Epic Duel Varium Patch.exe

Epic Duel Varium Patch

The executable Epic Duel Varium Patch.exe has been detected as malware by 21 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from download855.mediafire.com.
Publisher:
Microsoft*  (Invalid match)

Product:
Epic Duel Varium Patch

Version:
1.0.0.0

MD5:
d7cfa806319211dd6211ce1153c4c4c5

SHA-1:
32d5faa482a2b4a611a46e52dc8ca137f3c2e9fb

SHA-256:
f03394ff0653bffc03561f6cd0a058274f560bf63d787e0b66ca13e88e5b913f

Scanner detections:
21 / 68

Status:
Malware

Analysis date:
12/25/2024 5:06:07 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.Generic.8365789
185

Avira AntiVirus
TR/Rogue.8365789
7.11.212.242

avast!
Win32:Malware-gen
2014.9-160802

AVG
PSW.Generic10
2017.0.2663

Baidu Antivirus
Trojan.MSIL.Agent
4.0.3.1682

Bitdefender
Trojan.Generic.8365789
1.0.20.1075

Bkav FE
HW32.Packed
1.3.0.6379

Comodo Security
UnclassifiedMalware
21241

Emsisoft Anti-Malware
Trojan.Generic.8365789
8.16.08.02.09

ESET NOD32
MSIL/PSW.Agent.OFT (variant)
10.11248

Fortinet FortiGate
MSIL/Agent.OFU!tr
8/2/2016

F-Secure
Trojan.Generic.8365789
11.2016-02-08_3

G Data
Trojan.Generic.8365789
16.8.25

IKARUS anti.virus
Trojan.SuspectCRC
t3scan.1.8.6.0

McAfee
Artemis!D7CFA8063192
5600.6319

MicroWorld eScan
Trojan.Generic.8365789
17.0.0.645

Norman
Suspicious_Gen4.CBBJP
11.20160802

Panda Antivirus
Trj/Sharik.B
16.08.02.09

Qihoo 360 Security
Win32/Trojan.PSW.4ea
1.0.0.1015

Rising Antivirus
PE:Trojan.Win32.Generic.136DA7C7!325953479
23.00.65.16731

VIPRE Antivirus
Trojan.Win32.Generic
37990

File size:
364 KB (372,736 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © Microsoft 2011

Original file name:
Epic Duel Varium Patch.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\epic duel varium patch.exe

File PE Metadata
Compilation timestamp:
9/6/2011 1:23:44 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:o4KSTSlEPmGk7IjDLs4rUH+nmiGbECqlUQZ9r51Q+QF9sgQYl92TaTRNpFKQbI0E:IfWP1HQ1EQx9sgFQTaTR70QbJEov

Entry address:
0x5BBEE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, A0, 05, 65, 4E, 00, 00, 00, 00, 02, 00, 00, 00, 86, 00, 00, 00, 1C, C0, 05, 00, 1C, A0, 05, 00, 52, 53, 44, 53, EE, B3, 15, 9A, 9F, 48, 07, 49, B2, E5, 61, 16, 84, FA, D1, 0E, 01, 00, 00, 00, 43, 3A, 5C, 55, 73, 65, 72, 73, 5C, 53, 61, 6D, 5C, 41, 70, 70, 44, 61, 74, 61, 5C, 4C, 6F, 63, 61, 6C, 5C, 54, 65, 6D, 70, 6F, 72, 61, 72, 79, 20, 50, 72, 6F, 6A, 65, 63, 74, 73, 5C, 45, 70, 69, 63, 20, 44, 75, 65, 6C, 20, 56, 61...
 
[+]

Entropy:
7.9295

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
359 KB (367,616 bytes)

The file Epic Duel Varium Patch.exe has been seen being distributed by the following URL.

Remove Epic Duel Varium Patch.exe - Powered by Reason Core Security