» g-cash pb generator0 v.76.exe
Overview
Analysis
File Details
Downloads (1)

g-cash pb generator0 v.76.exe

G-Cash PB Generator0 v.76

File name:

Product:

G-Cash PB Generator0 v.76

Version:

1.0.0.0

MD5:

99f0331db861366e45c65eb13ba41bcb

SHA-1:

3fc2f704171e993efebf9596cf01e5c955c89a7a

SHA-256:

e20ba8e473112250832a05e7508eb576aabdfe8dd596da3a0925b3e03ee4247b

Scanner detections:

1 / 68

Status:

Inconclusive (not enough data for an accurate detection)

Analysis date:

5/30/2024 4:22:11 AM UTC (today)

Scan engine

Detection

Engine version

ESET NOD32

MSIL/PSW.Agent.OFT trojan

8.0.319.0

File size:

151.5 KB (155,136 bytes)

Product version:

1.0.0.0

Original file name:

G-Cash PB Generator0 v.76.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\g-cash pb generator0 v.76.exe

File PE Metadata

Compilation timestamp:

12/28/2012 11:53:09 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

3072:SsAw1Q6TFwiDoxTcLaHb7+mG8SDgyUlQlJdxqrp:RAwmoNDAgk+zzU+/

Entry address:

0x2657E

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

7.4257

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

145.5 KB (148,992 bytes)

The file g-cash pb generator0 v.76.exe has been seen being distributed by the following URL.

http://download1588.mediafire.com/1jc59qwfehng/.../G-Cash PB Generator0 v.76(2).exe

Scan g-cash pb generator0 v.76.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.