home

hjsplit.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from download678.mediafire.com.
Version:
2.3.0.0

MD5:
8ae02e041e81cc74b539278169cade16

SHA-1:
445669a2cdb90b08eec9149fc930c5ab681fac22

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
5/15/2024 3:21:49 AM UTC  (today)

Scan engine
Detection
Engine version

F-Prot
W32/Trojan2.MUWD
4.6.5.141

K7 AntiVirus
Trojan
13.176.11256

File size:
306 KB (313,344 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\temp_hjsplit\hjsplit.exe

File PE Metadata
Compilation timestamp:
6/19/1992 6:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
6144:SkZLZeZBp4jhAeEmBEtcVVzJFJBH1W6Iuy0zDqaGTxEs:SkzmfmCNGq6zJFJBv40XyE

Entry address:
0x1000

Entry point:
68, 01, 30, 49, 00, E8, 01, 00, 00, 00, C3, C3, 40, C9, F3, 7B, 8B, A3, BF, 67, FE, 90, 8B, 09, 48, 22, 7A, 1F, F4, DE, A6, 6F, A8, 83, 45, 9E, 1F, 3A, 8B, FE, 5A, 35, 0D, 82, 15, C2, 10, CD, E1, B1, 8E, 12, D0, BE, D8, 8A, 42, D7, CF, B8, 5F, AB, 1C, B5, 1D, F3, 06, 92, BA, 3B, 99, CE, 7D, 05, 02, 88, 1E, CD, 16, F7, D9, 3B, 16, EC, E4, F1, CF, DA, B0, DB, A6, A2, 41, 3F, BA, 76, 78, F9, 04, BB, 59, 80, 27, E5, 03, EC, FF, 8D, 52, 0E, 2D, B9, 26, 6C, A7, 42, 20, 04, 13, 72, 79, 00, 53, 55, 9E, 87, 0A, 60...
 
[+]

Entropy:
7.9006

Packer / compiler:
ASProtect v1.2x (New Strain)

Code size:
394 KB (403,456 bytes)

The file hjsplit.exe has been discovered within the following programs.

DoubleKiller Pro  by Big Bang enterprises
bigbangenterprises.de/en/doublekillerpro
About 7% of users remove it
Total Commander (Remove or Repair)  by Ghisler Software GmbH
Total Commander is an Orthodox File Manager (OFM) for Windows that features include a built-in FTP client, tabbed interface, file compare, archive file navigation, and a versatile multi-rename tool with regular expression support.
www.ghisler.com
8% remove it
 
Powered by Should I Remove It?

The file hjsplit.exe has been seen being distributed by the following URL.

http://download678.mediafire.com/s6uoj601n3yg/.../Super_hjsplit.exe

Scan hjsplit.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.