2010-04-15 01:06:53
b4c6fff030479aa3b12625be67bf4914
| Name | Virtual Address | Virtual Size | Size of Raw Data | Entropy |
|---|---|---|---|---|
| .text | 0x00001000 | 0x0000104e | 0x00001200 | 0.168100494025 |
| .rdata | 0x00003000 | 0x00000084 | 0x00000200 | 0.963086734599 |
| .rolq | 0x00004000 | 0x00000278 | 0x00000400 | 4.2945308507 |
| Antivirus | Signature |
|---|---|
| Bkav | Clean |
| Lionic | Trojan.Win64.Shelma.tplj |
| Elastic | malicious (high confidence) |
| ClamAV | Clean |
| CMC | Clean |
| CAT-QuickHeal | HackTool.Metasploit.S9212471 |
| ALYac | Trojan.Metasploit.A |
| Cylance | Unsafe |
| Zillya | Clean |
| Sangfor | Suspicious.Win32.Save.a |
| CrowdStrike | win/malicious_confidence_100% (W) |
| Alibaba | Trojan:Win64/Shelma.e5564532 |
| K7GW | Trojan ( 004fae881 ) |
| K7AntiVirus | Trojan ( 004fae881 ) |
| Baidu | Clean |
| VirIT | Trojan.Win32.Generic.BZPS |
| Cyren | W64/S-c4a4ef26!Eldorado |
| ESET-NOD32 | Win64/Rozena.J |
| APEX | Malicious |
| Paloalto | generic.ml |
| Cynet | Malicious (score: 100) |
| Kaspersky | Trojan.Win64.Shelma.b |
| BitDefender | Trojan.Metasploit.A |
| NANO-Antivirus | Clean |
| ViRobot | Clean |
| MicroWorld-eScan | Trojan.Metasploit.A |
| Tencent | Hacktool.Win64.Rozena.a |
| Ad-Aware | Trojan.Metasploit.A |
| Sophos | ML/PE-A + ATK/Meter-A |
| Comodo | Clean |
| F-Secure | Clean |
| DrWeb | BackDoor.Shell.244 |
| VIPRE | Trojan.Win32.Generic!BT |
| TrendMicro | Trojan.Win64.SHELMA.SM |
| McAfee-GW-Edition | Trojan-FJIN!EC227E0D25E7 |
| FireEye | Generic.mg.ec227e0d25e70cf2 |
| Emsisoft | Clean |
| SentinelOne | Static AI - Malicious PE |
| GData | Win64.Trojan.Rozena.A |
| Jiangmin | Trojan.Generic.fxrt |
| Webroot | W32.Malware.Gen |
| Avira | TR/Crypt.XPACK.Gen7 |
| Kingsoft | Clean |
| Gridinsoft | Trojan.Win64.ShellCode.sd!s1 |
| Arcabit | Trojan.Metasploit.A |
| SUPERAntiSpyware | Trojan.Agent/Gen-MalPack |
| Microsoft | Trojan:Win64/Meterpreter.E |
| TACHYON | Clean |
| AhnLab-V3 | Trojan/Win64.RL_Shelma.R272960 |
| Acronis | suspicious |
| McAfee | Trojan-FJIN!EC227E0D25E7 |
| MAX | malware (ai score=86) |
| VBA32 | Trojan.Win64.Shelma |
| Malwarebytes | Trojan.MalPack |
| Panda | Clean |
| Zoner | Clean |
| TrendMicro-HouseCall | Trojan.Win64.SHELMA.SM |
| Rising | Trojan.Kryptik!1.A2F4 (CLOUD) |
| Yandex | Trojan.GenAsa!RZuPNlUDbQk |
| Ikarus | Trojan.Win64.Meterpreter |
| MaxSecure | Trojan.Malware.300983.susgen |
| Fortinet | W64/Rozena.J!tr |
| BitDefenderTheta | Clean |
| AVG | FileRepMalware |
| Avast | FileRepMalware |
| IRMA | Signature |
|---|---|
| Trend Micro SProtect (Linux) | Trojan.Win64.SHELMA.SM |
| Avast Core Security (Linux) | Win32:MsfShell-V [Hack] |
| C4S ClamAV (Linux) | C4S.MALWARE.SHA256.AUTOGEN.63947282.UNOFFICIAL |
| Trellix (Linux) | Trojan-FJIN |
| Sophos Anti-Virus (Linux) | ATK/Meter-A |
| Bitdefender Antivirus (Linux) | Trojan.Metasploit.A |
| G Data Antivirus (Windows) | Virus: Trojan.Metasploit.A (Engine A), Win64.Trojan.Rozena.A (Engine B) |
| WithSecure (Linux) | Trojan.TR/Crypt.XPACK.Gen7 |
| ESET Security (Windows) | Win64/Rozena.J trojan |
| DrWeb Antivirus (Linux) | BackDoor.Shell.244 |
| ClamAV (Linux) | Win.Malware.Metasploit-10022275-0 |
| eScan Antivirus (Linux) | Trojan.Metasploit.A(DB) |
| Kaspersky Standard (Windows) | Trojan.Win64.Shelma.b |
| Emsisoft Commandline Scanner (Windows) | Trojan.Metasploit.A (B) |