תוכנת מנוי למיקמק.exe

תוכנת מנוי למיקמק

The executable תוכנת מנוי למיקמק.exe has been detected as malware by 14 anti-virus scanners. The file has been seen being downloaded from downloadinter.upf.co.il.
Product:
תוכנת מנוי למיקמק

Version:
1.0.0.0

MD5:
0cd212037d6b93242a661ee3c6053578

SHA-1:
43acbd160466e7dc67fd399997e6dbd48cb7f086

SHA-256:
f27b62fa6eca03fff3cf8e386f98c1fbf0040c198acff78b4dc561f41d3af8fd

Scanner detections:
14 / 68

Status:
Malware

Analysis date:
11/18/2017 1:33:55 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.Generic.14615389
595

Avira AntiVirus
TR/Spy.Gen
8.3.1.6

Arcabit
Trojan.Generic.DDF035D
1.0.0.425

Baidu Antivirus
Trojan.Win32.Generic
4.0.3.15619

Bitdefender
Trojan.Generic.14615389
1.0.20.850

Emsisoft Anti-Malware
Trojan.Generic.14615389
8.15.06.19.07

F-Secure
Trojan.Generic.14615389
11.2015-19-06_6

G Data
Trojan.Generic.14615389
15.6.25

IKARUS anti.virus
Trojan.Spy
t3scan.1.9.5.0

MicroWorld eScan
Trojan.Generic.14615389
16.0.0.510

nProtect
Trojan.Generic.14615389
15.06.05.01

Panda Antivirus
Trj/Sharik.B
15.05.29.10

Qihoo 360 Security
HEUR/QVM03.0.Malware.Gen
1.0.0.1015

Trend Micro House Call
Suspicious_GEN.F47V0529
7.2.170

File size:
410.5 KB (420,352 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2013

Original file name:
תוכנת מנוי למיקמק.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\????? ???? ??????.exe

File PE Metadata
Compilation timestamp:
5/13/2013 1:58:18 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:5tZwHOfCIVKATJ+umfS37ezOTUIKFTbzNnTtPGIHPSJ9T8WO7B1eZyYX:5tZyOfrVKAlMfS37eSTUImvpBSneuy

Entry address:
0x6746E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.4307

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
405.5 KB (415,232 bytes)

The file תוכנת מנוי למיקמק.exe has been seen being distributed by the following URL.

Remove תוכנת מנוי למיקמק.exe - Powered by Reason Core Security