Ubcd4winv360.exe Virustotal X5 Detect

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by solartony, Nov 1, 2020.

  1. solartony

    solartony Private E-2

    3aff10dd5d9125344dcc0489e110d5a6621dcddea3556c10e9bf5335314fd233
    ubcd4winv360.exe

    Alibaba RiskWare:Win32/WinVNC.6a39e9cc
    Comodo ApplicUnwnt@#20qqspekk4v2i
    Fortinet Riskware/WinVNC
    Kingsoft VIRUS_UNKNOWN
    Yandex Riskware.RemoteAdmin!

    what's going on here ?
    peace
     
    solartony, Nov 1, 2020
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Probably false positives. If in doubt:
    Click on the following link and use the below steps to scan a file: Virustotal

    Click the Browse... button.
    Navigate to the file FileToBeScanned

    Where FileToBeScanned is the actual file to be scanned. Like C:\WINDOWS\System32\vdmt16.sys
    [/LIST]
     
    TimW, Nov 2, 2020
    #2
  3. solartony

    solartony Private E-2

    thx @TimW ...did you read the title of the post ?
    those are the results from virustotal scan of
    c:\ubcd4winv360.exe on local drive after download from mg,
    virustotal detects five assorted viruses/malware, as follows:

    Alibaba RiskWare:Win32/WinVNC.6a39e9cc
    Comodo ApplicUnwnt@#20qqspekk4v2i
    Fortinet Riskware/WinVNC
    Kingsoft VIRUS_UNKNOWN
    Yandex Riskware.RemoteAdmin!

    have you tried to scan your file on the server with virustotal ?

    peace
     
    Last edited: Nov 2, 2020
    solartony, Nov 2, 2020
    #3
  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Please post the entire results from VirusTotal......all files offered for download are thoroughly checked for malware. It is not unusual for files that can change or affect your system to be flagged as malware.
     
    TimW, Nov 2, 2020
    #4
  5. solartony

    solartony Private E-2

    thx Tim, virustotal results,
    peace

    3aff10dd5d9125344dcc0489e110d5a6621dcddea3556c10e9bf5335314fd233
    ubcd4winv360.exe
    269.34 MB
    Size
    2020-11-02 00:44:34 UTC
    6 days ago
    overlay peexe software-collection
    DETECTION
    DETAILS
    COMMUNITY 3
    Basic Properties
    MD5 f83c81b5197f01dfd8ca00764474f453
    SHA-1 49acafacaac62a745e69d71a58cc9453c41b15d0
    SHA-256 3aff10dd5d9125344dcc0489e110d5a6621dcddea3556c10e9bf5335314fd233
    Vhash 0280866d1c0d1c051505505016z1c9z5bz1fz
    Authentihash 3074f04f381d494a47a86fad90e0f5c1ced1c4f9216ddecdc97e83ff6f52c9bf
    Imphash 884310b1928934402ea6fec1dbd3cf5e
    SSDEEP 6291456:SygXBN3puvTZBN0sCOIS9TuKV6V5Tob4YX79YZfY:SygXD5uvTpvIBe6rDBA
    TLSH T1E1D833A311B63D6FE58A3DF00DA7A494D6243C1A140CED9B1CE80D5F5E8753EBA27638
    File type Win32 EXE
    Magic PE32 executable for MS Windows (GUI) Intel 80386 32-bit
    File size 269.34 MB (282427301 bytes)
    F-PROT packer INNO
    History
    Creation Time 1992-06-19 22:22:17
    First Submission 2015-11-11 08:29:06
    Last Submission 2019-11-06 17:38:51
    Last Analysis 2020-11-02 00:44:34
    Names
    ubcd4winv360.exe
    ubcd4winv360.exe.tmp
    UBCD4WinV360.exe
    Signature Info
    Signature Verification
    File is not signed
    File Version Information
    Copyright
    Product UBCD4Win
    Description UBCD4Win Setup
    File Version 3.6.0.0
    Comments This installation was built with Inno Setup.
    Portable Executable Info
    Header
    Target Machine Intel 386 or later processors and compatible processors
    Compilation Timestamp 1992-06-19 22:22:17
    Entry Point 39716
    Contained Sections 8
    Sections
    Name Virtual Address Virtual Size Raw Size Entropy MD5 Chi2
    CODE 4096 37444 37888 6.53 da5e804937248407d9036cd9588c0b6e 277455.88
    DATA 45056 588 1024 2.74 fc1836b9abb0b5690e90c671f715abf1 113810.5
    BSS 49152 3664 0 0 d41d8cd98f00b204e9800998ecf8427e -1
    .idata 53248 2384 2560 4.43 bb5485bf968b970e5ea81292af2acdba 90263.42
    .tls 57344 8 0 0 d41d8cd98f00b204e9800998ecf8427e -1
    Imports
    advapi32.dll
    kernel32.dll
    oleaut32.dll
    user32.dll
    comctl32.dll
    Contained Resources By Type
    RT_ICON 12
    RT_STRING 6
    RT_VERSION 1
    RT_RCDATA 1
    RT_MANIFEST 1
    RT_GROUP_ICON 1
    Contained Resources By Language
    ENGLISH US 15
    NEUTRAL 7
    Contained Resources
    SHA-256 File Type Type Language Entropy Chi2
    5c28cb92fce883cffffdf2424f6e4c1d8a9aaa0c9991b94e54126bb487c74146 Data RT_ICON ENGLISH US 4 84108.18
    6e708f54f5a3d373c090642fab8c6bc380c9d23be3ca31f9a189e64b9c8824ec Data RT_ICON ENGLISH US 4.14 31680.61
    4e5e6ec405221b624c60416f3659da74f8b27b6e15506c3ebe273b57d74f60bf Data RT_ICON ENGLISH US 3.92 24161.45
    dd3b34af028b209ee629fd432a670a2f7d653e6a8bc344a286c254be676da6ad Data RT_ICON ENGLISH US 3.36 19742.92
    92beb226c1888676f515827a074011038f04666c4b63775539d6e76d846a78aa Data RT_ICON ENGLISH US 5.49 138209.22
     
