home

PTFull.exe

PTFull

Personal

The executable PTFull.exe has been detected as malware by 13 anti-virus scanners.
Publisher:
Personal

Product:
PTFull

Version:
1.23

MD5:
bcbc112882d3cf424c9b3ad6f095679e

SHA-1:
51dc86802038d762ddeffacc1a9099893b2d6ebd

SHA-256:
dc0c2931bccebdf267c8f9f29cdca9ecacae632ae8863b649a7ccce431a41398

Scanner detections:
13 / 68

Status:
Malware

Analysis date:
4/1/2025 8:08:43 PM UTC  (today)

Scan engine
Detection
Engine version

Bitdefender
Gen:Trojan.Heur.VP2.wm1@aK11!Chi
1.0.20.370

Comodo Security
UnclassifiedMalware
10476

Emsisoft Anti-Malware
Backdoor.Win32.IRCBot!IK
8.17.03.15.03

ESET NOD32
Win32/IRCBot.IRKYDEG (variant)
11.6550

Fortinet FortiGate
W32/IRCBot.UBG!tr.bdr
3/15/2017

F-Secure
Gen:Trojan.Heur.VP2.wm1@aK11!Chi
11.2017-15-03_4

G Data
Gen:Trojan.Heur.VP2.wm1@aK11!Chi
17.3.22

IKARUS anti.virus
Backdoor.Win32.IRCBot
t3scan.1.1.107.0

Kaspersky
Backdoor.Win32.IRCBot
14.0.0.-1313

McAfee
W32/Sdbot.worm!la
5600.6094

Norman
W32/Suspicious_Gen2.QANJS
11.20170315

Panda Antivirus
Suspicious file
17.03.15.03

Vba32 AntiVirus
Backdoor.IRCBot.ubg
3.12.16.4

File size:
364 KB (372,785 bytes)

Product version:
1.23

Copyright:
mdtv

Original file name:
PTFull.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\ptfull\ptfull.exe

File PE Metadata
Compilation timestamp:
8/5/2010 10:53:54 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

Entry address:
0x3270

Entry point:
68, 88, 36, 40, 00, E8, EE, FF, FF, FF, 00, 00, 50, 00, 00, 00, 30, 00, 00, 00, 48, 00, 00, 00, 40, 00, 00, 00, 12, A6, E9, E7, 64, 0A, 65, 4A, A5, E8, 27, 48, 98, 27, F1, 52, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 2D, 43, 30, 30, 30, 2D, 50, 68, 6F, 6E, 67, 54, 68, 61, 6E, 46, 75, 6C, 6C, 00, 32, 2E, 50, 54, 46, 75, 6C, 6C, 00, 57, 00, 6E, 64, 6F, 77, 73, 5C, 73, 00, 00, 00, 00, 98, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 09, 00, 00, 00, F6, 80, 3D, 44, 99, 8E, 05, 4D, 9E, 14, AB, DE, BD, 36, CE, 60...
 
[+]

Entropy:
5.9105

Developed / compiled with:
Microsoft Visual Basic v5.0/v6.0

Code size:
348 KB (356,352 bytes)

Remove PTFull.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.