home

magictomaster.exe

Patcher4

The executable magictomaster.exe has been detected as malware by 10 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from www.magictomaster.hu.
Product:
Patcher4

Version:
1.0.0.0

MD5:
e3138669a758f9aab9df3ee6d2379063

SHA-1:
e46a5726a58585f95315249550dad06a2b1d83c0

Scanner detections:
10 / 68

Status:
Malware

Analysis date:
4/29/2024 2:16:51 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.GenericKD.1594607
658

Bitdefender
Trojan.GenericKD.1594607
1.0.20.540

Emsisoft Anti-Malware
Trojan.GenericKD.1594607
8.15.04.18.08

F-Secure
Trojan.GenericKD.1594607
11.2015-18-04_7

G Data
Trojan.GenericKD.1594607
15.4.24

IKARUS anti.virus
Trojan.SuspectCRC
t3scan.2.2.29

K7 AntiVirus
Riskware
13.176.11422

MicroWorld eScan
Trojan.GenericKD.1594607
16.0.0.324

nProtect
Trojan.GenericKD.1594607
14.03.13.01

Trend Micro House Call
TROJ_GEN.F47V0311
7.2.108

File size:
1.3 MB (1,349,632 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2013

Original file name:
M2MPatcher.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\documents and settings\éva\dokumentumok\downloads\magictomaster.exe

File PE Metadata
Compilation timestamp:
3/4/2014 9:58:21 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
12288:huXQ6qqCv4zQF814nF3iFNFGFOFwcGF6cmFWc0FWc8cIcKcUFJFpcNcHc7cbchF4:kzh0lCF51kwnbgrB3Lst7mlY9

Entry address:
0x1428BA

Entry point:
FF, 25, C8, 28, 54, 00, 00, 00, 00, 00, 00, 00, 00, 00, 9C, 28, 14, 00, 00, 00, 00, 00, 00, 00, 00, 00, 6D, 3E, 16, 53, 00, 00, 00, 00, 02, 00, 00, 00, 65, 00, 00, 00, EC, 28, 14, 00, EC, 0A, 14, 00, 52, 53, 44, 53, C5, 50, 78, 17, D2, DE, FB, 4B, A2, 6E, 14, 7B, 79, C7, 60, 76, 01, 00, 00, 00, 43, 3A, 5C, 77, 6F, 72, 6B, 5C, 70, 61, 74, 63, 68, 65, 72, 73, 5C, 70, 61, 74, 63, 68, 65, 72, 33, 5C, 50, 61, 74, 63, 68, 65, 72, 34, 5C, 50, 61, 74, 63, 68, 65, 72, 34, 5C, 62, 69, 6E, 5C, 78, 38, 36, 5C, 44, 65...
 
[+]

Code size:
1.3 MB (1,313,280 bytes)

The file magictomaster.exe has been seen being distributed by the following URL.

http://www.magictomaster.hu/installers/.../MagicToMaster.exe

Remove magictomaster.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.