» color my facebook-bg.exe
Overview
Analysis
File Details

color my facebook-bg.exe

Color My Facebook

Safari Developer: (ZMLURJCR77) duvalaugustin@gmail.com

The executable color my facebook-bg.exe, “Color My Facebook exe” has been detected as malware by 1 anti-virus scanner.

File name:

Publisher:

Duval (signed by Safari Developer: (ZMLURJCR77) duvalaugustin@gmail.com)

Product:

Color My Facebook

Description:

Color My Facebook exe

Version:

1.1.153.203

MD5:

e101a6f86c77017f40f9ce9014b8e333

SHA-1:

ff19def0245c22120ab6aba7e3a51608895d315b

SHA-256:

1b9f21db8ff4fcf770447c7b54fc4e53678a855b66d0806780518df37d3c53ff

Scanner detections:

1 / 68

Status:

Malware

Analysis date:

4/19/2024 5:59:40 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

Threat.Win.Reputation.IMP

16.3.22.19

File size:

1 MB (1,052,760 bytes)

Product version:

1.1.153.203

Original file name:

Color My Facebook.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\color my facebook\color my facebook-bg.exe

Digital Signature

Signed by:

Safari Developer: (ZMLURJCR77) duvalaugustin@gmail.com

Authority:

Apple Inc.

Valid from:

7/15/2012 5:25:00 PM

Valid to:

7/15/2013 5:25:00 PM

Subject:

C=FR, CN=Safari Developer: (ZMLURJCR77) duvalaugustin@gmail.com, OID.0.9.2342.19200300.100.1.1=3MV9W8EA58

Issuer:

CN=Apple Worldwide Developer Relations Certification Authority, OU=Apple Worldwide Developer Relations, O=Apple Inc., C=US

Serial number:

24A43EE61F285A43

File PE Metadata

Compilation timestamp:

2/11/2013 12:32:28 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

24576:kR8v9USJo/iXPheY5bv6XZMZnfaBhlEfSSt2gITvAbc:kk9/o/WPheY5bv6XSnCBISA2gITvAbc

Entry address:

0x97C8E

Entry point:

E8, EB, AC, 00, 00, E9, 89, FE, FF, FF, 2D, A4, 03, 00, 00, 74, 22, 83, E8, 04, 74, 17, 83, E8, 0D, 74, 0C, 48, 74, 03, 33, C0, C3, B8, 04, 04, 00, 00, C3, B8, 12, 04, 00, 00, C3, B8, 04, 08, 00, 00, C3, B8, 11, 04, 00, 00, C3, 8B, FF, 56, 57, 8B, F0, 68, 01, 01, 00, 00, 33, FF, 8D, 46, 1C, 57, 50, E8, 62, C6, FF, FF, 33, C0, 0F, B7, C8, 8B, C1, 89, 7E, 04, 89, 7E, 08, 89, 7E, 0C, C1, E1, 10, 0B, C1, 8D, 7E, 10, AB, AB, AB, B9, E8, EF, 4F, 00, 83, C4, 0C, 8D, 46, 1C, 2B, CE, BF, 01, 01, 00, 00, 8A, 14, 01... 
[+]

Code size:

853 KB (873,472 bytes)

Remove color my facebook-bg.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.