Categories: Trojan

Trojan:Win32/MiniDuke.RDA!MTB information

The Trojan:Win32/MiniDuke.RDA!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Trojan:Win32/MiniDuke.RDA!MTB virus can do?

Sample contains Overlay data
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Trojan:Win32/MiniDuke.RDA!MTB?


File Info:
name: E1A1C75C80B6CAB77C29.mlwpath: /opt/CAPEv2/storage/binaries/7bccf6bf29a490372e812b0517807e942f4f37108f1c03d168c8c58965a7b2f7crc32: 8250ECB1md5: e1a1c75c80b6cab77c294d1cbebe4453sha1: bab7328134e0564aa22719307f063919f7fda538sha256: 7bccf6bf29a490372e812b0517807e942f4f37108f1c03d168c8c58965a7b2f7sha512: 8659655b0f4cbb332c1250ca054c615ed86c29f750f7e7d06990dd12549f91d9a33b433dd545ff60a5a0f6b11c10194b6b54f1fdf0da3e20cac2f9ce1f5f6bb7ssdeep: 24576:X5216D3RSeY9BI4ETxMyUsOrcocL9iWfUMjHT14eW2SRX0FHQdrk7J:X5c6zYS6fFop9iWM6HTZnVQ1EJtype: PE32 executable (GUI) Intel 80386, for MS Windowstlsh: T12CB523286285C2E3E19B0BB82DC5FD2D5372BD71F7E1435E2051DAAD0FB87A1B447A81sha3_384: 7f3999274183a8495d11faa356579d7f6852093760782ad1a029c0902aab0a175cfba1a7fd200412baf155f151cf545fep_bytes: e815661a005c7ce3e2e25d0719e5e578timestamp: 2012-11-13 09:53:11
Version Info:
CompanyName: Google Inc.FileDescription: Google Chrome UpdaterFileVersion: 25.0.1364.97InternalName: chrome_exeLegalCopyright: Copyright 2012 Google Inc. All rights reserved.OriginalFilename: chrome.exeProductName: Google Chrome UpdaterProductVersion: 25.0.1364.97CompanyShortName: GoogleProductShortName: ChromeLastChange: 183676Official Build: 1Translation: 0x0409 0x04b0

Trojan:Win32/MiniDuke.RDA!MTB also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Miniduke.4!c
MicroWorld-eScan	Trojan.GenericKDZ.74286
ClamAV	Win.Trojan.CosmicDuke-3
FireEye	Trojan.GenericKDZ.74286
CAT-QuickHeal	Trojan.Mauvaise.SL1
ALYac	Trojan.GenericKDZ.74286
Cylance	unsafe
Zillya	Trojan.Kryptik.Win32.1344190
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	Trojan ( 005205011 )
Alibaba	Trojan:Win32/MiniDuke.58531a38
K7GW	Trojan ( 005205011 )
Cybereason	malicious.134e05
Cyren	W32/S-95d31726!Eldorado
Symantec	SMG.Heur!gen
Elastic	malicious (high confidence)
APEX	Malicious
Cynet	Malicious (score: 100)
BitDefender	Trojan.GenericKDZ.74286
Tencent	Packed.Win32.Krap.wa
Emsisoft	Trojan.GenericKDZ.74286 (B)
DrWeb	BackDoor.Miniduke.4
VIPRE	Trojan.GenericKDZ.74286
TrendMicro	TROJ_MINIDUKE.SM
McAfee-GW-Edition	BehavesLike.Win32.Generic.vc
Sophos	Troj/Agent-AYUX
SentinelOne	Static AI – Malicious PE
GData	Win32.Trojan.PSE.105ISSV
Jiangmin	Packed.Krap.gano
Antiy-AVL	Trojan[Packed]/Win32.Krap
Xcitium	TrojWare.Win32.Miniduke.A@7k3fwp
Arcabit	Trojan.Generic.D1222E
Microsoft	Trojan:Win32/MiniDuke.RDA!MTB
Google	Detected
AhnLab-V3	Trojan/Win32.Taranis.R233011
Acronis	suspicious
McAfee	GenericRXCN-AS!E1A1C75C80B6
MAX	malware (ai score=88)
Malwarebytes	Crypt.Trojan.Malicious.DDS
Panda	Trj/CI.A
TrendMicro-HouseCall	TROJ_MINIDUKE.SM
Rising	Dropper.Miniduke!8.1CFA (TFE:4:itqlQcrreHC)
Ikarus	Virus.Win32.PeCloak
Fortinet	W32/GenericKDZ.7428!tr
DeepInstinct	MALICIOUS
CrowdStrike	win/malicious_confidence_100% (W)