home

3890

Bullified Corporation

The file 3890 has been detected as malware by 33 anti-virus scanners.
Publisher:
Bullified Corporation  (signed and verified)

MD5:
c778da7f4a9f1471b7fdc0f05c6beb98

SHA-1:
6bff3c1e179ba68c8a325e890b686e4d81e594fb

SHA-256:
a7818df97ca14c0b378da8ed92ef3fcc46b6f98905466c64aeca2aa0194f2f1c

Scanner detections:
33 / 68

Status:
Malware

Analysis date:
11/27/2024 8:47:22 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.GenericKD.3139815
178

AhnLab V3 Security
Trojan/Win32.Inject
2016.05.05

Avira AntiVirus
TR/Dropper.MSIL.hkca
8.3.3.4

Arcabit
Trojan.Generic.D2FE8E7
1.0.0.672

avast!
Win32:Malware-gen
2014.9-160810

AVG
Atros3
2017.0.2656

Baidu Antivirus
Win32.Trojan.WisdomEyes.151026.9950
4.0.3.16810

Bitdefender
Trojan.GenericKD.3139815
1.0.20.1115

Dr.Web
Trojan.PWS.Stealer.1932
9.0.1.0223

Emsisoft Anti-Malware
Trojan-PSW.Win32.Fareit
8.16.08.10.03

ESET NOD32
MSIL/Kryptik.FRN (variant)
10.13440

Fortinet FortiGate
MSIL/Injector.OSK!tr
8/10/2016

F-Prot
W32/Trojan3.UMC
v6.4.7.1.166

F-Secure
Trojan.GenericKD.3139815
11.2016-10-08_4

G Data
Trojan.GenericKD.3139815
16.8.25

IKARUS anti.virus
Trojan.MSIL.Injector
t3scan.2.0.9.0

K7 AntiVirus
Trojan
13.224.19508

Kaspersky
Trojan-PSW.Win32.Fareit
14.0.0.-226

Malwarebytes
Spyware.Pony
v2016.08.10.03

McAfee
Generic.xu
5600.6312

Microsoft Security Essentials
PWS:Win32/Fareit
1.1.12706.0

MicroWorld eScan
Trojan.GenericKD.3139815
17.0.0.669

NANO AntiVirus
Trojan.Win32.Stealer.ebldbx
1.0.30.8213

nProtect
Trojan-PWS/W32.Fareit.141360
16.05.04.01

Panda Antivirus
Trj/GdSda.A
16.08.10.03

Qihoo 360 Security
HEUR/QVM03.0.Malware.Gen
1.0.0.1120

Quick Heal
TrojanPSW.Fareit.r3
8.16.14.00

Sophos
Troj/Fareit-ALO
4.98

Trend Micro House Call
TSPY_FAREIT.YYSSS
7.2.223

Trend Micro
TSPY_FAREIT.YYSSS
10.465.10

Vba32 AntiVirus
TrojanPSW.Fareit
3.12.26.4

VIPRE Antivirus
Trojan.Win32.Generic
49146

Zillya! Antivirus
Backdoor.BrabotCRTD.Win32.58
2.0.0.2842

File size:
138 KB (141,360 bytes)

Common path:
C:\users\{user}\appdata\local\temp\3890

Digital Signature
Signed by:
Bullified Corporation

Authority:
Bullified Corporation

Valid from:
3/30/2016 1:43:18 AM

Valid to:
3/31/2026 1:43:18 AM

Subject:
E=adl@bullified.com, CN=Bullified Ltd., OU=MIIO Dept., O=Bullified Corporation, L=Sydney, S=New South Wales, C=AU

Issuer:
E=adl@bullified.com, CN=Bullified Ltd., OU=MIIO Dept., O=Bullified Corporation, L=Sydney, S=New South Wales, C=AU

Serial number:
00D49F2215296B86E7

File PE Metadata
Compilation timestamp:
4/5/2016 4:41:19 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
3072:nK0g2WNWGgRUzGfGnFok/vNbiuwyByYrb31kPvrIdAK:NzUafGFosIywYnCPjIiK

Entry address:
0x216AE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.6306

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
126 KB (129,024 bytes)

Remove 3890 - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.