» Epic Duel Varium Patch.exe
Overview
Analysis
File Details
Downloads (1)

Epic Duel Varium Patch.exe

Epic Duel Varium Patch

The executable Epic Duel Varium Patch.exe has been detected as malware by 21 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from download855.mediafire.com.

File name:

Publisher:

Microsoft* (Invalid match)

Product:

Epic Duel Varium Patch

Version:

1.0.0.0

MD5:

d7cfa806319211dd6211ce1153c4c4c5

SHA-1:

32d5faa482a2b4a611a46e52dc8ca137f3c2e9fb

SHA-256:

f03394ff0653bffc03561f6cd0a058274f560bf63d787e0b66ca13e88e5b913f

Scanner detections:

21 / 68

Status:

Malware

Analysis date:

11/23/2024 12:11:17 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.Generic.8365789

185

Avira AntiVirus

TR/Rogue.8365789

7.11.212.242

avast!

Win32:Malware-gen

2014.9-160802

AVG

PSW.Generic10

2017.0.2663

Baidu Antivirus

Trojan.MSIL.Agent

4.0.3.1682

Bitdefender

Trojan.Generic.8365789

1.0.20.1075

Bkav FE

HW32.Packed

1.3.0.6379

Comodo Security

UnclassifiedMalware

21241

Emsisoft Anti-Malware

Trojan.Generic.8365789

8.16.08.02.09

ESET NOD32

MSIL/PSW.Agent.OFT (variant)

10.11248

Fortinet FortiGate

MSIL/Agent.OFU!tr

8/2/2016

F-Secure

Trojan.Generic.8365789

11.2016-02-08_3

G Data

Trojan.Generic.8365789

16.8.25

IKARUS anti.virus

Trojan.SuspectCRC

t3scan.1.8.6.0

McAfee

Artemis!D7CFA8063192

5600.6319

MicroWorld eScan

Trojan.Generic.8365789

17.0.0.645

Norman

Suspicious_Gen4.CBBJP

11.20160802

Panda Antivirus

Trj/Sharik.B

16.08.02.09

Qihoo 360 Security

Win32/Trojan.PSW.4ea

1.0.0.1015

Rising Antivirus

PE:Trojan.Win32.Generic.136DA7C7!325953479

23.00.65.16731

VIPRE Antivirus

Trojan.Win32.Generic

37990

File size:

364 KB (372,736 bytes)

Product version:

1.0.0.0

Original file name:

Epic Duel Varium Patch.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\epic duel varium patch.exe

File PE Metadata

Compilation timestamp:

9/6/2011 1:23:44 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

6144:o4KSTSlEPmGk7IjDLs4rUH+nmiGbECqlUQZ9r51Q+QF9sgQYl92TaTRNpFKQbI0E:IfWP1HQ1EQx9sgFQTaTR70QbJEov

Entry address:

0x5BBEE

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, A0, 05, 65, 4E, 00, 00, 00, 00, 02, 00, 00, 00, 86, 00, 00, 00, 1C, C0, 05, 00, 1C, A0, 05, 00, 52, 53, 44, 53, EE, B3, 15, 9A, 9F, 48, 07, 49, B2, E5, 61, 16, 84, FA, D1, 0E, 01, 00, 00, 00, 43, 3A, 5C, 55, 73, 65, 72, 73, 5C, 53, 61, 6D, 5C, 41, 70, 70, 44, 61, 74, 61, 5C, 4C, 6F, 63, 61, 6C, 5C, 54, 65, 6D, 70, 6F, 72, 61, 72, 79, 20, 50, 72, 6F, 6A, 65, 63, 74, 73, 5C, 45, 70, 69, 63, 20, 44, 75, 65, 6C, 20, 56, 61... 
[+]

Entropy:

7.9295

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

359 KB (367,616 bytes)

The file Epic Duel Varium Patch.exe has been seen being distributed by the following URL.

http://download855.mediafire.com/3bk92iait2yg/.../Epic Duel Varium Patch.exe

Remove Epic Duel Varium Patch.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.