» color my facebook-bg.exe
Overview
Analysis
File Details

color my facebook-bg.exe

Color My Facebook

Safari Developer: (ZMLURJCR77) duvalaugustin@gmail.com

The executable color my facebook-bg.exe, “Color My Facebook exe” has been detected as malware by 1 anti-virus scanner.

File name:

Publisher:

Duval (signed by Safari Developer: (ZMLURJCR77) duvalaugustin@gmail.com)

Product:

Color My Facebook

Description:

Color My Facebook exe

Version:

1.1.153.218

MD5:

8093ce4075ef8e7291b1b84e8804ac9b

SHA-1:

1d944cf2332f92fe2cc710919523080864f4e794

SHA-256:

2df80319f6e0d5af723d134ce656e932926a11ed6009f5b7bd87a5d9e8052a73

Scanner detections:

1 / 68

Status:

Malware

Analysis date:

4/24/2024 1:46:38 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

Threat.Win.Reputation.IMP

16.6.18.21

File size:

1.4 MB (1,498,712 bytes)

Product version:

1.1.153.218

Original file name:

Color My Facebook.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\color my facebook\color my facebook-bg.exe

Digital Signature

Signed by:

Safari Developer: (ZMLURJCR77) duvalaugustin@gmail.com

Authority:

Apple Inc.

Valid from:

7/15/2012 3:25:00 PM

Valid to:

7/15/2013 3:25:00 PM

Subject:

C=FR, CN=Safari Developer: (ZMLURJCR77) duvalaugustin@gmail.com, OID.0.9.2342.19200300.100.1.1=3MV9W8EA58

Issuer:

CN=Apple Worldwide Developer Relations Certification Authority, OU=Apple Worldwide Developer Relations, O=Apple Inc., C=US

Serial number:

24A43EE61F285A43

File PE Metadata

Compilation timestamp:

4/3/2013 3:21:15 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

24576:V7bZCjqas5Xic/e5RbYheGtptUsRgQ+PjxcEykQqHNuquXGcDT61c5Kq:BbZCjTeXic25RUh5tptUsRgQ+PNDBHhg

Entry address:

0xEF2AD

Entry point:

E8, B0, AB, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 8B, 45, 08, 33, C9, 3B, 04, CD, 38, AB, 56, 00, 74, 13, 41, 83, F9, 2D, 72, F1, 8D, 48, ED, 83, F9, 11, 77, 0E, 6A, 0D, 58, 5D, C3, 8B, 04, CD, 3C, AB, 56, 00, 5D, C3, 05, 44, FF, FF, FF, 6A, 0E, 59, 3B, C8, 1B, C0, 23, C1, 83, C0, 08, 5D, C3, E8, 85, 0E, 00, 00, 85, C0, 75, 06, B8, A0, AC, 56, 00, C3, 83, C0, 08, C3, E8, 72, 0E, 00, 00, 85, C0, 75, 06, B8, A4, AC, 56, 00, C3, 83, C0, 0C, C3, 8B, FF, 55, 8B, EC, 56, E8, E2, FF, FF, FF, 8B, 4D, 08... 
[+]

Code size:

1.2 MB (1,249,280 bytes)

Remove color my facebook-bg.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.