UsbFix.exe

UsbFix- www.SosVirus.net - www.UsbFix.net

El Desaparecido - SosVirus.net - UsbFix.net

The executable UsbFix.exe, “UsbFix - Remove malware from yours drive!” has been detected as malware by 27 anti-virus scanners. The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer, however the file is not signed with an authenticode signature from a trusted source. The file has been seen being downloaded from www.infospyware.com.
Publisher:
El Desaparecido - SosVirus.net - UsbFix.net

Product:
UsbFix- www.SosVirus.net - www.UsbFix.net

Description:
UsbFix - Remove malware from yours drive!

Version:
7.1.6.9

MD5:
584b178f9203c8a86a3f45e17ae88589

SHA-1:
37ac2bcf48f795d2dbc2a9626fca64ca866c5d84

SHA-256:
9b13400a97c86f642075bb26a85cc2f503a9c1b770db6b06271d21bb171ff203

Scanner detections:
27 / 68

Status:
Malware

Analysis date:
12/25/2024 12:15:15 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.Generic.11504245
811

AegisLab AV Signature
Troj.W32.Antavmu
2.1.4+

Avira AntiVirus
TR/Antavmu.abku.1
7.11.181.38

avast!
Win32:Malware-gen
2014.9-141115

AVG
Generic11_c
2015.0.3289

Baidu Antivirus
Trojan.Win32.Antavmu
4.0.3.141115

Bitdefender
Trojan.Generic.11504245
1.0.20.1595

Emsisoft Anti-Malware
Trojan.Generic.11504245
8.14.11.15.11

Fortinet FortiGate
W32/Antavmu.ABKU!tr
11/15/2014

F-Secure
Trojan.Generic.11504245
11.2014-15-11_7

G Data
Trojan.Generic.11504245
14.11.24

IKARUS anti.virus
Trojan.Antavmu
t3scan.1.7.8.0

K7 AntiVirus
Riskware
13.185.13789

Kaspersky
Trojan.Win32.Antavmu
14.0.0.2940

McAfee
Artemis!584B178F9203
5600.6945

MicroWorld eScan
Trojan.Generic.11504245
15.0.0.957

NANO AntiVirus
Trojan.Win32.Antavmu.cxzlrf
0.28.2.62841

Norman
Malware.AJSUC
11.20141115

nProtect
Trojan.Generic.11504245
14.10.24.01

Qihoo 360 Security
Win32/Trojan.51c
1.0.0.1015

Quick Heal
Trojan.Antavmu.g5
11.14.14.00

Sophos
Mal/Generic-S
4.98

Trend Micro House Call
TROJ_GEN.R0CBH02EB14
7.2.319

Vba32 AntiVirus
Trojan.Antavmu
3.12.26.3

VIPRE Antivirus
Trojan.Win32.Generic
34218

ViRobot
Trojan.Win32.A.Antavmu.3006936
2011.4.7.4223

Zillya! Antivirus
Trojan.Antavmu.Win32.6070
2.0.0.1966

File size:
2.9 MB (3,006,936 bytes)

Product version:
7

Copyright:
© 2008/2014 - El Desaparecido - www.SosVirus.net

Trademarks:
Tous droits réservés.

Original file name:
UsbFix.exe

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Language:
English (United States)

File PE Metadata
Compilation timestamp:
12/25/2013 12:01:41 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
49152:5ZMrBxWS5iDqwexhK69TB7u8pvrvaGoodvG9O5dnlyA7fUZ2gah0+L1XPiHh3:5ZSx15iQhK6txvpDyGtKO5dMA7sMgG0h

Entry address:
0x30E4

Entry point:
81, EC, 84, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 90, 91, 40, 00, 89, 5C, 24, 20, C6, 44, 24, 14, 20, FF, 15, 34, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, 1C, 71, 40, 00, 53, FF, 15, 8C, 72, 40, 00, 6A, 08, A3, 58, E4, 42, 00, E8, 95, 2D, 00, 00, A3, A4, E3, 42, 00, 53, 8D, 44, 24, 38, 68, 60, 01, 00, 00, 50, 53, 68, E0, 87, 42, 00, FF, 15, 64, 71, 40, 00, 68, 80, 91, 40, 00, 68, A0, DB, 42, 00, E8, 3F, 2A, 00, 00, FF, 15, 20, 71, 40, 00, BD, 00, 40, 43, 00, 50, 55, E8, 2D, 2A...
 
[+]

Packer / compiler:
Nullsoft install system v2.x

Code size:
23.5 KB (24,064 bytes)

The file UsbFix.exe has been seen being distributed by the following URL.

Remove UsbFix.exe - Powered by Reason Core Security