home

american-megatrends.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from www.ami.com.
MD5:
3f77addfba9e66fd981ddbaee23faf6d

SHA-1:
540d18646693ddf8ca928a2db2324749de04e04c

SHA-256:
a6390920d43ed78d463ee5eb7338813ac9f74b132b47b0b661d8ff07883e1748

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/25/2024 7:04:51 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Dropper.Gen
8.3.1.6

IKARUS anti.virus
Trojan.Dropper
t3scan.1.9.5.0

File size:
11 MB (11,522,399 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\american-megatrends.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
196608:7doeATAB/eVWyy7VeFVjcHaVx7+nVnywy3mys/0eLytCfjdyA:7q2/eS7oiHav4Jywy2ys8uycpyA

Entry point:
50, 4B, 03, 04, 14, 00, 00, 00, 00, 00, 9A, 89, 3D, 46, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 36, 00, 00, 00, 41, 4D, 49, 42, 49, 4F, 53, 5F, 61, 6E, 64, 5F, 41, 70, 74, 69, 6F, 5F, 41, 4D, 49, 5F, 46, 69, 72, 6D, 77, 61, 72, 65, 5F, 55, 70, 64, 61, 74, 65, 5F, 55, 74, 69, 6C, 69, 74, 79, 2F, 41, 4D, 49, 42, 49, 4F, 53, 2F, 50, 4B, 03, 04, 14, 00, 00, 00, 00, 00, 9A, 89, 3D, 46, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 3D, 00, 00, 00, 41, 4D, 49, 42, 49, 4F, 53, 5F, 61, 6E, 64, 5F, 41, 70...
 
[+]

Entropy:
7.9987  (probably packed)

The file american-megatrends.exe has been seen being distributed by the following URL.

http://www.ami.com/.../AMIBIOS_and_Aptio_AMI_Firmware_Update_Utility.zip

Scan american-megatrends.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.