csgo hacks made by kwood.exe

SSE

Kwood Ltd

The executable csgo hacks made by kwood.exe has been detected as malware by 31 anti-virus scanners. Accoriding to the detections, this has been classified as a kyelogger which is capable of recoring a user's keystrokes. The file has been seen being downloaded from download1172.mediafire.com.
Publisher:
Kwood Ltd

Product:
SSE

Description:
CSGO Hacks

Version:
1.278.687.96

MD5:
a3c52830fdbcf7cc3adc8de6a095adb9

SHA-1:
b9e8acc4514f662d2ae0a6116c3d173768d7cdc1

SHA-256:
09315bed47be3dd4fd959750a4bab380eb2acb0580cba219bd9ff8136f451e66

Scanner detections:
31 / 68

Status:
Malware

Analysis date:
12/26/2024 12:02:54 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Heur.MSIL.Krypt.11
596

Agnitum Outpost
Trojan.Agent
7.1.1

AhnLab V3 Security
Trojan/Win32.Zbot
2015.06.11

Avira AntiVirus
TR/Inject.xbeigh
8.3.1.6

Arcabit
Trojan.MSIL.Krypt.11
1.0.0.425

avast!
MSIL:GenMalicious-CKR [Trj]
2014.9-150618

AVG
MSIL6
2016.0.3074

Baidu Antivirus
Trojan.MSIL.Injector
4.0.3.15618

Bitdefender
Gen:Heur.MSIL.Krypt.11
1.0.20.845

Comodo Security
UnclassifiedMalware
22406

Dr.Web
Trojan.KeyLogger.26163
9.0.1.0169

Emsisoft Anti-Malware
Gen:Heur.MSIL.Krypt.11
8.15.06.18.06

ESET NOD32
MSIL/Injector.HKI (variant)
9.11764

Fortinet FortiGate
MSIL/HHC!tr
6/18/2015

F-Secure
Gen:Heur.MSIL.Krypt.11
11.2015-18-06_5

G Data
Gen:Heur.MSIL.Krypt.11
15.6.25

IKARUS anti.virus
Trojan.MSIL.Injector
t3scan.1.9.5.0

K7 AntiVirus
Trojan
13.204.16199

Kaspersky
Trojan.Win32.Agent
14.0.0.1866

McAfee
RDN/Generic.dx!d2o
5600.6730

Microsoft Security Essentials
Backdoor:MSIL/Bladabindi.AJ
1.1.11701.0

MicroWorld eScan
Gen:Heur.MSIL.Krypt.11
16.0.0.507

NANO AntiVirus
Trojan.Win32.Inject.dmuhta
0.30.24.2086

Panda Antivirus
Trj/CI.A
15.06.18.06

Qihoo 360 Security
HEUR/QVM03.0.Malware.Gen
1.0.0.1015

Quick Heal
Trojan.Agen.r3
6.15.14.00

Sophos
Mal/Generic-S
4.98

Trend Micro House Call
TROJ_GEN.F0C2C00AP15
7.2.169

Trend Micro
TROJ_GEN.F0C2C00AP15
10.465.18

VIPRE Antivirus
Trojan.Win32.Generic
41000

ViRobot
Trojan.Win32.A.Agent.471552.G[h]
2014.3.20.0

File size:
460.5 KB (471,552 bytes)

Product version:
1.278.687.96

Copyright:
Copyright (c) 2014

Original file name:
C:\Users\TheSkiFresh\Desktop\CSGO Hacks made by Kwood.exe.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

File PE Metadata
Compilation timestamp:
1/20/2015 12:49:25 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
3072:HjeUzUpguuhxwjRxMmG7djb5qFT0wtaqUyV4glPLiIqeKpb0mN6l5W5FL:DeTgul3Xary+4iIqeKpYdl45F

Entry address:
0x187BE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 04, 00, 00, 00, 00, 00, 04, 00, 03, 00, 00, 00, 30, 00, 00, 80, 0E, 00, 00, 00, 80, 00, 00, 80, 10, 00, 00, 00, A0, 00, 00, 80, 18, 00, 00, 00, B8, 00, 00, 80, 00, 00, 00, 00, 00, 00, 00, 00, 04, 00, 00, 00, 00, 00...
 
[+]

Entropy:
4.9222

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
90 KB (92,160 bytes)

The file csgo hacks made by kwood.exe has been seen being distributed by the following URL.

Remove csgo hacks made by kwood.exe - Powered by Reason Core Security