Home • Hashes • Research • About • Swag Shop

System currently contains 112,904,753 malware samples.

Report for a sample recently added to the system:

49a77909e56a33f77b129b4912c9c4bae7276578e172e7c55225085c87ef4cbb
VirusShare info last updated 2026-05-24 00:00:02 UTC
MD5	8281ae6651d6ce55b0ef7186573854ea
SHA1	a465ed01330df02d57ef7666408b7413c3ba862c
SHA256	49a77909e56a33f77b129b4912c9c4bae7276578e172e7c55225085c87ef4cbb
SSDeep	12288:/bE+ukh1Lk70TnvjcsMxdABSnLHOr2fqRVw:/Y+fk70Trc18BSnLW2CRC
Authentihash	5a0661339fc898eb64f2ca71969eb9379c878238041ecfcffd7f6c4819379886
Size	450,836 bytes
File Type	PE32 executable (console) Intel 80386 (stripped to external PDB), for MS Windows, UPX compressed
Mime Type	application/x-dosexec
Extension	exe
TrID	UPX compressed Win32 Executable (39.9%) Microsoft Visual C++ compiled executable (generic) (24.3%) Win32 Dynamic Link Library (generic) (9.6%) Win16 NE executable (generic) (7.4%) Win32 Executable (generic) (6.6%)
Detections (59/71)	ALYac Trojan.Agent.CYZT APEX Malicious AVG Win32:Banker-LAA [Trj] Acronis suspicious AhnLab-V3 Downloader/Win.Generic.R665906 Antiy-AVL HackTool[Flooder]/Win32.CoreWarrior Arcabit Trojan.Agent.CYZT Avast Win32:Banker-LAA [Trj] Avira TR/Crypt.ULPM.Gen2 BitDefender Trojan.Agent.CYZT Bkav W32.Malware.910AF83 CAT-QuickHeal Trojan.AgentbPMF.S33725804 CTX exe.trojan.cyzt ClamAV Win.Malware.Cymt-10023133-0 CrowdStrike win/malicious_confidence_100% (D) Cylance Unsafe Cynet Malicious (score: 100) DeepInstinct MALICIOUS DrWeb Tool.Snojan.1 ESET-NOD32 Win32/Agent.AAEF trojan Elastic malicious (moderate confidence) Emsisoft Trojan.Agent.CYZT (B) F-Secure Trojan.TR/Crypt.ULPM.Gen2 Fortinet Riskware/Snojan GData Win32.Application.Snojan.A Google Detected Ikarus Trojan.Agent Jiangmin Downloader.Snojan.adp K7AntiVirus Trojan ( 005c835f1 ) K7GW Trojan ( 005464da1 ) Kaspersky Flooder.Win32.CoreWarrior.ad Kingsoft malware.kb.b.896 Malwarebytes Trojan.Downloader MaxSecure Trojan.Malware.121218.susgen McAfeeD Real Protect-LS!8281AE6651D6 MicroWorld-eScan Trojan.Agent.CYZT Microsoft Trojan:Win32/CoreWarrior.DA!MTB NANO-Antivirus Trojan.Win32.Snojan.jqzopm Panda Trj/Genetic.gen Rising Trojan.Agent!1.B576 (C64:YzY0Ol25WmjPLlFP) Sangfor Suspicious.Win32.Save.pkr SentinelOne Static AI - Malicious PE Skyhigh BehavesLike.Win32.NetLoader.gc Sophos Troj/Bdoor-BHD Symantec Hacktool.Flooder Tencent Trojan.Win32.Corewarrior.ca Trapmine suspicious.low.ml.score TrellixENS GenericRXWT-SU!0D3FBCE55FC5 VBA32 Flooder.CoreWarrior VIPRE Trojan.Agent.CYZT Varist W32/Agent.FBOO-5422 VirIT Trojan.Win32.AgentT.DYK Webroot Win.Trojan.Gen Xcitium TrojWare.Win32.Snojan.B@7h1cjp Yandex Riskware.Flooder!j7BYbbJGLUM Zillya Tool.CoreWarrior.Win32.18 ZoneAlarm Troj/Bdoor-BHD alibabacloud DDoS:Win/Nemucod huorong HVM:TrojanDownloader/Small.gen!A VirusTotal Report submitted 2026-05-09 21:59:33 UTC
ExIF Data	CodeSize 86016 EntryPoint 0x28610 FileSize 440 kB FileType Win32 EXE FileTypeExtension exe ImageFileCharacteristics No relocs, Executable, No line numbers, No symbols, 32-bit, No debug ImageVersion 1 InitializedDataSize 4096 LinkerVersion 2.56 MIMEType application/octet-stream MachineType Intel 386 or later, and compatibles OSVersion 4 PEType PE32 Subsystem Windows command line SubsystemVersion 4 TimeStamp 2014:07:01 18:02:13+00:00 UninitializedDataSize 77824