home

siyoteam hk 890 driver bluetooth.exe

Project1

welcome-pc

The executable siyoteam hk 890 driver bluetooth.exe has been detected as malware by 26 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from dc165.2shared.com.
Publisher:
welcome-pc

Product:
Project1

Version:
2.12.0046

MD5:
8d0e4731009862e696e58a0ab203d565

SHA-1:
7c3bb4f8a5bebd69d50fe4f79a400e20c37fe75a

SHA-256:
27503adfd42fa7bb9b08b611a9d194b6cff4800438cc02eb2255812502c0a12b

Scanner detections:
26 / 68

Status:
Malware

Analysis date:
11/27/2024 3:29:44 AM UTC  (today)

Scan engine
Detection
Engine version

AhnLab V3 Security
Trojan/Win32.Refroso
2012.06.15

Avira AntiVirus
BDS/Bifrose.A.1321
7.11.32.234

avast!
Win32:Malware-gen
2014.9-160719

AVG
Crypt_c
2017.0.2678

Bitdefender
Trojan.Generic.KDV.525477
1.0.20.1005

Comodo Security
UnclassifiedMalware
12613

Dr.Web
BackDoor.Bifrost.19762
9.0.1.0201

Emsisoft Anti-Malware
Trojan.Win32.Midgare!IK
8.16.07.19.11

ESET NOD32
Win32/Packed.MoleboxVS (variant)
10.7221

Fortinet FortiGate
W32/Injector.DH!tr
7/19/2016

F-Prot
W32/Bifrost.AD.gen
v6.4.6.5.141

F-Secure
Trojan.Generic.KDV.525477
11.2016-19-07_3

G Data
Trojan.Generic.KDV.525477
16.7.22

IKARUS anti.virus
Trojan.Win32.Midgare
t3scan.1.1.118.0

K7 AntiVirus
Trojan
13.143.7055

Kaspersky
Packed.Multi.MultiPacked
14.0.0.-117

McAfee
BackDoor-FACW!8D0E47310098
5600.6334

Microsoft Security Essentials
Backdoor:Win32/Bifrose
1.163.1557.0

Norman
W32/Bifrose.CRNB
11.20160719

nProtect
Trojan.Generic.KDV.525477
12.06.14.02

Panda Antivirus
Bck/Bifrost.gen
16.07.19.11

Total Defense
Win32/Bifrose.BND
37.0.9958

Trend Micro House Call
TROJ_FAKEALERT.BMH
7.2.201

Trend Micro
TROJ_GEN.R07CCDB
10.465.19

VIPRE Antivirus
Trojan.Win32.Generic
12051

ViRobot
Backdoor.Win32.A.Bancodor.1863896
2011.4.7.4223

File size:
484.3 KB (495,941 bytes)

Product version:
2.12.0046

Original file name:
Gamal1.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\siyoteam hk 890 driver bluetooth.exe

File PE Metadata
Compilation timestamp:
7/25/2011 5:45:39 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.56

CTPH (ssdeep):
12288:IeuvraBBEXqoL27dnWvh5buY1mC+FJFvZPM54yyYD:veraBBEXqBhnWuQ+fvZkIYD

Entry address:
0x1280

Entry point:
55, 89, E5, 83, EC, 08, C7, 04, 24, 01, 00, 00, 00, FF, 15, 1C, 83, 40, 00, E8, B8, FE, FF, FF, 90, 8D, B4, 26, 00, 00, 00, 00, 55, 89, E5, 83, EC, 08, C7, 04, 24, 02, 00, 00, 00, FF, 15, 1C, 83, 40, 00, E8, 98, FE, FF, FF, 90, 8D, B4, 26, 00, 00, 00, 00, 55, 8B, 0D, 34, 83, 40, 00, 89, E5, 5D, FF, E1, 8D, 74, 26, 00, 55, 8B, 0D, 28, 83, 40, 00, 89, E5, 5D, FF, E1, 90, 90, 90, 90, 55, 89, E5, 83, 3D, 10, B1, 40, 00, 00, 75, 0A, C7, 05, 10, B1, 40, 00, E8, 61, 40, 00, A1, 10, B1, 40, 00, 5D, C3, 55, 89, E5...
 
[+]

Packer / compiler:
MingWin32 - Dev C++ v4.x (h)

Code size:
21 KB (21,504 bytes)

The file siyoteam hk 890 driver bluetooth.exe has been seen being distributed by the following URL.

http://dc165.2shared.com/download/.../Siyoteam_HK_890_Driver_BlueToo.exe

Remove siyoteam hk 890 driver bluetooth.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.