» adobe.snr.patch-painter.exe
Overview
Analysis
File Details

adobe.snr.patch-painter.exe

Bullified Corporation

The executable adobe.snr.patch-painter.exe has been detected as malware by 32 anti-virus scanners.

File name:

Publisher:

Bullified Corporation (signed and verified)

MD5:

d9a7c05468553a5dc43934fce24851da

SHA-1:

8d08f62930f5e18cdef29a32e1b2f2daca9382c8

SHA-256:

5ec61182c60691f5ff3483672d004b865d801dd3fcc203dde7ab96e51f73b8fe

Scanner detections:

32 / 68

Status:

Malware

Analysis date:

11/27/2024 8:49:25 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.GenericKD.3144273

AegisLab AV Signature

Virus.Gen!c

2.1.4+

AhnLab V3 Security

Malware/Win32.Generic.N1965769206

3.8.1.15

Avira AntiVirus

TR/Dropper.MSIL.rxcp

8.3.3.4

Arcabit

Trojan.Generic.D2FFA51

1.0.0.779

avast!

Win32:Malware-gen

2014.9-161029

AVG

ILCrypt

2017.0.2575

Baidu Antivirus

Win32.Trojan.WisdomEyes.16070401.9500

4.0.3.161029

Bitdefender

Trojan.GenericKD.3144273

1.0.20.1515

Bkav FE

W32.Clod287.Trojan

1.3.0.8455

Comodo Security

TrojWare.MSIL.Agent.GLE

25982

Dr.Web

Trojan.DownLoader20.51192

9.0.1.0303

Emsisoft Anti-Malware

Trojan.GenericKD.3144273

8.16.10.29.08

ESET NOD32

MSIL/Kryptik.FRN (variant)

10.14320

Fortinet FortiGate

MSIL/Injector.OSK!tr

10/29/2016

F-Secure

Trojan.GenericKD.3144273

11.2016-29-10_7

G Data

Trojan.GenericKD.3144273

16.10.25

IKARUS anti.virus

Trojan.MSIL.Crypt

t3scan.2.1.16.0

K7 AntiVirus

Trojan

13.243.21272

Kaspersky

HEUR:Trojan.Win32.Generic

14.0.0.-629

McAfee

Artemis!D9A7C0546855

5600.6231

Microsoft Security Essentials

VirTool:MSIL/Injector.IX

1.1.13202.0

MicroWorld eScan

Trojan.GenericKD.3144273

17.0.0.909

NANO AntiVirus

Trojan.Win32.DownLoader20.ebmssh

1.0.44.12357

Panda Antivirus

Trj/GdSda.A

16.10.29.08

Qihoo 360 Security

HEUR/QVM03.0.Malware.Gen

1.0.0.1120

Quick Heal

Trojan.Inject.g3

10.16.14.00

Sophos

Mal/Generic-S

4.98

Trend Micro House Call

TROJ_GEN.R00XC0EDE16

7.2.303

Trend Micro

TROJ_GEN.R00XC0EDE16

10.465.29

VIPRE Antivirus

Trojan.Win32.Generic

53218

Zillya! Antivirus

Backdoor.BrabotCRTD.Win32.58

2.0.0.3094

File size:

1.2 MB (1,215,024 bytes)

File type:

Executable application (Win32 EXE)

Digital Signature

Signed by:

Bullified Corporation

Authority:

Bullified Corporation

Valid from:

3/30/2016 3:43:18 AM

Valid to:

3/31/2026 3:43:18 AM

Subject:

E=adl@bullified.com, CN=Bullified Ltd., OU=MIIO Dept., O=Bullified Corporation, L=Sydney, S=New South Wales, C=AU

Issuer:

E=adl@bullified.com, CN=Bullified Ltd., OU=MIIO Dept., O=Bullified Corporation, L=Sydney, S=New South Wales, C=AU

Serial number:

00D49F2215296B86E7

File PE Metadata

Compilation timestamp:

4/6/2016 7:17:49 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

24576:HYZn5sumhFK+8PQ6lpE8cbfBrCasjt4eKnO:4c1IEZbZ0CnO

Entry address:

0xF33EE

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 04, 00, 00, 00, 00, 00, 02, 00, 03, 00, 00, 00, 20, 00, 00, 80, 0E, 00, 00, 00, 78, 00, 00, 80, 00, 00, 00, 00, 00, 00, 00, 00, 04, 00, 00, 00, 00, 00, 09, 00, 01, 00, 00, 00, 90, 00, 00, 80, 02, 00, 00, 00, A8, 00, 00, 80, 03, 00, 00, 00, C0, 00, 00, 80, 04, 00, 00, 00, D8, 00, 00, 80, 05, 00, 00, 00, F0, 00, 00, 80, 06, 00, 00, 00, 08, 01, 00, 80, 07, 00, 00, 00, 20, 01, 00, 80, 08, 00, 00, 00, 38, 01... 
[+]

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

965 KB (988,160 bytes)

Remove adobe.snr.patch-painter.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.