» jpg.exe
Overview
Analysis
File Details
Downloads (1)

jpg.exe

The executable jpg.exe has been detected as malware by 14 anti-virus scanners. The file has been seen being downloaded from www.odesk.com.

File name:

jpg.exe

MD5:

e1eb431d688e542f003cebad8ec32030

SHA-1:

5c4cc80b9add3d546b7af5689d1b9371fae09f63

SHA-256:

40e4ad88105b722f2d78da310e9aeb64428659a9cc8f7a0899b6dd1dbb1e3b6e

Scanner detections:

14 / 68

Status:

Malware

Analysis date:

11/18/2024 3:17:30 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.GenericKD.2081443

751

avast!

Win32:Malware-gen

2014.9-150115

AVG

MSIL6

2016.0.3229

Baidu Antivirus

Trojan.MSIL.Injector

4.0.3.15115

Bitdefender

Trojan.GenericKD.2081443

1.0.20.75

Dr.Web

Trojan.Keylog.755

9.0.1.015

Emsisoft Anti-Malware

Trojan.GenericKD.2081443

8.15.01.15.09

ESET NOD32

MSIL/Injector.HDA (variant)

9.11015

Fortinet FortiGate

MSIL/HDA!tr

1/15/2015

G Data

Trojan.GenericKD.2081443

15.1.24

IKARUS anti.virus

Trojan.MSIL.Injector

t3scan.1.8.6.0

MicroWorld eScan

Trojan.GenericKD.2081443

16.0.0.45

Qihoo 360 Security

HEUR/QVM03.0.Malware.Gen

1.0.0.1015

Trend Micro House Call

Suspicious_GEN.F47V0114

7.2.15

File size:

1.2 MB (1,274,880 bytes)

File type:

Executable application (Win32 EXE)

File PE Metadata

Compilation timestamp:

1/14/2015 4:48:45 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

24576:oiZ4vCb9VUFe/KP28WszXrEw6EI6T4yl75mdQPHytgqer0b8iGR20TnDlxdNMi:J1zUFeSP28WszXrEw6EI6T4yl75mdQP3

Entry address:

0x138D8E

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 04, 00, 00, 00, 00, 00... 
[+]

Entropy:

6.8769

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

1.2 MB (1,273,344 bytes)

The file jpg.exe has been seen being distributed by the following URL.

https://www.odesk.com/.../~~nT9iPWRj*QVJSPGT27hyzPpVilxsudvVAaUCxg451ZvENMosEGq5v5bjRSfB3vIb

Remove jpg.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.