» lord injector v1.1 â-- ðºð¾ð¿ð¸ñ-.exe
Overview
Analysis
File Details
Downloads (1)

lord injector v1.1 â-- ðºð¾ð¿ð¸ñ-.exe

LORD INJECTOR

LORD

The application lord injector v1.1 â-- ðºð¾ð¿ð¸ñ-.exe has been detected as a potentially unwanted program by 13 anti-malware scanners. The file has been seen being downloaded from download853.mediafire.com.

File name:

Publisher:

LORD

Product:

LORD INJECTOR

Version:

2.0.0.0

MD5:

6e59cead7579102e6ca22c11a168a9a3

SHA-1:

871e0f092b30e0f6d184371122dbee17e7eae0cc

SHA-256:

ee94ea176c4e9d4e3c04e37e03917a05189d400ae41b7a78bb70d17290ce7c96

Scanner detections:

13 / 68

Status:

Potentially unwanted

Analysis date:

11/23/2024 6:39:23 PM UTC (today)

Scan engine

Detection

Engine version

AegisLab AV Signature

Troj.Drop.Agent!c

2.1.4+

Avira AntiVirus

TR/Drop.Agent.drby

8.3.3.4

avast!

Win32:Malware-gen

2014.9-160727

Bkav FE

W32.Clodf0f.Trojan

1.3.0.8108

Dr.Web

MULDROP.Trojan

9.0.1.0209

IKARUS anti.virus

Win32.Jorik

t3scan.2.1.6.0

McAfee

GenericR-HYW!6E59CEAD7579

5600.6325

NANO AntiVirus

Trojan.Win32.Drop.eeheas

1.0.38.8984

Qihoo 360 Security

HEUR/QVM05.1.Malware.Gen

1.0.0.1120

Trend Micro

TROJ_GEN.R047C0OG316

10.465.27

Vba32 AntiVirus

TScope.Trojan.Delf

3.12.26.4

VIPRE Antivirus

Trojan.Win32.Generic

50834

Zillya! Antivirus

Adware.Somoto.Win32.503

2.0.0.2958

File size:

2.2 MB (2,263,040 bytes)

Product version:

2.0.0.0

LORD

Original file name:

LORD INJECTOR

File type:

Executable application (Win32 EXE)

Language:

Portuguese (Brazil)

Common path:

C:\users\{user}\downloads\lord injector v1.1 â-- ðºð¾ð¿ð¸ñ-.exe

File PE Metadata

Compilation timestamp:

6/20/1992 5:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

24576:lZyc6QU6ybz5zGmx10aDKiPgQVvagRIqlB7alQJc4Fn9wpIePm1TgBUlJcNEEgqp:lQuyBvaUKFqX9q18TrdqCdqTyDS5P

Entry address:

0x172AEC

Entry point:

55, 8B, EC, 83, C4, F0, B8, CC, 24, 57, 00, E8, 24, 41, E9, FF, A1, 88, 9C, 57, 00, 8B, 00, E8, C8, 7E, EF, FF, A1, 88, 9C, 57, 00, 8B, 00, BA, 64, 2B, 57, 00, E8, C7, 7A, EF, FF, 8B, 0D, 5C, 9E, 57, 00, A1, 88, 9C, 57, 00, 8B, 00, 8B, 15, D8, 15, 57, 00, E8, B7, 7E, EF, FF, 8B, 0D, B0, 9E, 57, 00, A1, 88, 9C, 57, 00, 8B, 00, 8B, 15, D4, 10, 57, 00, E8, 9F, 7E, EF, FF, A1, 88, 9C, 57, 00, 8B, 00, E8, 13, 7F, EF, FF, E8, 3A, 18, E9, FF, 00, 00, FF, FF, FF, FF, 04, 00, 00, 00, 4C, 4F, 52, 44, 00, 00, 00, 00... 
[+]

Entropy:

7.0084

Developed / compiled with:

Microsoft Visual C++

Code size:

1.4 MB (1,514,496 bytes)

The file lord injector v1.1 â-- ðºð¾ð¿ð¸ñ-.exe has been seen being distributed by the following URL.

http://download853.mediafire.com/4l5as3m049bg/.../LORD INJECTOR V1.1 â?? ÐºÐ¾Ð¿Ð¸Ñ.exe

Remove lord injector v1.1 â-- ðºð¾ð¿ð¸ñ-.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.