» jywgxrjzd.exe
Overview
Analysis
File Details
Downloads (1)

jywgxrjzd.exe

局域网共享软件

卤中仙

The executable jywgxrjzd.exe has been detected as malware by 35 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from wt10.haote.com.

File name:

jywgxrjzd.exe

Publisher:

卤中仙

Product:

局域网共享软件

Description:

局域网共享软件V7.2

Version:

7.2.0.0

MD5:

f9cc17734b51eae340b942e85418deb0

SHA-1:

51edeb70bce7b2383e94af37066805ec5bea1c28

SHA-256:

83783738897b12566c194d82055e32791a19e39e7e1e33ed73f2d8a4fbd4b438

Scanner detections:

35 / 68

Status:

Malware

Analysis date:

11/28/2024 12:24:02 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.Generic.10296630

786

Agnitum Outpost

Trojan.Badur

7.1.1

AhnLab V3 Security

Trojan/Win32.HackTool

2014.12.04

Avira AntiVirus

TR/Agent.Themida.aag.445

7.11.192.58

avast!

Win32:Malware-gen

2014.9-141210

AVG

Packed_c

2015.0.3264

Baidu Antivirus

Trojan.Win32.Badur

4.0.3.141210

Bitdefender

Trojan.Generic.10296630

1.0.20.1720

Bkav FE

HW32.Packed

1.3.0.6267

Comodo Security

UnclassifiedMalware

20273

Dr.Web

Trojan.DownLoader9.23781

9.0.1.0344

ESET NOD32

Win32/Spy.Agent.OIT

8.10820

Fortinet FortiGate

W32/Generic!tr

12/10/2014

F-Secure

Trojan.Generic.10296630

11.2014-10-12_4

G Data

Trojan.Generic.10296630

14.12.24

IKARUS anti.virus

Trojan.Win32.Badur

t3scan.1.8.5.0

K7 AntiVirus

Trojan

13.186.14225

Kaspersky

Trojan.Win32.Badur

14.0.0.2817

Malwarebytes

Trojan.Badur

v2014.12.10.02

McAfee

Artemis!F9CC17734B51

5600.6920

Microsoft Security Essentials

Trojan:Win32/Comisproc!gmb

1.11202

MicroWorld eScan

Trojan.Generic.10296630

15.0.0.1032

NANO AntiVirus

Trojan.Win32.Badur.ctprer

0.28.6.63850

Norman

Suspicious_Gen4.FOZSZ

11.20141210

nProtect

Trojan/W32.Badur.1425408

14.12.03.01

Panda Antivirus

Trj/Thed.A

14.12.10.02

Quick Heal

Trojan.Badur.g6

12.14.14.00

Sophos

Mal/Generic-S

4.98

Trend Micro House Call

TROJ_KRYPTK.YSB

7.2.344

Trend Micro

TROJ_KRYPTK.YSB

10.465.10

Vba32 AntiVirus

Trojan.Badur

3.12.26.3

VIPRE Antivirus

Trojan.Win32.Generic

35386

ViRobot

Trojan.Win32.A.Badur.1425408

2011.4.7.4223

XVirus List

Win32.Detected

2.12.10

Zillya! Antivirus

Trojan.Badur.Win32.1857

2.0.0.1998

File size:

1.4 MB (1,425,408 bytes)

Product version:

7.2.0.0

软件可任意使用，本软件绿色免费，请保证你的软件在多特或官网下载，保证软件无任何病毒。如果在他站下载造成您计算机无法使用，本作者不负责任何责任！

File type:

Executable application (Win32 EXE)

Language:

Chinese

Common path:

C:\users\{user}\downloads\jywgxrjzd.exe

File PE Metadata

Compilation timestamp:

5/16/2013 5:15:00 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

24576:vD1fSYftPkgZduy+nR2T3MW4t43xrXR2MAKDHhjaUp6Zk8NO44pICAOMezftMd:ZftftXeRE3n4KVBvAKDH1YZ5M45afWd

Entry address:

0x36F000

Entry point:

83, EC, 04, 50, 53, E8, 01, 00, 00, 00, CC, 58, 8B, D8, 40, 2D, 00, 50, 0E, 00, 2D, 65, E3, 60, 00, 05, 5A, E3, 60, 00, 80, 3B, CC, 75, 19, C6, 03, 00, BB, 00, 10, 00, 00, 68, 95, 93, 3B, 6D, 68, 0F, 79, 30, 57, 53, 50, E8, 0A, 00, 00, 00, 83, C0, 00, 89, 44, 24, 08, 5B, 58, C3, 55, 8B, EC, 60, 8B, 75, 08, 8B, 4D, 0C, C1, E9, 02, 8B, 45, 10, 8B, 5D, 14, EB, 08, 31, 06, 01, 1E, 83, C6, 04, 49, 0B, C9, 75, F4, 61, C9, C2, 10, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Code size:

656 KB (671,744 bytes)

The file jywgxrjzd.exe has been seen being distributed by the following URL.

http://wt10.haote.com/jywgxrjzd.exe

Remove jywgxrjzd.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.