home

creativescape - bringing back the fun!.exe

MD5:
efcb97e6662a5892f1844c9cbfe6bc35

SHA-1:
06d617d888614882fe9e788f9ebd478869114f82

SHA-256:
437201c532a2a3f0850c6ff3c1b7585cd62c8f1cb63976b0a8e7b483d2f23b60

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/30/2024 1:14:32 AM UTC  (today)

Scan engine
Detection
Engine version

Trend Micro House Call
PAK_Generic.007
7.2.1

Trend Micro
PAK_Generic.007
10.465.01

File size:
32 KB (32,768 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\creativescape - bringing back the fun!.exe

File PE Metadata
Compilation timestamp:
5/5/2006 3:38:53 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
768:i888875OzprO6R1P888878H0OF5ruJaETF346HR1Asm:SOVvW0OF5K73fx1Asm

Entry address:
0x1000

Entry point:
6A, 01, 33, C0, 50, 50, 68, 08, 20, 40, 00, 68, D0, 20, 40, 00, 50, FF, 15, 00, 20, 40, 00, 33, C0, C2, 10, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.4925

Code size:
512 Bytes (512 bytes)

The file creativescape - bringing back the fun!.exe has been seen being distributed by the following URL.

http://creative-scape.com/.../CreativeScape - Bringing back the fun!.exe

Scan creativescape - bringing back the fun!.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.