» ecoin bank..exe.exe
Overview
Analysis
File Details
Downloads (1)

ecoin bank..exe.exe

Speedhack

Your Organization Name

The executable ecoin bank..exe.exe has been detected as malware by 4 anti-virus scanners. The file has been seen being downloaded from download1396.mediafire.com.

File name:

ecoin bank..exe.exe

Publisher:

Your Organization Name

Product:

Speedhack

Version:

1.00

MD5:

2197c5d628a761609f2b7054e21138ac

SHA-1:

7b56d2a7acfb5ce6da3b166bc66f1a82664159cf

SHA-256:

d0aedb70f9c5b653eaa701c709d8d43bdc78fcb6b58013323f83e3664912b6bd

Scanner detections:

4 / 68

Status:

Malware

Analysis date:

5/15/2024 5:36:07 PM UTC (today)

Scan engine

Detection

Engine version

ESET NOD32

Win32/Virut.NBP virus

8.0.319.0

F-Prot

W32/Virut.E.gen

4.6.5.141

Microsoft Security Essentials

Threat.Undefined

1.225.2453.0

VIPRE Antivirus

Threat.4737366

50674

File size:

60 KB (61,440 bytes)

Product version:

1.00

Original file name:

Speedhack.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\ecoin bank..exe.exe

File PE Metadata

Compilation timestamp:

9/24/2010 1:08:50 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

768:7hOFVPuz2eLVVN2ZuFySgnYsEL2xMkHaQm64Nb:4eZVN2UgnjEa/W64

Entry address:

0xEA90

Entry point:

8B, FF, 83, 3C, 24, FE, 77, FE, 90, 8D, 64, 24, CC, 90, 8B, DB, 60, 83, EC, DC, E8, 95, FE, FF, FF, 42, 4B, BF, 32, C6, 37, 58, 66, 4B, 86, CC, B6, B0, 75, F8, 87, F6, 86, F4, FF, 73, 3C, 8B, F5, 59, 8A, F5, 81, E9, FD, FF, FF, 7F, 86, D6, 8D, 95, 1C, 48, 6C, 58, 90, 73, D5, 90, 86, E2, 90, 81, D9, E6, 13, 00, 00, 71, C9, 80, EA, 8A, 4A, FF, B4, 19, E4, 13, 00, 80, 86, F0, 0F, 9B, C4, 39, E6, 83, C4, 04, 90, 8D, 70, 3E, 8B, C6, 66, 81, 44, 24, FC, B0, BA, 75, A5, FE, C0, 04, 00, 68, 7C, D5, 03, 9E, E8, 52... 
[+]

Entropy:

5.8246

Code size:

16 KB (16,384 bytes)

The file ecoin bank..exe.exe has been seen being distributed by the following URL.

http://download1396.mediafire.com/x1zh9o6hywmg/.../ECOIN BANK..exe.exe

Remove ecoin bank..exe.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.