home

dreamule.exe

DreaMule

Bruno Cabral

This is a setup program which is used to install the application. The file has been seen being downloaded from b2c-descargas.s3.amazonaws.com.
Publisher:
Bruno Cabral

Product:
DreaMule

Description:
Dreamule 3.2

Version:
3.2

MD5:
3c037f474a4530495733ea47bb6cb3d2

SHA-1:
7f36e79b46362b2e9b145ba6c433ece1ce6cf30c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/2/2024 3:20:36 PM UTC  (today)

File size:
6.7 MB (7,077,332 bytes)

Product version:
3.2

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Documents and Settings\{user}\Local settings\temporary internet files\content.ie5\{random}\dreamule.exe

File PE Metadata
Compilation timestamp:
6/19/1992 10:22:17 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:1sGHbCjVW1VmClK9TJ9ADFRe+4zc/NOwuLRHZCw:1bLK9TIPexzyOb1cw

Entry address:
0x14000

Entry point:
90, B9, 05, 12, 09, 00, 90, 90, 68, 1A, 40, 41, 00, 5F, 68, 98, 05, 00, 00, 5A, 90, 31, 0C, 3A, 83, EA, 04, 75, F8, 90, ED, 6F, 08, 00, 05, 12, 09, 00, 05, 12, 49, 00, 5D, 88, 09, 00, 10, 54, 60, 00, D1, 5F, 60, 00, 05, A2, 0B, 00, FA, ED, F6, FF, B1, C2, 49, 00, 61, C0, 49, 00, 79, C0, 49, 00, 05, 12, 09, 00, 05, 12, 09, 00, 05, 12, 09, 00, B1, 88, 09, 00, 67, C0, 09, 00, 7F, C0, 09, 00, 05, 12, 09, 00, 05, 12, 09, 00, 05, 12, 09, 00, 05, 12, 09, 00, 19, C3, 49, 00, 05, 12, 09, 00, 05, 12, 09, 00, 05, 12...
 
[+]

Code size:
36.5 KB (37,376 bytes)

The file dreamule.exe has been seen being distributed by the following URL.

http://b2c-descargas.s3.amazonaws.com/.../DreaMule.exe

Scan dreamule.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.