» keygen.exe
Overview
Analysis
File Details

keygen.exe

The executable keygen.exe has been detected as malware by 22 anti-virus scanners.

File name:

keygen.exe

MD5:

b4b61faf4bb26b086b80f2a4954febc4

SHA-1:

25db63153405bdd80cc6ca8a07b6f03b59e14f3f

SHA-256:

62367f355cf5f7a9eb48de8a7dff5c6a03d34316d2c4d8cab826067b59cb6fcd

Scanner detections:

22 / 68

Status:

Malware

Analysis date:

4/1/2025 8:05:47 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Graftor.123800

-40

Agnitum Outpost

Trojan.BitMiner

7.1.1

Avira AntiVirus

TR/Graftor.123800.75

7.11.121.86

AVG

Generic35

2018.0.2438

Baidu Antivirus

Trojan.Win32.BitMiner

4.0.3.17315

Bitdefender

Gen:Variant.Graftor.123800

1.0.20.370

Dr.Web

Trojan.DownLoader11.1100

9.0.1.074

Emsisoft Anti-Malware

Gen:Variant.Graftor.123800

8.17.03.15.06

Fortinet FortiGate

W32/BitMiner.FA!tr

3/15/2017

F-Secure

Gen:Variant.Graftor.123800

11.2017-15-03_4

IKARUS anti.virus

Trojan.Win32.BitMiner

t3scan.2.2.29

K7 AntiVirus

Trojan

13.174.10588

Kaspersky

Trojan.Win32.BitMiner

14.0.0.-1314

Malwarebytes

Trojan.Miner.BC

v2017.03.15.06

McAfee

Artemis!B4B61FAF4BB2

5600.6094

MicroWorld eScan

Gen:Variant.Graftor.123800

18.0.0.222

Norman

Troj_Generic.RSWMZ

11.20170315

Panda Antivirus

Trj/Genetic.gen

17.03.15.06

Sophos

Mal/Generic-S

4.96

Trend Micro House Call

TROJ_SPNV.03LH13

7.2.74

Trend Micro

TROJ_SPNV.03LH13

10.465.15

VIPRE Antivirus

Trojan.Win32.Generic

24634

File size:

5 MB (5,207,040 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\keygen.exe

File PE Metadata

Compilation timestamp:

12/12/2013 2:50:56 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

Entry address:

0x71F5

Entry point:

E8, 8A, 3F, 00, 00, E9, 89, FE, FF, FF, 3B, 0D, AC, 61, 8E, 00, 75, 02, F3, C3, E9, 11, 40, 00, 00, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, AC, 61, 8E, 00, 33, C5, 50, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00, 00, C3, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, AC, 61, 8E, 00, 33, C5, 50, 89, 65, F0, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00... 
[+]

Code size:

63 KB (64,512 bytes)

Remove keygen.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.