home

kris_ri_-_saksofon_zaycev_net.exe

VIST

The executable kris_ri_-_saksofon_zaycev_net.exe has been detected as malware by 1 anti-virus scanner.
Publisher:
VIST  (signed and verified)

MD5:
3040fe5c8a913579b10f1ddb3c74fbb2

SHA-1:
5298280c6fb418625e793a70f671b5905c8ef6fe

SHA-256:
d2b0fc38f65102a99f0969d2cc9e0a17c1d0a0d89dd036d6b0a6d9f6fdf17bd1

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
4/27/2024 2:10:36 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.2.2.7

File size:
154.4 KB (158,080 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\kris_ri_-_saksofon_zaycev_net.exe

Digital Signature
Signed by:
VIST

Authority:
COMODO CA Limited

Valid from:
1/20/2014 2:00:00 AM

Valid to:
1/21/2015 1:59:59 AM

Subject:
CN=VIST, O=VIST, STREET="Chistova, 6A", L=Moscow, S=Moscowskaya oblast, PostalCode=109390, C=RU

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
204E717AF42FC1AC4E22F179E6AF42F3

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.24

Entry address:
0x1000

Entry point:
E9, A7, A0, 01, 00, C3, 8B, C0, C3, 8D, 40, 00, FF, 25, 24, 00, 42, 00, B8, 08, 10, 40, 00, C3, 55, 8B, EC, 81, C4, 4C, FF, FF, FF, E9, E1, 01, 00, 00, 2F, 3A, 38, 2D, 2F, 3C, 37, 46, 4A, 2C, 49, 3E, 42, 41, 34, 4C, 49, 49, 37, 47, 2F, 34, 2C, 46, 31, 42, 3D, 3D, 36, 3F, 38, 3A, 49, 2E, 44, 3A, 3C, 2E, 42, 38, 34, 43, 43, 32, 46, 38, 35, 42, 3B, 40, 33, 45, 36, 39, 3E, 35, 4A, 43, 2C, 4C, 47, 2E, 41, 2F, 37, 49, 3D, 41, 4A, 48, 39, 43, 31, 2D, 30, 3E, 47, 31, 38, 32, 3F, 47, 46, 35, 44, 44, 48, 3C, 34, 37...
 
[+]

Packer / compiler:
Xtreme-Protector v1.05

Code size:
105 KB (107,520 bytes)

Remove kris_ri_-_saksofon_zaycev_net.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.