home

krt_5.0.0.110_beta.exe

KRT

Collective Intelligence forum.ru-board

The application krt_5.0.0.110_beta.exe has been detected as a potentially unwanted program by 7 anti-malware scanners.
Publisher:
Collective Intelligence forum.ru-board

Product:
KRT

Version:
5.0.0.110

MD5:
a8050ef910af2a008cadaf2c3df36cb2

SHA-1:
8b051bc7e4b82a79f0af0152ef2a8a05d3be67a5

SHA-256:
ad6fe88b935e362d77d1596ba56eafa4790c5502906bb8ca9d84cb4bb16c91c2

Scanner detections:
7 / 68

Status:
Potentially unwanted

Analysis date:
11/17/2024 6:48:16 AM UTC  (today)

Scan engine
Detection
Engine version

Baidu Antivirus
Trojan.Win32.HackAV
4.0.3.15623

ESET NOD32
Win32/RiskWare.HackAV.OM (variant)
9.11602

IKARUS anti.virus
PUA.RiskWare.HackAV
t3scan.1.8.9.0

McAfee
Artemis!A8050EF910AF
5600.6725

NANO AntiVirus
Trojan.Win32.KRT.doctel
0.30.24.1357

Qihoo 360 Security
HEUR/QVM05.1.Malware.Gen
1.0.0.1015

Trend Micro House Call
Suspicious_GEN.F47V0502
7.2.174

File size:
1.8 MB (1,937,408 bytes)

Product version:
5.0.0.110

Copyright:
Copyright (C) 2013-2015 Collective Intelligence forum.ru-board

File type:
Executable application (Win32 EXE)

Language:
Russian (Russia)

Common path:
C:\users\{user}\downloads\kis 15 0 2 361\kis.15.0.2.361.mr2\kaspersky reset tool\krt_5.0.0.110_beta.exe

File PE Metadata
Compilation timestamp:
5/2/2015 1:26:43 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:apXQwjz9oa4Es4ZlyM98aWdaypL/aoPahBeSZA4KlAGez5RoT06inDzUfTFJIMtY:aPzaZg0dB1ahQS/KMRV6invkTFJFtY

Entry address:
0x186310

Entry point:
55, 8B, EC, 83, C4, F0, B8, 7C, E3, 57, 00, E8, B4, 4B, E8, FF, A1, FC, FB, 58, 00, 8B, 00, E8, C0, 34, FA, FF, A1, FC, FB, 58, 00, 8B, 00, B2, 01, E8, D2, 51, FA, FF, 8B, 0D, C8, F8, 58, 00, A1, FC, FB, 58, 00, 8B, 00, 8B, 15, 8C, BC, 57, 00, E8, B2, 34, FA, FF, 8B, 0D, 20, F9, 58, 00, A1, FC, FB, 58, 00, 8B, 00, 8B, 15, E4, E3, 56, 00, E8, 9A, 34, FA, FF, A1, FC, FB, 58, 00, 8B, 00, E8, F2, 35, FA, FF, E8, 31, 0C, E8, FF, 90, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
1.5 MB (1,593,344 bytes)

Remove krt_5.0.0.110_beta.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.