt.XDR.Gen
8.3.3.4

Arcabit
Trojan.Generic.D30E46D
1.0.0.741

avast!
Win32:Malware-gen
2014.9-160904

AVG
MSIL10
2017.0.2631

Bitdefender
Trojan.GenericKD.3204205
1.0.20.1240

Dr.Web
Trojan.PWS.Multi.911
9.0.1.0248

Emsisoft Anti-Malware
Trojan.GenericKD.3204205
8.16.09.04.05

ESET NOD32
MSIL/Injector.PAP (variant)
10.13734

Fortinet FortiGate
MSIL/Injector.PAP!tr
9/4/2016

F-Prot
W32/MSIL_Injector.CE.gen
v6.4.7.1.166

F-Secure
Trojan.GenericKD.3204205
11.2016-04-09_1

G Data
Trojan.GenericKD.3204205
16.9.25

IKARUS anti.virus
Trojan.MSIL.Injector
t3scan.2.1.6.0

K7 AntiVirus
Trojan
13.231.20098

Kaspersky
HEUR:Trojan.Win32.Generic
14.0.0.-351

Malwarebytes
Trojan.Injector.MSIL
v2016.09.04.05

McAfee
RDN/Generic.grp
5600.6287

Microsoft Security Essentials
Trojan:MSIL/Injector.Y
1.1.12902.0

MicroWorld eScan
Trojan.GenericKD.3204205
17.0.0.744

NANO AntiVirus
Trojan.Win32.Multi.ebyuui
1.0.38.8984

nProtect
Trojan.GenericKD.3204205
16.06.30.01

Panda Antivirus
Trj/GdSda.A
16.09.04.05

Qihoo 360 Security
HEUR/QVM03.0.Malware.Gen
1.0.0.1120

Quick Heal
Trojan.Inject.r3
9.16.14.00

Sophos
Mal/Generic-S
4.98

Trend Micro
TROJ_GEN.R021C0DE716
10.465.04

VIPRE Antivirus
Trojan.Win32.Generic
50510

File size:
608.7 KB (623,336 bytes)

Product version:
3.0.0

Copyright:
Copyright © 2012 CD Projekt Red

Original file name:
scan.exe

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\2169

Digital Signature
Signed by:

Authority:
Thawte, Inc.

Valid from:
6/25/2014 5:00:00 PM

Valid to:
6/25/2016 4:59:59 PM

Subject:
CN=Acunetix Ltd., OU=Acunetix Development Department, O=Acunetix Ltd., L=Ta' Xbiex, S=Malta, C=MT

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
500BD1BC380359C65E4FB982FD87B14F

File PE Metadata
Compilation timestamp:
5/3/2016 11:44:50 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
12288:bF8WJ/dlz1qnWFmopi/3QLcTXI4eAqdvSgoZD6:5bzRtofgcTo71

Entry address:
0x9815E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.8471

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
600.5 KB (614,912 bytes)

Remove 2169 - Powered by Reason Core Security