home

malware198

PCSwift

Jagdeependra

The file malware198 has been detected as malware by 15 anti-virus scanners.
Publisher:
PGWARE LLC  (signed by Jagdeependra)

Product:
PCSwift

Version:
1.0.0.0

MD5:
39a844b196a375165bed8d0f03495113

SHA-1:
283a81b3458e75c2f8214f24d1f0d1b31b6cfe78

SHA-256:
169b6c76c6a5a9c47fa04324103107dba5bc85037c54543642efffebac672301

Scanner detections:
15 / 68

Status:
Malware

Analysis date:
12/5/2024 1:05:33 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Mikey.18729
573

Avira AntiVirus
TR/Black.Gen2
8.3.1.6

Arcabit
Trojan.Mikey.D4929
1.0.0.425

avast!
Win32:Agent-AVCX [Trj]
2014.9-150711

Bitdefender
Gen:Variant.Mikey.18729
1.0.20.960

Bkav FE
HW32.Packed
1.3.0.6979

Emsisoft Anti-Malware
Gen:Variant.Mikey.18729
8.15.07.11.08

ESET NOD32
Win32/Agent.WSY (variant)
9.11925

Fortinet FortiGate
W32/FinSpy.A!tr
7/11/2015

G Data
Gen:Variant.Mikey.18729
15.7.25

IKARUS anti.virus
Trojan.Win32.Agent
t3scan.1.9.5.0

Kaspersky
Trojan-Spy.Win32.FinSpy
14.0.0.1751

MicroWorld eScan
Gen:Variant.Mikey.18729
16.0.0.576

Panda Antivirus
Generic Suspicious
15.07.11.08

Sophos
Mal/VMProtBad-A
4.98

File size:
377.8 KB (386,824 bytes)

Product version:
1.0.0.0

Copyright:
Copyright (c) 2014 PGWARE LLC

Language:
Language Neutral

Digital Signature
Signed by:
Jagdeependra

Authority:
COMODO CA Limited

Valid from:
7/1/2013 2:00:00 AM

Valid to:
7/2/2015 1:59:59 AM

Subject:
CN=Jagdeependra, OU=tech, O=Jagdeependra, STREET=r/o sehi kala, L=chirwa, S=rajasthan, PostalCode=333026, C=IN

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
55086D0B1A4EE0E271F82DCCC75233CB

File PE Metadata
Compilation timestamp:
9/8/2014 4:17:41 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
6144:5NCaXZbW7wSWgxv716wHDCpun0SJFEPZYWWFbTj9hp+FNVBLX5HlS10:vCaXZbSpWgb6wuUpGxWV5sBJHlSm

Entry address:
0xB2C18

Entry point:
54, E8, 61, 17, FD, FF, EE, 67, 84, DB, 99, AF, E6, C1, 54, 2C, F3, 8B, A9, 42, 7C, F4, 2B, C3, DE, F7, A1, 99, 40, F8, F7, 50, 91, 3B, 37, 21, 7E, 61, 96, 33, 4B, E8, 1E, E3, D2, C7, 6D, 0A, 62, 6F, B5, 0A, 43, A0, 34, 1B, 9E, 7E, 0B, AA, 48, 20, 59, 8C, 5A, A8, 6F, 27, 4C, D9, F9, 48, 42, EF, 09, 5E, EE, 68, 3A, F9, 63, 38, 5D, B7, 64, 49, 01, B2, 5C, D3, 70, 68, 59, E6, E6, EC, 6B, B3, 50, 89, DE, 87, 04, AB, B5, 9F, A2, B4, 52, 09, FC, 98, D2, 7C, B5, 42, 1C, 3A, 72, E1, 3A, AB, 64, 7E, D8, 65, DE, EB...
 
[+]

Code size:
170.5 KB (174,592 bytes)

Remove malware198 - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.