    solartony, Nov 8, 2020
    #5
  6. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    The results would give you a list of virus engines that found it malicious or not. Do you have that?
     
    TimW, Nov 8, 2020
    #6
  7. solartony

    solartony Private E-2

    results below from virustotal scan of
    c:\ubcd4winv360.exe on local drive after download from MG,
    virustotal detects five assorted viruses/malware, as follows:

    Engine Detect
    _____ _________________________
    Alibaba RiskWare:Win32/WinVNC.6a39e9cc
    Comodo ApplicUnwnt@#20qqspekk4v2i
    Fortinet Riskware/WinVNC
    Kingsoft VIRUS_UNKNOWN
    Yandex Riskware.RemoteAdmin!
     
    solartony, Nov 8, 2020
    #7
  8. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    "VirusTotal inspects items with over 70 antivirus scanners" ...so I would be inclined to believe that 5 are false positives.
     
    TimW, Nov 8, 2020
    #8
  9. solartony

    solartony Private E-2

    thx Tim, installations/executables downloaded from reputable sources
    have 100% clean results on virustotal scans, to a fault,
    not one single example that i can point out to that does not...

    'false positives': that wasn't really an accident, the post was going too fast ...

    your attention to this matter is appreciated
    peace
     
    solartony, Nov 8, 2020
    #9
  10. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    We have many people who have downloaded from us that claim a virus is included. They are proven wrong to a fault. Many anti-virus programs will flag a program if it makes changes within the operating system. This isn't unusual in the least.
     
    TimW, Nov 8, 2020
    #10
  11. solartony

    solartony Private E-2

    exactly ... we will believe everything you say, to a fault,
    never mind virustotal who does not have many people downloading ...
    ...not
    plz clean up your act
    peace
     
    solartony, Nov 8, 2020
    #11
  12. solartony

    solartony Private E-2

    see my first email
    peace
     
    solartony, Nov 8, 2020
    #12
  13. solartony

    solartony Private E-2

    peace
     
    solartony, Nov 8, 2020
    #13
  14. solartony

    solartony Private E-2

     
    solartony, Nov 8, 2020
    #14
  15. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    If you think our downloads are virus riddled, download from somewhere else.

    Peace.
     
    TimW, Nov 9, 2020
    #15
    Eldon likes this.

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds