» Chcker Emails For Facebook And Hotmail V1.exe
Overview
Analysis
File Details
Downloads (1)

Chcker Emails For Facebook And Hotmail V1.exe

Checker By Security Alshaab

The executable Chcker Emails For Facebook And Hotmail V1.exe has been detected as malware by 8 anti-virus scanners. The file has been seen being downloaded from dc375.gulfup.com.

File name:

Product:

Checker By Security Alshaab

Version:

1.0.0.0

MD5:

4a75c48bcbe8f49805b85fead5f892bd

SHA-1:

18e9c42393330ba50e47b7a6e45d023d0cec367c

SHA-256:

c2758bb551618e316614c98d60132f3cb571a686efaa1b752bc15e52d86fd3fd

Scanner detections:

8 / 68

Status:

Malware

Analysis date:

5/5/2024 2:38:06 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.GenericKD.2517193

576

Arcabit

Trojan.Generic.D2668C9

1.0.0.425

Bitdefender

Trojan.GenericKD.2517193

1.0.20.945

Emsisoft Anti-Malware

Trojan.GenericKD.2517193

8.15.07.08.06

F-Secure

Trojan.GenericKD.2517193

11.2015-08-07_4

G Data

Trojan.GenericKD.2517193

15.7.25

MicroWorld eScan

Trojan.GenericKD.2517193

16.0.0.567

nProtect

Trojan.GenericKD.2517193

15.07.06.01

File size:

199 KB (203,776 bytes)

Product version:

1.0.0.0

Original file name:

Chcker Emails For Facebook And Hotmail V1.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\chcker emails for facebook and hotmail v1.exe

File PE Metadata

Compilation timestamp:

3/6/2015 2:41:07 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

3072:qj0/7yTG9auZIdXhyekkFz2f0tGavspyDravtqAkj0/7yTG9:qI/ei9aHdpFfI/ei9

Entry address:

0x223BE

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 93, E9, F8, 54, 00, 00, 00, 00, 02, 00, 00, 00, 1C, 01, 00, 00, 1C, 40, 02, 00, 1C, 08, 02, 00, 52, 53, 44, 53, 9C, 4A, 1D, BE, C9, 63, 15, 44, A4, D0, DB, 19, 91, E3, 26, 42, 01, 00, 00, 00, 43, 3A, 5C, 55, 73, 65, 72, 73, 5C, 61... 
[+]

Entropy:

4.8501

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

129 KB (132,096 bytes)

The file Chcker Emails For Facebook And Hotmail V1.exe has been seen being distributed by the following URL.

http://dc375.gulfup.com/sVKPrR.exe

Remove Chcker Emails For Facebook And Hotmail V1.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.