home

idclzxsqbj

MalTech Incorporation

Publisher:
MalTech Incorporation  (signed and verified)

MD5:
282e67e18f8fc46510b8b92172d89a12

SHA-1:
10e4c66e15982c30d6ff9651104f6e2f846cca1a

SHA-256:
c6fc29b4e27686220cf2df9f189f4dd09d5bd567e0f7ba09e00c0f65e946a183

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/24/2024 2:26:31 PM UTC  (today)

Scan engine
Detection
Engine version

F-Secure
Trojan.GenericKD.3369347
5.15.154

Microsoft Security Essentials
Backdoor:Win32/Kirts.A
1.233.3112.0

File size:
178.8 KB (183,110 bytes)

Common path:
C:\users\{user}\appdata\local\temp\idclzxsqbj

Digital Signature
Signed by:
MalTech Incorporation

Authority:
MalTech Incorporation

Valid from:
6/28/2016 10:59:10 AM

Valid to:
6/29/2026 10:59:10 AM

Subject:
E=sales@maltech.net, CN=*.maltech.net, OU=MT Dept, O=MalTech Incorporation, L=Ankara, S=Central Anatolia, C=TR

Issuer:
E=sales@maltech.net, CN=*.maltech.net, OU=MT Dept, O=MalTech Incorporation, L=Ankara, S=Central Anatolia, C=TR

Serial number:
00CEB7057124641D8C

File PE Metadata
Compilation timestamp:
6/30/2016 10:33:24 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

Entry address:
0x15B0E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.4452

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
80 KB (81,920 bytes)

Scan idclzxsqbj - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.