home

leveledit.exe

MD5:
b1beacaa6b67b58afea75a28e8b121ae

SHA-1:
6dee32d4f9059c1904c1f40a16712bd25fabb30a

SHA-256:
b17bfc4e1711c373d7378b4e38e092208fd19a28706364d433c8012b882a1616

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 6:05:17 PM UTC  (today)

File size:
2.2 MB (2,295,135 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\leveledit.exe

File PE Metadata
Compilation timestamp:
11/8/2015 3:03:12 PM

OS version:
4.0

OS bitness:
Win64

Subsystem:
Windows Console

Linker version:
2.24

CTPH (ssdeep):
24576:mQ9DhnbpIhbBy59clmm1zabjo/Hc+abt8JsU3Aot+Ec0xMkwd0MzorxQ/:J9DdbpIDy59c7zZc+WVd0MzorxQ/

Entry address:
0x1500

Entry point:
48, 83, EC, 28, 48, 8B, 05, 15, B8, 08, 00, C7, 00, 00, 00, 00, 00, E8, 5A, D5, 00, 00, E8, 95, FC, FF, FF, 90, 90, 48, 83, C4, 28, C3, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 55, 48, 89, E5, 48, 81, EC, C0, 00, 00, 00, E8, 10, D5, 00, 00, 48, 8D, 15, B9, 6A, 08, 00, B9, 00, 00, 00, 00, 48, 8B, 05, 85, 84, 0A, 00, FF, D0, 48, 89, 45, F8, EB, 55, 48, 8D, 15, AC, 6A, 08, 00, 48, 8B, 0D, 27, B2, 08, 00, E8, D2, D9, 06, 00, 48, 8B, 15, 2B, B2, 08, 00, 48, 89, C1, E8, B3, C0, 04, 00, 48, 8D, 15...
 
[+]

Entropy:
5.5428

Code size:
451.5 KB (462,336 bytes)

The file leveledit.exe has been seen being distributed by the following 16 URLs.

http://download2075.mediafire.com/dpbqf2ns4a3g/.../LevelEdit.exe

http://download1962.mediafire.com/0xc9hc9v3bxg/.../LevelEdit.exe

http://download1962.mediafire.com/dq4j279371tg/.../LevelEdit.exe

http://download723.mediafire.com/lgiw27t1xwyg/.../LevelEdit.exe

http://download1962.mediafire.com/wzmc5czmc0hg/.../LevelEdit.exe

http://download1392.mediafire.com/plt96o5011rg/.../LevelEdit.exe

http://download723.mediafire.com/6d35mrys06vg/.../LevelEdit.exe

http://download1962.mediafire.com/893sb9x3q4ag/.../LevelEdit.exe

http://download1962.mediafire.com/l6kx2lvbqgrg/.../LevelEdit.exe

http://download1962.mediafire.com/r6tw0otabshg/.../LevelEdit.exe

http://download2075.mediafire.com/czc59p3b25qg/.../LevelEdit.exe

http://download1392.mediafire.com/22o38gg89p8g/.../LevelEdit.exe

http://download1392.mediafire.com/orc92aomspeg/.../LevelEdit.exe

http://download1520.mediafire.com/4y837c99dlrg/.../LevelEdit.exe

http://download1520.mediafire.com/h1wtcm5fpeqg/.../LevelEdit.exe

http://download1520.mediafire.com/hxwke08wgu6g/.../LevelEdit.exe

Scan leveledit.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.