combatnxr.exe

Gerenciador De Audio Do Windows

The executable combatnxr.exe has been detected as malware by 19 anti-virus scanners. The file has been seen being downloaded from fs10n1.sendspace.com.
Product:
Gerenciador De Audio Do Windows

Version:
1.0.0.0

MD5:
895205408c06df7845f163d0baac24f1

SHA-1:
e59a679b83b6c09a0bcbf64ba182dd706dca2f80

SHA-256:
168155030f1cd5bc48bf9bc65ff7f605d537e6850b4d3a5636a06502f4f40289

Scanner detections:
19 / 68

Status:
Malware

Analysis date:
12/26/2024 10:52:34 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Zusy.153610
186

AegisLab AV Signature
Troj.W32.Gen.lZj2
2.1.4+

Avira AntiVirus
TR/Dropper.Gen
8.3.3.4

Arcabit
Trojan.Zusy.D2580A
1.0.0.741

avast!
Win32:Malware-gen
2014.9-160801

AVG
Atros3
2017.0.2664

Baidu Antivirus
Win32.Trojan.WisdomEyes.151026.9950
4.0.3.1681

Bitdefender
Gen:Variant.Zusy.153610
1.0.20.1070

Emsisoft Anti-Malware
Gen:Variant.Zusy.153610
8.16.08.01.04

ESET NOD32
MSIL/Packed.Confuser.P suspicious (variant)
10.13673

F-Prot
W32/MSIL_Troj.DL.gen
v6.4.7.1.166

F-Secure
Gen:Variant.Zusy.153610
11.2016-01-08_2

G Data
Gen:Variant.Zusy.153610
16.8.25

IKARUS anti.virus
Trojan.MSIL.Crypt
t3scan.2.1.6.0

K7 AntiVirus
Trojan
13.230.19973

Kaspersky
HEUR:Trojan.Win32.Generic
14.0.0.-183

MicroWorld eScan
Gen:Variant.Zusy.153610
17.0.0.642

Qihoo 360 Security
QVM03.0.Malware.Gen
1.0.0.1120

VIPRE Antivirus
Trojan.Win32.Generic
50252

File size:
187.4 KB (191,932 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2016

Original file name:
Gerenciador De Audio Do Windows.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\combatnxr.exe

File PE Metadata
Compilation timestamp:
6/14/2016 7:36:25 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
3072:VQe+u7u9BFQsl7qxsQWSmjUZ7W7XXJrrjdiEVjLuenJ3mT3dgeFVMC3:q3pYiQqjUZ78XJrPIK3LsB5YK

Entry address:
0x277BE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 04, 00, 03, 00, 00, 00, 30, 00, 00, 80, 0E, 00, 00, 00, 50, 00, 00, 80, 10, 00, 00, 00, 68, 00, 00, 80, 18, 00, 00, 00, 80, 00, 00, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.2511

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
150 KB (153,600 bytes)

The file combatnxr.exe has been seen being distributed by the following URL.

Remove combatnxr.exe - Powered by Reason Core Security