#18 meditor2.exe from SVN-r32669(20101201) spotted as virus

open
nobody
None
5
2015-01-12
2010-12-29
Anonymous
No

Hello,

May be a false-positive though in the first multi-virus-scan only kaspersky pointed it as a trojan, later on, more AV scanners do say new meditor2.exe is infected.

Kaspersky: Trojan-Downloader.Win32.Banload.bfjo

New (from svn-r32669) meditor2 info:
File size: 812032 bytes
Filetype: PE32 executable for MS Windows (GUI) Intel 80386 32-bit
MD5: a46e381e21808841a4e4fdac32d1a7db
SHA1: e35785f0e23711471c833f46475e88ec392f6a40

Older (from svn r32510) meditor2.exe md5:
File size: 1040384 bytes
Filetype: PE32 executable for MS Windows (GUI) Intel 80386 32-bit
MD5: 8193d114b12d260a02e7608092b08e62
SHA1: 17008b9e8ea148ab518860c46ee09eddd046297c

Permalinks for new meditor2:
http://virusscan.jotti.org/en/scanresult/7d4d05c3df1f13edffc6e9f7c2dd525c85b27608
http://www.virscan.org/report/0181929a6b28732a8e0290d1c29ceb06.html

Permalinks for old meditor2:
http://virusscan.jotti.org/en/scanresult/dbfb8828f1f9c1287bfb0969320a18797740b242
http://www.virscan.org/report/77c4074b7a99403abc9330248f429e80.html

Cheers.

Discussion


Anonymous


Cancel   Add attachments