home

DVRemoteDesktop.exe

DVR Remote Desktop

This is a setup program which is used to install the application. The file has been seen being downloaded from 192.168.251.200 and multiple other hosts.
Product:
DVR Remote Desktop

Version:
2,1,0,51

MD5:
964c604f6a9301705403382c903ebf80

SHA-1:
e4c058cb8d95e425491d4782db80c9f0e4e988b1

SHA-256:
941174b9c3ac908470eb7cb2b2aaef9b21d81d7104f27e07907e1d4aa45829a8

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 6:35:06 AM UTC  (today)

File size:
59 KB (60,416 bytes)

Product version:
2,1,0,51

Copyright:
Copyright (C) 2009

Original file name:
DVRemoteDesktop.exe

File type:
Executable application (Win64 EXE)

Language:
English (United States)

Common path:
C:\Documents and Settings\{user}\Local settings\temporary internet files\content.ie5\{random}\dvremotedesktop.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
1536:wa72el9x/KqjXLVQOuvVfaybJkCEx1DNYVKmY7z:w7WLCqiceEx1DNYVKh7

Entry point:
60, BE, 00, 90, 41, 00, 8D, BE, 00, 80, FE, FF, 57, EB, 0B, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, EF, 75, 09, 8B, 1E, 83, EE, FC, 11, DB, 73, E4, 31, C9, 83, E8, 03, 72, 0D, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 74, 89, C5, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 75, 20, 41, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB...
 
[+]

Entropy:
7.6509

Packer / compiler:
UPX v0.89.6 - v1.02 / v1.05 -v1.24

The file DVRemoteDesktop.exe has been seen being distributed by the following 50 URLs.

http://192.168.251.200:9090/DVRemoteDesktop.exe

http://kholongan.dyndns.tv:82/DVRemoteDesktop.exe

http://192.168.1.35:6060/DVRemoteDesktop.exe

http://95.77.176.177:8000/DVRemoteDesktop.exe

http://gametriduc.dyndns.tv/DVRemoteDesktop.exe

http://65.32.96.104:2000/DVRemoteDesktop.exe

http://10.0.0.55/DVRemoteDesktop.exe

http://220.134.235.178/DVRemoteDesktop.exe

http://192.168.0.38:8585/DVRemoteDesktop.exe

http://210.242.67.187/DVRemoteDesktop.exe

http://211.75.64.128/DVRemoteDesktop.exe

http://desertchill.dvrdns.org:85/DVRemoteDesktop.exe

http://163.27.95.118/DVRemoteDesktop.exe

http://192.168.1.4:6060/DVRemoteDesktop.exe

http://caodang20-bqp.edu.vn/iso/.../getFiles.php?zx=963c2bccacb9493abc23a180c59be878&fx=task&id=1

http://sanpatong203.dyndns.info:82/DVRemoteDesktop.exe

http://darkshindo.ddns.net:1720/DVRemoteDesktop.exe

http://192.168.1.150:5550/DVRemoteDesktop.exe

http://59.126.137.159/DVRemoteDesktop.exe

http://192.168.1.2/DVRemoteDesktop.exe

http://114.34.198.147/DVRemoteDesktop.exe

http://tienthu41.dyndns.org:81/DVRemoteDesktop.exe

http://192.168.1.10:88/DVRemoteDesktop.exe

http://59.127.140.100/DVRemoteDesktop.exe

http://192.168.1.65/DVRemoteDesktop.exe

http://192.168.1.33/DVRemoteDesktop.exe

http://192.168.1.100/DVRemoteDesktop.exe

http://restauhamza.no-ip.info/DVRemoteDesktop.exe

http://www.uoi.com.tw/big5/.../DVRemoteDesktop.exe

http://192.168.2.50:8080/DVRemoteDesktop.exe

Latest 30 of 70 download URLs

Scan DVRemoteDesktop.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.