home

ben10.exe

Odesa Yazılım

This is a self-extracting archive and installer. The file has been seen being downloaded from indir.gezginler.net and multiple other hosts.
Publisher:
Odesa Yazılım

Description:
Ben10 Oyunu 1.4.5 Installation

Version:
1.4.5

MD5:
0c3c82f22455c8566759a95b758861c8

SHA-1:
2bbb8547697799fefac01b50ed345669a29fa546

SHA-256:
0b6a0344ccd869b17e8e3821f0e3a3f7e89058703c1eab502413e2d29c7eade2

Scanner detections:
3 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
5/18/2024 2:55:31 PM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Malware-gen
2014.9-160217

G Data
Win32.Trojan.Agent.UNOJVO
16.2.25

IKARUS anti.virus
Trojan.Win32.Agent
t3scan.1.9.5.0

File size:
1.8 MB (1,878,322 bytes)

Copyright:
Odesa Yazılım

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\ben10.exe

File PE Metadata
Compilation timestamp:
6/19/1992 3:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:VgTcEhZHv1fN41xA6HjOns8dg3rXonmlYotf93YhwuDagT39waeNYjJ8179Dm:KTFHdfNuXDOn2rR7puD1wNYC9Dm

Entry address:
0x166D4

Entry point:
55, 8B, EC, 83, C4, F0, B8, 2C, 66, 41, 00, E8, CC, C1, FE, FF, B8, 34, 67, 41, 00, E8, DE, 2A, FF, FF, 8B, 15, 70, 76, 41, 00, 89, 02, 8B, 15, 70, 76, 41, 00, 8B, 12, A1, 78, 76, 41, 00, E8, CC, D8, FF, FF, 8B, 15, 70, 76, 41, 00, 8B, 12, A1, 20, 76, 41, 00, E8, 0E, 73, FF, FF, A1, 70, 76, 41, 00, E8, 34, 1D, FF, FF, E8, 27, B2, FE, FF, 00, 00, 00, FF, FF, FF, FF, 01, 00, 00, 00, 2A, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.9847

Developed / compiled with:
Microsoft Visual C++

Code size:
86 KB (88,064 bytes)

The file ben10.exe has been seen being distributed by the following 6 URLs.

http://indir.gezginler.net/i/10545/.../

http://indir.gezginler.net/i/10545/.../

http://windows.indir.com/kaydet.php?x=TVRFNU1EaEFRRUFoSVNFdVFYTnVLelJtSlcwMVRRPT18fHw1YjRmYmZhZGU5OTkyZjYyZjU0MDljODQ3MTc3MTEwMg==&m=1

http://indir.gezginler.net/i/10545/.../

http://windows.indir.com/kaydet.php?x=TVRFNU1EaEFRRUFoSVNFdVFYTnVLelJtSlcwMVRRPT18fHxiMmMzYTJlNzIxZWJjNGIyNTA4NmFjMWYxZTVkOTE2Zg==&m=1

http://www.dpndr.com/.../odesa-ben10-oyunu.exe

Scan ben10.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.