» krakersik2007.exe
Overview
Analysis
File Details

krakersik2007.exe

www.SOFCIK.xx.pl

The executable krakersik2007.exe has been detected as malware by 20 anti-virus scanners.

File name:

krakersik2007.exe

Publisher:

www.SOFCIK.xx.pl (signed and verified)

MD5:

523baf08bbf5a9beac9ae3a6f52b07fd

SHA-1:

c8c43e8064ba46337aa1f70fd851f275715b459f

SHA-256:

a6ae1d0902f48bec25e2239c8028f77fb45fab916af3b4a19da95773d6c57549

Scanner detections:

20 / 68

Status:

Malware

Analysis date:

11/26/2024 9:26:38 AM UTC (today)

Scan engine

Detection

Engine version

AegisLab AV Signature

Troj.GameThief.W32.WOW.xvf!c

2.1.4+

AhnLab V3 Security

Win-Trojan/Wowhack.206600

2016.04.20

Avira AntiVirus

TR/Crypt.XPACK.Gen

8.3.3.4

Comodo Security

TrojWare.Win32.Trojan.XPACK.Gen

24841

Fortinet FortiGate

W32/WOW.XVF!tr

6/24/2016

G Data

Win32.Trojan.Agent.5R2LWZ

16.6.25

K7 AntiVirus

Trojan

13.222.19355

Kaspersky

UDS:DangerousObject.Multi.Generic

14.0.0.9

McAfee

RDN/Generic PUP.z!gz

5600.6359

Microsoft Security Essentials

Trojan:Win32/Sisproc!gmb

1.1.12603.0

NANO AntiVirus

Trojan.Win32.WOW.ctrhe

1.0.30.8000

nProtect

Trojan-PWS/W32.WebGame.206600

16.04.19.01

Panda Antivirus

Generic Malware

16.06.24.05

Qihoo 360 Security

Win32/Trojan.Multi.daf

1.0.0.1120

Quick Heal

(Suspicious) - DNAScan

6.16.14.00

Rising Antivirus

PE:Malware.Generic/QRS!1.9E2D [F]

23.00.65.16622

Sophos

Mal/VB-OE

4.98

Vba32 AntiVirus

TrojanPSW.WOW

3.12.26.4

VIPRE Antivirus

Trojan.Win32.Generic

48764

Zillya! Antivirus

Trojan.WOW.Win32.7990

2.0.0.2798

File size:

201.8 KB (206,600 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\krakersik2007\krakersik2007.exe

Digital Signature

Signed by:

www.SOFCIK.xx.pl

Authority:

www.SOFCIK.xx.pl

Valid from:

8/1/2004 1:00:00 AM

Valid to:

8/1/2010 1:00:00 AM

Subject:

OU=Freeware, O=www.SOFCIK.xx.pl, CN=Przemek Rusiecki, C=PL

Issuer:

OU=Freeware, O=www.SOFCIK.xx.pl, CN=Przemek Rusiecki, C=PL

Serial number:

2F4E7D6412E9D5B14F26B527DBE6E6EE

File PE Metadata

Compilation timestamp:

12/24/2006 3:02:32 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

3072:4pVy9Gg+bQhge0O7vrMEb0A9YURsTUJqLnm49RPNFK6L3j1AAKQnU:4j2obkt4Eb0WYURsTeL49RPNk6/S2U

Entry address:

0x47650

Entry point:

60, BE, 00, 70, 41, 00, 8D, BE, 00, A0, FE, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 19, 8B, 1E, 83, EE, FC, 11, DB, 72, 10, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 78, D1, F8, 89, C5, EB, 0B, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11... 
[+]

Packer / compiler:

UPX 2.90LZMA

Code size:

196 KB (200,704 bytes)

Remove krakersik2007.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.