» מייצר מנוים למיקמק.exe
Overview
Analysis
File Details
Downloads (52)

מייצר מנוים למיקמק.exe

מייצר מנוים למיקמק

Microsoft

This is a setup program which is used to install the application. The file has been seen being downloaded from f2h.nana10.co.il and multiple other hosts.

File name:

Publisher:

Microsoft

Product:

מייצר מנוים למיקמק

Version:

1.0.0.0

MD5:

24dc2132c75231b75e8cbc8202002534

SHA-1:

b1c45b6584d343a84894430933b1e8886b960ec6

SHA-256:

b455cfeb84f580bd25aeed34ebf49048d67db8e147b4e1f1a72047d4a8205e19

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/26/2024 6:10:48 PM UTC (today)

File size:

325 KB (332,800 bytes)

Product version:

1.0.0.0

Original file name:

מייצר מנוים למיקמק.exe

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\?????? ????\????? ????? ??????.exe

File PE Metadata

Compilation timestamp:

1/12/2012 5:05:48 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

6144:NYewXb6+8N8rliQ3WC2QP2v2E6x8BL/8BLtcgtEXHWycdnXv:NlwXO+CgliaWC2QPw2Ek8F8MgGdc

Entry address:

0x51E9E

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

7.8221

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

320 KB (327,680 bytes)

The file מייצר מנוים למיקמק.exe has been seen being distributed by the following 50 URLs.

http://f2h.nana10.co.il/.../egdhoxpfqhly|ef30b9b8cd6730f6cbf4f06687a0bdb2|.exe

http://serv33.f2h.co.il/.../egdhoxpfqhly|66639dee79424df5c347fa343cddc54c

http://f2h.nana10.co.il/.../egdhoxpfqhly|e1fe038fa1cdcc4c3033abbddf8090df|.exe

http://f2h.nana10.co.il/.../egdhoxpfqhly|5c31c1d034d0973390cd9085d3756d3e|.exe

http://f2h.nana10.co.il/.../egdhoxpfqhly|4a2752fd49d645d5b7a19fe7f86ad161|.exe

http://serv33.f2h.co.il/.../egdhoxpfqhly|ec08f918a74269b3ee4a472648c5b979

http://f2h.nana10.co.il/.../egdhoxpfqhly|babba0fbe8d6f07db708b405a9c396c9|.exe

http://serv33.f2h.co.il/.../egdhoxpfqhly|a54f68ac61a2241409d23e76223c9eab

http://down.upf.co.il/download2.php?file=928099981&hash=bf6908b7dcbfa827e7729655e44f6a62&backup=1

http://f2h.nana10.co.il/.../egdhoxpfqhly|e3938defceea708d37851b21e9229e96|.exe

http://serv33.f2h.co.il/.../egdhoxpfqhly|5344b5fa83648987d42b7ef050738b68

http://f2h.nana10.co.il/.../egdhoxpfqhly|6fd168dfe415b0e8f30504b56c74bcbf|.exe

http://f2h.nana10.co.il/.../egdhoxpfqhly|1b6cacfb359933b9c9d17006d164535b|.exe

http://f2h.nana10.co.il/.../egdhoxpfqhly|f53f3440d521c90a525e94ff5879b07f|.exe

http://serv33.f2h.co.il/.../egdhoxpfqhly|6683016a03d30b10e7ec982160e1e8c6

http://f2h.nana10.co.il/.../egdhoxpfqhly|56006af306396582928ca8568a326e06|.exe

http://f2h.nana10.co.il/.../egdhoxpfqhly|a03870e620088815814ed2851cfdf982|.exe

http://f2h.nana10.co.il/.../egdhoxpfqhly|f8a3856c0a58ee35144273c2a5292ba4|.exe

http://f2h.nana10.co.il/.../egdhoxpfqhly|3889ce692c747b5669ae00d74046cb14|.exe

http://f2h.nana10.co.il/.../egdhoxpfqhly|72a9668ddc738dc9a3982386eaff8563|.exe

http://f2h.nana10.co.il/.../egdhoxpfqhly|80912923e81362137b66b3033002d522|.exe

http://serv33.f2h.co.il/.../egdhoxpfqhly|b87b372effc16b7cf6c47691b97410fb|.exe

http://f2h.nana10.co.il/.../egdhoxpfqhly|6036b30bf4d581ba353b49704299179c|.exe

http://f2h.nana10.co.il/.../egdhoxpfqhly|057dcae61758233f6f085c3a695d1eec|.exe

http://f2h.nana10.co.il/.../egdhoxpfqhly|96cd04ec23abcaf76ba3f2162d6f44d3|.exe

http://down.upf.co.il/downloadnew/file/.../de47d32663460826819601152e1fc12d_A19881988616eJzXyUmYdnbfhH19881988rA==

http://f2h.nana10.co.il/.../egdhoxpfqhly|bc005b0f683663234c52fc4d5063cfe9|.exe

http://f2h.nana10.co.il/.../egdhoxpfqhly|941d290070e062ae829ac49bb975286f|.exe

http://f2h.nana10.co.il/.../egdhoxpfqhly|1076f4202789f26cb5d55ec8da6d42cc|.exe

http://serv33.f2h.co.il/.../egdhoxpfqhly|401f88ffe26f93d02bd1b92d73882fa3

Latest 30 of 52 download URLs

Scan מייצר מנוים למיקמק.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.