» bp code calculator.exe
Overview
Analysis
File Details
Downloads (6)

bp code calculator.exe

BLAUPUNKT

home

The executable bp code calculator.exe has been detected as malware by 7 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from s6123.chomikuj.pl and multiple other hosts.

File name:

Publisher:

home

Product:

BLAUPUNKT

Version:

2.00

MD5:

60fc1a947bdca3d9188f00e61a5f11c4

SHA-1:

209bba93c6bc380f0c46791f8b04f4f397c793d8

SHA-256:

1d73b92dad6c20b26fe58e5815c8a4131fe6fb99d5e3b9354ecb922d5ef8962a

Scanner detections:

7 / 68

Status:

Malware

Analysis date:

4/25/2024 5:18:12 AM UTC (today)

Scan engine

Detection

Engine version

Avira AntiVirus

TR/Agent.xat.2

7.11.153.150

Bkav FE

W32.Clod6bf.Trojan

1.3.0.4959

IKARUS anti.virus

Trojan.Agent

t3scan.1.6.1.0

Norman

Suspicious_Gen4.BSDSH

11.20140612

Rising Antivirus

PE:Trojan.Win32.Generic.153811B5!355996085

23.00.65.14610

Trend Micro House Call

TROJ_GEN.R0C1B01ED14

7.2.163

VIPRE Antivirus

Trojan.Win32.Generic

30022

File size:

20.5 KB (20,994 bytes)

Product version:

2.00

Original file name:

BPcodecalc

File type:

Executable application (Win32 EXE)

Language:

English (United States)

File PE Metadata

Compilation timestamp:

12/18/2000 11:20:24 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

4.20

CTPH (ssdeep):

192:F8GNtnAPkxbffDGPa2gIiM0aRzSDILbnh0UlsRfn3W876d3p5dKJHlxBSBb3:F87sJf5aRzOILTh32RfqjdKJHlxBSB

Entry address:

0x1248

Entry point:

68, 9C, 14, 40, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 94, 0B, 88, B0, 26, B5, 64, 40, 9F, 0F, 39, C3, 50, 1D, B8, 30, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 20, 20, 20, 20, 20, 20, 20, 20, 20, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, FF, CC, 31, 00, 04, D8, 60, D7, AC, 67, 93, 9D, 4E, A7, 5F, BC, 2E, B3, F3, 1C, F9, 32, A1, 3D, ED, AF, 9C, 05, 40, BD, 0A, 53, 81, 16, CB, 60, FF, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00... 
[+]

Developed / compiled with:

Microsoft Visual Basic v5.0

Code size:

13 KB (13,312 bytes)

The file bp code calculator.exe has been seen being distributed by the following 6 URLs.

http://s6123.chomikuj.pl/File.aspx?e=xGktT-v9N9R8U2-hsgIlstY0XbDMmD_kjpA1AVtfBu8qgbGQlXMUlnV7Wgzxnc-D6a0l7OBIO_7u9NpXTxjyVluhdPRoKGlPsWECXgCgpUsEUyHN7IbF3X46vmvvsgQoiH_3qIwwTBlWE5F6oqJNng&pv=2

http://s10664.chomikuj.pl/File.aspx?e=xGktT-v9N9R8U2-hsgIlstY0XbDMmD_kjpA1AVtfBu9qF5Wbg4vL7qF3Y7IPClmgIZ_kkVpMIaXMU9X6AImTObq2sxzJ-SKqUuddgaE3Hsk-51bkfKsxyyz_4tP3DyXkibh4z400QfyK8ajME615dDC2PjD3v-n6dunjRuENMdk&pv=2

http://www.eserviceinfo.com/download.php?downloadstart=1&fileid=20713

http://s10664.chomikuj.pl/File.aspx?e=xGktT-v9N9R8U2-hsgIlsmhmyojuCqNvicW-Tbrwa8HgK4Z5XNCp1soEi6eyfZzZkUjKaIFjsa60yoZJUvgwdC788WM8NdReINpo6NW3nOoB8Q3tshWPm1wFOUWBkwHPQrCu_wlX9d78LHMQMDt2bA&pv=2

http://freecache9-free.uloz.to/Ps;Hs;fid=39256;cid=126926549;rid=1350894111;up=0;uip=109.80.50.99;tm=1417019381;ut=f;aff=ulozto.sk;did=ulozto-sk;He;ch=de7f7a62c369601a85fa860fc52ed163;Pe/.../blaupunkt-code-calculator.exe

http://dla.uloz.to/Ps;Hs;fid=39256;cid=126926549;rid=1350894111;up=0;uip=109.80.50.99;tm=1417019381;ut=f;aff=ulozto.sk;did=ulozto-sk;He;ch=de7f7a62c369601a85fa860fc52ed163;Pe/.../blaupunkt-code-calculator.exe

Remove bp code calculator.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.