» classicshellsetup_4_1_0.exe
Overview
Analysis
File Details
Downloads (1)

classicshellsetup_4_1_0.exe

File name:

MD5:

0c80310889018f07ebdd7f466f69f2ce

SHA-1:

3bf46f103fb56401a7fddb1f50fd1676cc880980

SHA-256:

ee434723ac4485805067f60441598a89dbdcbe0e8ab4555481a17e5e15ab8f17

Scanner detections:

1 / 68

Status:

Inconclusive (not enough data for an accurate detection)

Analysis date:

4/19/2024 2:47:32 PM UTC (today)

Scan engine

Detection

Engine version

Avira AntiVirus

W32/Ramnit.C

7.11.30.172

File size:

56.7 KB (58,015 bytes)

File type:

Executable application (Win64 EXE)

File PE Metadata

OS bitness:

Win64

CTPH (ssdeep):

768:zhqC1m9vKqU1CiqxjuAkai8gymMCnNCSQ4b8Acts7TQQmgucRQvsK91/8A:zhqC1m3hMQQmIRQvsK91EA

Entry point:

3C, 21, 44, 4F, 43, 54, 59, 50, 45, 20, 68, 74, 6D, 6C, 3E, 0A, 3C, 68, 74, 6D, 6C, 20, 6C, 61, 6E, 67, 3D, 22, 65, 6E, 22, 3E, 0A, 3C, 68, 65, 61, 64, 3E, 0A, 20, 20, 20, 20, 3C, 6D, 65, 74, 61, 20, 63, 68, 61, 72, 73, 65, 74, 3D, 22, 75, 74, 66, 2D, 38, 22, 3E, 0A, 20, 20, 20, 20, 3C, 74, 69, 74, 6C, 65, 3E, 3C, 2F, 74, 69, 74, 6C, 65, 3E, 0A, 20, 20, 20, 20, 3C, 6D, 65, 74, 61, 20, 6E, 61, 6D, 65, 3D, 22, 64, 65, 73, 63, 72, 69, 70, 74, 69, 6F, 6E, 22, 20, 63, 6F, 6E, 74, 65, 6E, 74, 3D, 22, 22, 2F, 3E... 
[+]

Entropy:

4.1758

The file classicshellsetup_4_1_0.exe has been seen being distributed by the following URL.

http://www.fosshub.com/.../ClassicShellSetup_4_1_0.exe

Scan classicshellsetup_4_1_0.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.