sfud.exe

ICICI

aksoft

The executable sfud.exe has been detected as malware by 33 anti-virus scanners.
Publisher:
aksoft

Product:
ICICI

Version:
1.00

MD5:
7c634066e389a3e2bb04e4d9e29ffb8e

SHA-1:
3adfb8a792fe7b3366d0fe6a51a562a3f8987fc6

SHA-256:
aca32f6528a2ad22df5e4c4a324c600900aaa50cfd00a767553c79e7b4689270

Scanner detections:
33 / 68

Status:
Malware

Analysis date:
11/29/2024 4:45:47 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.GenericKD.2767705
-40

Agnitum Outpost
Trojan.Agent
7.1.1

AhnLab V3 Security
Downloader/Win32.Agent
2015.10.14

Avira AntiVirus
TR/Dropper.Gen
8.3.2.2

Arcabit
Trojan.Generic.D2A3B59
1.0.0.582

avast!
Win32:Malware-gen
2014.9-170316

AVG
Inject3
2018.0.2438

Baidu Antivirus
Trojan.Win32.Injector
4.0.3.17316

Bitdefender
Trojan.GenericKD.2767705
1.0.20.375

Bkav FE
HW32.Packed
1.3.0.7237

Comodo Security
UnclassifiedMalware
23408

Dr.Web
Trojan.VbCrypt.8
9.0.1.075

Emsisoft Anti-Malware
Trojan.GenericKD.2767705
8.17.03.16.02

ESET NOD32
Win32/Injector.AIIE (variant)
11.12401

Fortinet FortiGate
W32/Generic!tr
3/16/2017

F-Secure
Trojan.GenericKD.2767705
11.2017-16-03_5

G Data
Trojan.GenericKD.2767705
17.3.25

IKARUS anti.virus
Trojan.Win32.Refroso
t3scan.1.9.5.0

K7 AntiVirus
Trojan
13.210.17519

Kaspersky
HEUR:Trojan.Win32.Generic
14.0.0.-1316

McAfee
RDN/Generic Downloader.x
5600.6094

Microsoft Security Essentials
Backdoor:Win32/Fynloski
1.1.12101.0

MicroWorld eScan
Trojan.GenericKD.2767705
18.0.0.225

NANO AntiVirus
Trojan.Win32.VbCrypt.dxpghb
0.30.26.3947

nProtect
Trojan.GenericKD.2767705
15.10.13.01

Panda Antivirus
Trj/CI.A
17.03.16.02

Qihoo 360 Security
Win32/Trojan.97a
1.0.0.1015

Quick Heal
Backdoor.Fynloski.r3
3.17.14.00

Sophos
Mal/Generic-S
4.98

Trend Micro
TROJ_GEN.R00YC0DJ515
10.465.16

VIPRE Antivirus
Trojan.Win32.Generic
44520

ViRobot
Trojan.Win32.S.Downloader.776704[h]
2014.3.20.0

Zillya! Antivirus
Backdoor.PePatch.Win32.89764
2.0.0.2444

File size:
758.5 KB (776,704 bytes)

Product version:
1.00

Original file name:
2.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\turk empire ardream\sfud.exe

File PE Metadata
Compilation timestamp:
9/29/2015 10:30:14 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

Entry address:
0x2D009A

Entry point:
60, E8, 00, 00, 00, 00, 58, 05, 5A, 0B, 00, 00, 8B, 30, 03, F0, 2B, C0, 8B, FE, 66, AD, C1, E0, 0C, 8B, C8, 50, AD, 2B, C8, 03, F1, 8B, C8, 57, 51, 49, 8A, 44, 39, 06, 88, 04, 31, 75, F6, 2B, C0, AC, 8B, C8, 80, E1, F0, 24, 0F, C1, E1, 0C, 8A, E8, AC, 0B, C8, 51, 02, CD, BD, 00, FD, FF, FF, D3, E5, 59, 58, 8B, DC, 8D, A4, 6C, 90, F1, FF, FF, 51, 2B, C9, 51, 51, 8B, CC, 51, 66, 8B, 17, C1, E2, 0C, 52, 57, 83, C1, 04, 51, 50, 83, C1, 04, 56, 51, E8, 5E, 00, 00, 00, 8B, E3, 5E, 5A, 2B, C0, 89, 04, 32, B4, 10...
 
[+]

Packer / compiler:
ASPack v1.08.04

Code size:
2.8 MB (2,924,544 bytes)

Remove sfud.exe - Powered by Reason Core Security