小马oem9激活工具豆豆系统.rar

The file 小马oem9激活工具豆豆系统.rar has been detected as a potentially unwanted program by 27 anti-malware scanners. The file has been seen being downloaded from lx.cdn.baidupcs.com.
MD5:
3f46d8f73aef20caa11965af5cd414fd

SHA-1:
e964af0815928a68d26b868b6f6fe679c7c81f90

SHA-256:
11ea10a06a203a7641492b9e8c5fe094ac35fb9df2c3a8d561ca6b591b53a735

Scanner detections:
27 / 68

Status:
Potentially unwanted

Analysis date:
11/5/2024 6:59:03 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Graftor.183525
5695062

Agnitum Outpost
PUP.Agent
7.1.1

Arcabit
Trojan.Graftor.D2CCE5
1.0.0.425

avast!
Win32:Evo-gen [Susp]
2014.9-151205

AVG
Patched3_c
2016.0.2905

Baidu Antivirus
Hacktool.Win32.StartPage
4.0.3.15125

Bitdefender
Gen:Variant.Graftor.183525
1.0.20.1695

Bkav FE
W32.Clode49.Trojan
1.3.0.7133

Comodo Security
UnclassifiedMalware
23185

Emsisoft Anti-Malware
Gen:Variant.Graftor.183525
10.0.0.5366

ESET NOD32
Win32/HackKMS.P potentially unsafe application
7.0.302.0

Fortinet FortiGate
Riskware/HackKMS
12/5/2015

F-Prot
W32/SecRisk-ProcessPatcher-Sml- (not disinfectable)
4.6.5.141

F-Secure
Gen:Variant.Graftor.183525
11.2015-05-12_7

G Data
Gen:Variant.Graftor.183525
15.12.25

IKARUS anti.virus
Trojan.Patched3
t3scan.1.9.5.0

K7 AntiVirus
Unwanted-Program
13.2017125

Kaspersky
not-a-virus:RiskTool.Win32.StartPage
15.0.0.562

McAfee
Trojan.GenericR-DAE!63F59EFAE353
18.0.204.0

MicroWorld eScan
Gen:Variant.Graftor.183525
16.0.0.1017

Norman
Gen:Variant.Graftor.183525
28.10.2015 12:55:53

Panda Antivirus
Trj/Genetic.gen
15.12.05.03

Rising Antivirus
PE:Trojan.Win32.Generic.18A92FFE!413741054[F1]
23.00.65.151203

Sophos
Generic PUA CO (PUA)
4.98

Trend Micro House Call
TROJ_GE.9AE17AD8
7.2.339

Trend Micro
TROJ_GE.9AE17AD8
10.465.05

VIPRE Antivirus
Trojan.Win32.Generic
43482

File size:
1.3 MB (1,315,898 bytes)

Common path:
C:\users\{user}\downloads\??oem9????????.rar

The file 小马oem9激活工具豆豆系统.rar has been seen being distributed by the following URL.

Remove 小马oem9激活工具豆豆系统.rar - Powered by Reason Core Security