home

Kemeda

Publisher Information

Kemeda is a software publisher located in Lisboa, Pakistan*.
Authority:
Kemeda

Valid from:
10/21/2015 7:07:25 PM

Valid to:
10/21/2016 7:07:25 PM

Subject:
CN=www.kemeda.pt, O=Kemeda, L=Lisboa, S=Lisboa, C=PK

Issuer:
CN=www.kemeda.pt, O=Kemeda, L=Lisboa, S=Lisboa, C=PK

Serial number:
008c6590b70633a028

Scanner detections:
Malware distribution  (71% detected)

Scan engine
Details
Detections

ESET NOD32
MSIL/Injector.MIX (variant), MSIL/Injector.MTF (variant), MSIL/Injector.MMH (variant)
90.91%

Emsisoft Anti-Malware
Trojan.GenericKD.2877983, Gen:Variant.Zusy.168047, Trojan.GenericKD.2816038, Gen:Variant.MSILPerseus.1983, Trojan.GenericKD.2862161
90.91%

Baidu Antivirus
Trojan.MSIL.Injector, Trojan.Win32.SelfDel
81.82%

avast!
Win32:Evo-gen [Susp], Win32:Malware-gen
81.82%

Kaspersky
Trojan.MSIL.Inject, Trojan.Win32.SelfDel, Trojan.MSIL.Agent, Backdoor.Win32.Androm, UDS:DangerousObject.Multi.Generic
81.82%

Bitdefender
Trojan.GenericKD.2877983, Gen:Variant.Zusy.168047, Trojan.GenericKD.2816038, Trojan.GenericKD.2862161, Trojan.GenericKD.2857219, Gen:Variant.MSILPerseus.1484
81.82%

Dr.Web
Trojan.DownLoader17.15248, Trojan.PWS.Siggen1.39314, BackDoor.Wirenet.9, BackDoor.Morphine.1, Trojan.PWS.Siggen1.43791
81.82%

G Data
Trojan.GenericKD.2877983, Gen:Variant.Zusy.168047, Trojan.GenericKD.2816038, Trojan.GenericKD.2862161, Trojan.GenericKD.2857219
81.82%

Qihoo 360 Security
HEUR/QVM03.0.Malware.Gen, Win32/Trojan.Dropper.fe7, Win32/Trojan.97a, Win32/Trojan.Dropper.26e
72.73%

MicroWorld eScan
Trojan.GenericKD.2877983, Gen:Variant.Zusy.168047, Trojan.GenericKD.2816038, Trojan.GenericKD.2862161, Trojan.GenericKD.2857219, Gen:Variant.MSILPerseus.1983, Gen:Variant.MSILPerseus.1580
72.73%

0 / 68
multibithd.exe (MultiBit HD by Bitcoin Solutions)  (4f761420261eaa8a44a8ab2037dbba29)

0 / 68
latex.exe  (6d2cee7094fa48335a785521ec6ef970)

22 / 68    (Malware)
main.exe  (52cdd67bcbe071fd805bd5f9a07ac92d)

10 / 68    (Malware)
pcleanpro.exe  (755fe71916320264adaeabeb08ab6119)

0 / 68
latex.exe (crossi)  (2360afdbcaba8b203f3d591083ce276e)

14 / 68    (Malware)
4900  (b09ef6b01b1a97654d27ef2d36fa0fec)

28 / 68    (Malware)
2gepugzs  (99e745dfd887f9449df580ab64ede3c7)

27 / 68    (Malware)
1870  (865cd67856e87ca6d8c5d29f8ac3ecae)

29 / 68    (Malware)
pcclean.exe  (6578e231ee6263eebe724e8a45a975cc)

8 / 68      (Malware)
limpa.exe  (7232acfcf45d18acaef00f4711f853c7)

25 / 68    (Malware)
flashplayer.exe  (bdda143dd09322187aa734a6d7d8a46c)

19 / 68    (Malware)
sys32.exe (sorx)  (4fc634517160b52bd26d47c2eabed57b)

21 / 68    (Malware)
updater.exe  (36bcd4c10c9d4ef371f6aa009af547b9)

3 / 68      (inconclusive)
csgo_keyhack_4.9.5.exe  (8e369490966b8491afb5a67bdda867b0)

Downloads URLs for files signed by Kemeda.

25 / 68    (Malware)
https://downloadwww32.adrive.com/public/.../w9yBWb.html  (flashplayer.exe)

The following websites host and distribute files published by Kemeda.

downloadwww32.adrive.com

The following publishers (by Authenticode signature organization name) are related.

think-cell Software GmbH

* Note, the details and description above are based on the code signing digital signature issued to Kemeda by Kemeda on October 21, 2015 with the serial number '008c6590b70633a028'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.