home

bios320.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from www.raymond.cc.
MD5:
2ec4babb08b73fe70ed124871bc92ceb

SHA-1:
1b84f58c2611604e081a4c44526f1913f0835177

SHA-256:
e6b3250b00edef016e7be33215b43b63879d3d2dad4f62f8f21afda6b7424770

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 3:00:57 AM UTC  (today)

File size:
44.5 KB (45,584 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\bios320.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
768:l3t3/6Xe0ZBmuQYi3NA5v6EGXx2KUZ7Vrf8mkUa+ccoISIuuztRkLpsgycd:lF/Ae0GcMAUhXx2KUZ5kUxccoLI1JApt

Entry point:
4D, 5A, 10, 00, 5A, 00, 01, 00, 07, 00, 98, 16, FF, FF, 22, 0B, 00, 02, 00, 00, 00, 02, E0, FF, 20, 00, 00, 00, 00, 00, 00, 00, 07, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 50, 52, 4F, 43, 31, 31, 41, 20, 28, 63, 29, 20, 45, 6C, 65, 76, 65, 6E, 74, 68, 20, 41, 6C, 6C, 69, 61, 6E, 63, 65, 00, 00, 00, ED, 64, 88, 5B, E8, DB, 45, 00, 10, B2, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, B8, B0, 21, BA, 1A, 0B, 05, 00, 00, 3B, 06, 02, 00, 60, B4, 33...
 
[+]

Entropy:
7.7971  (probably packed)

The file bios320.exe has been seen being distributed by the following URL.

https://www.raymond.cc/blog/wp-content/plugins/.../download.php?id=82

Scan bios320.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.