See: hxtps://www.virustotal.com/url/5307c64d60ae25f8ebfd72db3b4495dacb94fd4edad4746318f2e4403b55c27b/analysis/1337352519/
and htxp://vscan.urlvoid.com/analysis/306ee6aca88bd05fd8b4493838fe5a1f/cHV0LWV4ZQ==/
detected is TR/Crypt.XPACK.Gen - is this genuine malware or a false heuristical packer detection?
DrWeb’s online scan htxp://www.ozelgazihastanesi.com/puT.exe infected with Trojan.PWS.Panda.2260
Quttera detects as potentially suspicious: /wXw.ozelgazihastanesi.com/index.html error v*r hds[0] = 1; *=a (polonus)
info: [script] wXw.gazihastanesi.com.tr/stcode.js
info: [decodingLevel=1] found JavaScript
suspicious:
This detection is for new encryption ransomware,
reported to virus AT avast dot com,
polonus