home

4b.exe

MD5:
c8f4a3b1dab94516105344020c94ff8e

SHA-1:
02a982655177b35be20882e8df024955ef288cda

SHA-256:
34111e6b2de98b0f39273d4f38ab3f3630d850608712cbfb8b0cb8562a86fbe1

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/16/2024 6:00:59 AM UTC  (today)

File size:
612 Bytes

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\4b.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
3:jfLlt5l9vl/t8lZl5dlaZQxq5EBcLbbenOkMzdDQ:jfLlteZ7N4EB+mvMG

Entry point:
4D, 5A, 64, 00, 02, 00, 01, 00, 20, 00, 00, 00, FF, FF, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 3E, 00, 00, 00, 01, 00, FB, 50, 6A, 72, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
1.6661

The file 4b.exe has been seen being distributed by the following URL.

https://doc-0s-1s-docs.googleusercontent.com/docs/securesc/7dep9rg9alemdrd0p6ddr9hontg78fhd/bbvu6j4h80aa156ftsoeasva8qbn8k0a/1463630400000/16204402225879682250/.../0B8eV17mePT9qV3g5RGVndGI5UFU?e=download

Scan 4b.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.