» color my facebook-bg.exe
Overview
Analysis
File Details
Programs (1)

color my facebook-bg.exe

Color My Facebook

Safari Developer: (ZMLURJCR77) duvalaugustin@gmail.com

The executable color my facebook-bg.exe, “Color My Facebook exe” has been detected as malware by 1 anti-virus scanner. This file is typically installed with the program Color My Facebook by Duval which is a potentially unwanted software program.

File name:

Publisher:

Duval (signed by Safari Developer: (ZMLURJCR77) duvalaugustin@gmail.com)

Product:

Color My Facebook

Description:

Color My Facebook exe

Version:

1.1.153.215

MD5:

71e75162110cefeef46c6d52c6fe7b2f

SHA-1:

99bdbbf4d5d91d51e1bd0704e1f736debc5a76a8

SHA-256:

b342d73da5ae8df5edde2aed72cc76134ddc251c7ff012e8000ad071942ac589

Scanner detections:

1 / 68

Status:

Malware

Analysis date:

4/26/2024 12:18:23 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

Threat.Win.Reputation.IMP

15.6.18.22

File size:

1.4 MB (1,492,568 bytes)

Product version:

1.1.153.215

Original file name:

Color My Facebook.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\color my facebook\color my facebook-bg.exe

Digital Signature

Signed by:

Safari Developer: (ZMLURJCR77) duvalaugustin@gmail.com

Authority:

Apple Inc.

Valid from:

7/16/2012 1:25:00 AM

Valid to:

7/16/2013 1:25:00 AM

Subject:

C=FR, CN=Safari Developer: (ZMLURJCR77) duvalaugustin@gmail.com, OID.0.9.2342.19200300.100.1.1=3MV9W8EA58

Issuer:

CN=Apple Worldwide Developer Relations Certification Authority, OU=Apple Worldwide Developer Relations, O=Apple Inc., C=US

Serial number:

24A43EE61F285A43

File PE Metadata

Compilation timestamp:

3/19/2013 5:02:45 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

24576:3cWdrVl2de8ZI70NNQ/WyuneqNR5Reeg1q9LBeLweAT5reTP:sWdrn2de8670NNQ/W5neqNjRz9L9eATi

Entry address:

0xEE28D

Entry point:

E8, B0, AB, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 8B, 45, 08, 33, C9, 3B, 04, CD, 38, 9B, 56, 00, 74, 13, 41, 83, F9, 2D, 72, F1, 8D, 48, ED, 83, F9, 11, 77, 0E, 6A, 0D, 58, 5D, C3, 8B, 04, CD, 3C, 9B, 56, 00, 5D, C3, 05, 44, FF, FF, FF, 6A, 0E, 59, 3B, C8, 1B, C0, 23, C1, 83, C0, 08, 5D, C3, E8, 85, 0E, 00, 00, 85, C0, 75, 06, B8, A0, 9C, 56, 00, C3, 83, C0, 08, C3, E8, 72, 0E, 00, 00, 85, C0, 75, 06, B8, A4, 9C, 56, 00, C3, 83, C0, 0C, C3, 8B, FF, 55, 8B, EC, 56, E8, E2, FF, FF, FF, 8B, 4D, 08... 
[+]

Entropy:

6.5807

Code size:

1.2 MB (1,244,160 bytes)

The file color my facebook-bg.exe has been discovered within the following program.

Color My Facebook by Duval

Publisher's description - “No more blue on Facebook! Choose your favorite color and see result instantly on your Facebook pages. Over 2,500,000 people downloaded Color My Facebook, the most popular and beautiful Facebook color changer! Are you?”

colormyfacebook.com

64% remove it

Remove color my facebook-bg.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.