home

logologoquiz.exe

App Zeus Ltd

This is a setup program which is used to install the application. The file has been seen being downloaded from www.logo-quizzes.com.
Publisher:
App Zeus Ltd  (signed and verified)

MD5:
2d521fc243575cb4bb3ef83c572afea8

SHA-1:
486227ce7f06093fb2054c36683ca9f3ca3d356a

SHA-256:
29ac091e7a7961391ced3508d37f9f9171da08c027894eb66fbe9707c0ba0e55

Scanner detections:
4 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/20/2024 3:31:49 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/InstallCore.BA (variant)
10.10659

F-Prot
W32/InstallCore.N.gen
v6.4.7.1.166

Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594
23.00.65.16117

Vba32 AntiVirus
Adware.InstallCore.gen
3.12.26.3

File size:
1 MB (1,098,448 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\logologoquiz.exe

Digital Signature
Signed by:
App Zeus Ltd

Authority:
COMODO CA Limited

Valid from:
10/17/2012 7:00:00 AM

Valid to:
10/18/2013 6:59:59 AM

Subject:
CN=App Zeus Ltd, O=App Zeus Ltd, STREET=19 c Kehilat Padova street, L=Tel Aviv, S=Israel, PostalCode=69404, C=IL

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
008FD31DFE8DE288675E494B5C22DE28CC

File PE Metadata
Compilation timestamp:
6/20/1992 5:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:A0s8cMtBqW6wVV8XDRgi748B7Xg/gKXgXSFdwjGSAZKD:AqJ6wATRgiMSDbX6dwjwi

Entry address:
0xCD3B0

Entry point:
55, 8B, EC, 83, C4, F0, B8, 90, E1, 41, 00, E8, DC, E4, FF, FF, 48, 00, 8B, C0, FF, 25, 04, 12, 48, 00, 8B, C0, FF, 25, C0, 11, 48, 00, 8B, C0, FF, 25, BC, 11, 48, 00, 8B, C0, FF, 25, B8, 11, 48, 00, 8B, C0, FF, 25, B4, 11, 48, 00, 8B, C0, FF, 25, B0, 11, 48, 00, 8B, C0, FF, 25, AC, 11, 48, 00, 8B, C0, FF, 25, A8, 11, 48, 00, 8B, C0, FF, 25, A4, 11, 48, 00, 8B, C0, FF, 25, A0, 11, 48, 00, 8B, C0, FF, 25, 9C, 11, 48, 00, 8B, C0, FF, 25, 98, 11, 48, 00, 8B, C0, FF, 25, 94, 11, 48, 00, 8B, C0, FF, 25, 00, 12...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
837.5 KB (857,600 bytes)

The file logologoquiz.exe has been seen being distributed by the following URL.

http://www.logo-quizzes.com/wp-content/uploads/2012/.../LogoLogoQuiz.exe

Scan logologoquiz.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.