UGHF - Injector-unpacked.exe

UGHF - Injector

UGHF.net

The executable UGHF - Injector-unpacked.exe has been detected as malware by 23 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from dosya.co.
Publisher:
UGHF.net

Product:
UGHF - Injector

Version:
1.0.0.0

MD5:
4510b85ff0ae1dbd1f6fb04ebeb62b74

SHA-1:
e2739dbc12481dbe1651cc1673866b8487797316

SHA-256:
a1601652d05dfb7286a4aed700443175a6137d4ac27b27f9f619cf305d8ab09b

Scanner detections:
23 / 68

Status:
Malware

Analysis date:
12/25/2024 1:03:11 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.GenericKD.2759435
191

Agnitum Outpost
Trojan.Agent
7.1.1

Avira AntiVirus
TR/Agent.651264.338
8.3.2.2

Arcabit
Trojan.Generic.D2A1B0B
1.0.0.585

avast!
MSIL:Banker-DJ [Trj]
2014.9-160727

Bitdefender
Trojan.GenericKD.2759435
1.0.20.1045

Comodo Security
UnclassifiedMalware
23513

Emsisoft Anti-Malware
Trojan.GenericKD.2759435
8.16.07.27.01

ESET NOD32
Generik.WLXBSL (variant)
10.12499

F-Secure
Trojan.GenericKD.2759435
11.2016-27-07_4

G Data
Trojan.GenericKD.2759435
16.7.25

IKARUS anti.virus
Trojan.Agent
t3scan.1.9.5.0

Kaspersky
HEUR:Trojan.Win32.Generic
14.0.0.-158

McAfee
RDN/Generic.grp
5600.6325

MicroWorld eScan
Trojan.GenericKD.2759435
17.0.0.627

nProtect
Trojan.GenericKD.2759435
15.10.30.01

Panda Antivirus
Trj/CI.A
16.07.27.01

Qihoo 360 Security
HEUR/QVM03.0.Malware.Gen
1.0.0.1015

Rising Antivirus
PE:Malware.Generic/QRS!1.9E2D [F]
23.00.65.16725

Trend Micro
TROJ_GEN.R021C0EJ115
10.465.27

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
3.12.26.4

VIPRE Antivirus
Trojan.Win32.Generic
44946

ViRobot
Trojan.Win32.Z.Agent.651264.R[h]
2014.3.20.0

File size:
636 KB (651,264 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © M4L1F1C 2015

Original file name:
UGHF - Injector.exe

File type:
Executable application (Win32 EXE)

Language:
Turkish (Turkey)

Common path:
C:\users\{user}\downloads\ughf - injector-unpacked.exe

File PE Metadata
Compilation timestamp:
9/16/2015 9:26:10 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:ViFBPqMuaB6NGfh5fFseboqKzqIe3Hl2/:ViFQMu8fhDseboqDu

Entry address:
0x3607E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
208.5 KB (213,504 bytes)

The file UGHF - Injector-unpacked.exe has been seen being distributed by the following URL.

Remove UGHF - Injector-unpacked.exe - Powered by Reason Core Security