» hnzxz.exe
Overview
Analysis
File Details

hnzxz.exe

Kunststoffmuffe8

Malwarebytes Corporation

The executable hnzxz.exe has been detected as malware by 34 anti-virus scanners.

File name:

hnzxz.exe

Publisher:

Malwarebytes Corporation (signed and verified)

Product:

Kunststoffmuffe8

Description:

Lungenmaschinen

Version:

7.08.0006

MD5:

9dab658035e014d6497a2c5b3ac4530a

SHA-1:

221afc460c2407294dcbe9b6e1f60a5ac108ffa0

SHA-256:

11576d68ffcfe2fc5a15130a3ab3249c025bccdc5f667fa0c7cee1030fad6de8

Scanner detections:

34 / 68

Status:

Malware

Analysis date:

11/30/2024 8:06:42 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Symmi.48747

Agnitum Outpost

Trojan.Boaxxe

7.1.1

AhnLab V3 Security

Trojan/Win32.Zbot

2015.02.15

Avira AntiVirus

TR/Dropper.VB.24254

7.11.210.58

avast!

Win32:Trojan-gen

2014.9-161119

AVG

Generic36

2017.0.2555

Baidu Antivirus

Trojan.Win32.Boaxxe

4.0.3.161119

Bitdefender

Gen:Variant.Symmi.48747

1.0.20.1620

Clam AntiVirus

Win.Trojan.Agent-825129

0.98/21511

Comodo Security

UnclassifiedMalware

21079

Dr.Web

Trojan.Siggen6.23087

9.0.1.0324

Emsisoft Anti-Malware

Gen:Variant.Symmi.48747

8.16.11.19.04

ESET NOD32

Win32/Boaxxe.BR

10.11177

Fortinet FortiGate

W32/Boaxxe.BR!tr

11/19/2016

F-Secure

Gen:Variant.Symmi.48747

11.2016-19-11_7

G Data

Gen:Variant.Symmi.48747

16.11.25

IKARUS anti.virus

Trojan.Win32.Boaxxe

t3scan.1.8.6.0

K7 AntiVirus

Trojan

13.194.14968

Kaspersky

UDS:DangerousObject.Multi.Generic

14.0.0.-731

Malwarebytes

Trojan.EDVBGen

v2016.11.19.04

McAfee

RDN/Generic.dx!dh3

5600.6211

Microsoft Security Essentials

Trojan:Win32/Miuref.F

1.1.11302.0

MicroWorld eScan

Gen:Variant.Symmi.48747

17.0.0.972

NANO AntiVirus

Trojan.Win32.Siggen6.dkimpn

0.30.0.65070

Norman

Boaxxe.LVI

11.20161119

Panda Antivirus

Trj/CI.A

16.11.19.04

Qihoo 360 Security

Win32/Trojan.Dropper.f89

1.0.0.1015

Quick Heal

VirTool.VBInject.LN3

11.16.14.00

Sophos

Troj/Miuref-U

4.98

SUPERAntiSpyware

Trojan.Agent/Gen-Zusy

8767

Total Defense

Win32/Tnega.QcdAdE

37.0.11442

Trend Micro House Call

TROJ_GEN.R0C1C0DL414

7.2.324

Trend Micro

TROJ_GEN.R0C1C0DL414

10.465.19

VIPRE Antivirus

Trojan.Win32.Generic

37564

File size:

297.3 KB (304,464 bytes)

Product version:

7.08.0006

Lötverfahren

Trademarks:

Plutoniumisotops5

Original file name:

Flügelknicks Konzernschulden4.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\appdata\local\temporary internet files\hnzxz.exe

Digital Signature

Signed by:

Malwarebytes Corporation

Authority:

VeriSign, Inc.

Valid from:

6/4/2010 2:00:00 AM

Valid to:

6/5/2011 1:59:59 AM

Subject:

CN=Malwarebytes Corporation, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Malwarebytes Corporation, L=San Jose, S=California, C=US

Issuer:

CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

22A3557A2217CB2D89BAE979B554EF4D

File PE Metadata

Compilation timestamp:

2/15/2015 4:05:20 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

3072:+Cz7cXRfudwWUIX7C1anrpfJBuf+LULVo47yWk8enM:xAQdwnI1FrpULVonWkjM

Entry address:

0x1330

Entry point:

68, F0, 70, 41, 00, E8, F0, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 87, 62, CA, 45, 3A, 09, B5, 4B, B8, 49, 6B, 76, 61, 1A, 97, 37, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 73, 0D, 0A, 43, 61, 70, 4D, 6F, 74, 6F, 72, 62, 72, 61, 6E, 64, 00, 20, 20, 20, 20, 20, 00, 00, 00, 00, FF, CC, 31, 00, 0C, 79, 04, B2, 40, 18, 94, 2E, 45, A4, 99, 60, 0E, 19, 0B, 77, 2F, 01, E6, ED, 1A, 30, C6, BD, 40, 86, AB, 49, FF, E7, AF, 22, 8A, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00... 
[+]

Developed / compiled with:

Microsoft Visual Basic v5.0

Code size:

268 KB (274,432 bytes)

Remove hnzxz.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.