D.exe | |
PE32 executable (GUI) Intel 80386, for MS Windows | 352121 bytes |
2016-08-25 20:36:51 | |
28fec2819aadd0491f08d784a14ba47b | |
84c9aee31f2dbe3f893e91fd52f8e62d560973ff | |
0f4ed850ba2754a9b884378313c37c121b2970e19455c0217f73d402e6c9b23c | |
ff17fea3c7310bb39a7c2f8b3d43ebb42ff328fc1ee07df90b4065a211b72179c02f2abc6fcd118711685c6a80dd64a680cb6834ba2b74802ae791db7bf37d36 | |
6144:mmgek4yIIox4YoMr7sXxWjic1qx8sTWMP1rUwUMsPm3sd+IYOyx163dDBrTgq:dvkSIoyckXxWjZ3/MPjU7WZx1tq | |
91a0c87fca7bc027eadd2410b4aa291d | |
N/A | |
AVG | Ransom_s.DQ |
Ad-Aware | Gen:Variant.Symmi.67857 |
AhnLab-V3 | Trojan/Win32.Locky.C1531941 |
Arcabit | Trojan.Symmi.D10911 |
Avast | Win32:Malware-gen |
Baidu | Win32.Trojan.WisdomEyes.151026.9950.9999 |
BitDefender | Gen:Variant.Symmi.67857 |
CrowdStrike | malicious_confidence_100% (D) |
DrWeb | Trojan.Inject2.27447 |
ESET-NOD32 | a variant of Win32/Kryptik.FFBO |
Emsisoft | Gen:Variant.Symmi.67857 (B) |
F-Secure | Gen:Variant.Symmi.67857 |
GData | Gen:Variant.Symmi.67857 |
K7AntiVirus | Trojan ( 004f6de91 ) |
K7GW | Trojan ( 004f6de91 ) |
Kaspersky | UDS:DangerousObject.Multi.Generic |
McAfee | Artemis!28FEC2819AAD |
McAfee-GW-Edition | BehavesLike.Win32.PWSZbot.fc |
MicroWorld-eScan | Gen:Variant.Symmi.67857 |
Panda | Trj/Genetic.gen |
Qihoo-360 | HEUR/QVM10.1.5C3A.Malware.Gen |
Symantec | Heur.AdvML.C |
HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\System |
HKEY_LOCAL_MACHINE\Software\Microsoft\Command Processor |
HKEY_CURRENT_USER\Software\Microsoft\Command Processor |
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Nls\Locale |
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Nls\Locale\Alternate Sorts |
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Nls\Language Groups |
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\VSS\Debug\Tracing |
HKEY_LOCAL_MACHINE\Software\Microsoft\Ole |
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\ComputerName |
ActiveComputerName |