» fyk.exe
Overview
Analysis
File Details
Downloads (2)

fyk.exe

The executable fyk.exe has been detected as malware by 11 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from www.sosvirus.net and multiple other hosts.

File name:

fyk.exe

MD5:

72c2e2fee7411d8da8a62f7fea3be7c3

SHA-1:

926eb1a9637f5efe000c72b899703956607696d1

SHA-256:

1446a43a4f68c9e7d8ed82c5593b5793be46868f18c354360236a1753e7ccf26

Scanner detections:

11 / 68

Status:

Malware

Analysis date:

12/26/2024 6:11:59 PM UTC (today)

Scan engine

Detection

Engine version

AegisLab AV Signature

Packer.Generic!c

2.1.4+

avast!

Win32:WrongInf-A [Susp]

2014.9-160421

Baidu Antivirus

Win32.Trojan.WisdomEyes.151026.9950

4.0.3.16421

Clam AntiVirus

Win.Trojan.Agent-1376598

0.98/21511

Fortinet FortiGate

Riskware/Beagle

4/21/2016

IKARUS anti.virus

Virus.Win32.Parite

t3scan.2.0.9.0

McAfee

Artemis!72C2E2FEE741

5600.6422

Qihoo 360 Security

HEUR/QVM10.1.Malware.Gen

1.0.0.1120

Rising Antivirus

PE:Malware.Generic/QRS!1.9E2D [F]

23.00.65.16419

Vba32 AntiVirus

Trojan.Midgare

3.12.26.4

ViRobot

Trojan.Win32.S.Agent.1974390[h]

2014.3.20.0

File size:

1.9 MB (1,974,390 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\fyk.exe

File PE Metadata

Compilation timestamp:

1/3/2016 12:34:27 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

49152:o6JWdIQFa5LIsgpxpsIhBHwGvPk6icne9hjGD2eW7d7/:opd7F+LvQL7Qc86i9hTeWZ7/

Entry address:

0x119DC

Entry point:

E8, 2D, 64, 00, 00, E9, 78, FE, FF, FF, 55, 8B, EC, 83, EC, 04, 89, 7D, FC, 8B, 7D, 08, 8B, 4D, 0C, C1, E9, 07, 66, 0F, EF, C0, EB, 08, 8D, A4, 24, 00, 00, 00, 00, 90, 66, 0F, 7F, 07, 66, 0F, 7F, 47, 10, 66, 0F, 7F, 47, 20, 66, 0F, 7F, 47, 30, 66, 0F, 7F, 47, 40, 66, 0F, 7F, 47, 50, 66, 0F, 7F, 47, 60, 66, 0F, 7F, 47, 70, 8D, BF, 80, 00, 00, 00, 49, 75, D0, 8B, 7D, FC, 8B, E5, 5D, C3, 55, 8B, EC, 83, EC, 10, 89, 7D, FC, 8B, 45, 08, 99, 8B, F8, 33, FA, 2B, FA, 83, E7, 0F, 33, FA, 2B, FA, 85, FF, 75, 3C, 8B... 
[+]

Code size:

114 KB (116,736 bytes)

The file fyk.exe has been seen being distributed by the following 2 URLs.

https://www.sosvirus.net/en/download/.../?wpdmdl=1030

https://www.sosvirus.net/telecharger/.../?wpdmdl=5182

Remove fyk.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.