home

messengerreviver-2-4-0.exe

Messenger Reviver 2

Jonathan Kay

This is a setup program which is used to install the application. The file has been seen being downloaded from dw.uptodown.com and multiple other hosts.
Publisher:
Jonathan Kay

Product:
Messenger Reviver 2

Version:
2.4.0.0

MD5:
b726f2bc364be9cfa0e6be27070d7a25

SHA-1:
39ec9fd25106957fd35c1e75d51130720628e790

SHA-256:
e8c7c5ab7c09afd7fe2be0a227018809a174ee5d3ba061069d13cb39435a319b

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/19/2024 1:57:59 AM UTC  (today)

Scan engine
Detection
Engine version

nProtect
Trojan/W32.Agent.417280.T
14.12.29.01

Trend Micro House Call
Suspicious_GEN.F47V1225
7.2.365

File size:
407.5 KB (417,280 bytes)

Product version:
2.4.0.0

Copyright:
Copyright ©2014 Jonathan Kay

Original file name:
MessengerReviver.exe

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
4/14/2008 2:32:45 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
12288:VJ9Nr7IKkPKlgsK3hpE0y+LSb8kwtP2paaywu:VFHllgs2p56j3u

Entry address:
0x645C

Entry point:
E8, 0A, 00, 00, 00, E9, 7A, FF, FF, FF, CC, CC, CC, CC, CC, 8B, FF, 55, 8B, EC, 83, EC, 10, A1, D0, B2, 00, 01, 85, C0, 74, 07, 3D, 40, BB, 00, 00, 75, 4D, 56, 8D, 45, F8, 50, FF, 15, 70, 11, 00, 01, 8B, 75, FC, 33, 75, F8, FF, 15, 6C, 11, 00, 01, 33, F0, FF, 15, 68, 11, 00, 01, 33, F0, FF, 15, 64, 11, 00, 01, 33, F0, 8D, 45, F0, 50, FF, 15, 60, 11, 00, 01, 8B, 45, F4, 33, 45, F0, 33, C6, 25, FF, FF, 00, 00, 5E, 75, 05, B8, 40, BB, 00, 00, A3, D0, B2, 00, 01, F7, D0, A3, CC, B2, 00, 01, C9, C3, CC, CC, CC...
 
[+]

Entropy:
7.7797

Developed / compiled with:
Microsoft CAB SFX

Code size:
38.5 KB (39,424 bytes)

The file messengerreviver-2-4-0.exe has been seen being distributed by the following 13 URLs.

https://dw.uptodown.com/dwn/3WZN8DsaeQKXwGCoKoiEAzFpaxw7sqGtGl8a8OPicb4HtTWyzrzs9_bYjYw9Hv8SZW_Py6x07mB6p7EX0nd1pqbErihr3Mpv3YyyKI16bwE55E1q_bLQ5FB5lQA35nLr/9Oo5RehPfe9-HFUNahXAnOdIlGZXpEPdPZMfVNdnl3Rk1e_QJnjptxUVLCKVHGgzHQQ1LEJOLIPpQieyJcj5Qs5JfOX2VmKm4nHojI_A8D6ZlruPDLp0rRFXaUYmY-dd/j66URk18DQGcuL5hLE_DD-WZCQmHXjaBreO1Mtgc1aaH3xbqfNMBpsKraDqUPQ1N1uaonRIvovDfchbLLJOUwYa87Fbctf8j3w2ojS-5kwduk-S__qpNjJhmFJ473EAB/.../

http://dw.uptodown.com/dwn/XeS87_ZoemEmYZ4bn4kk8Ymt34rdv76orTmIZMqsu-tNlMfnYgyOomSY1oh0UqBVHSb171DD7A1EbDEwjSWqBcSIeGNpKENdElbtZuEo2-luey7i77fwZKx8UBfZ8Ke6/oDU16iawgkJCbRLlYOqwlJwDAm0mcOLBTlS7Y5FBDkRnl-HTiBBSCwl48qpf3g-HP1R3yab-QdnzhLM-T70lU2NrpejyWG1rKDz8GUvtmycj-BNCWUwEvBFWDDpLthWB/eqoDZiGh4j9KqwlESGg4gSZ4DY4nsgbaPpDoVAyDEvK9UQGSVXz7nJdm3kLJUxdeXp-lHDgDN8oOdVtkmhwaG53C43Ae6zbXuEbg7DAyWHxgOP0ub2efU7Gksrlo77vb/.../

http://dw.uptodown.com/dwn/4b9ZPG5TvmQ3C9e7S3gm6rdFQ_hKNXj13Q-9uLODLiPJTpURjLgOzyGjxqk8DJcBkE1k5oG7AR14YfyCOCO7BSwLx3HXD6l2mXLZ2zKy6IAeSmH8qiDrLdMloLnH0K5F/.../

http://cdn.portalprogramas-download.com/d/.../messenger-reviver

https://dw.uptodown.com/dwn/rCtiyUrBHG8vqtERrL9Brq5RYI3vu8fNQSjrQdAJy1JpDdVuzsWwHpAB4PQ4AZ5rAZxKmMOK0mHCVqfRyOOKXbssIFk8o0UtcII-Kax8u0_AcOSe8Od8cSBvKCGhZHc0/EWpI5XWCEhopcnMzZvgKVX3jkonsIemOj4qgVv_IoK7uAGkz9tT4BRys5V_Nve86aZcbddjf3xje0AZ-SjtAP6bF66JbIKlkkdcAlkU-ql41tyneXgXPxWH6y3YqWzZq/iWV_aKF1Y_aCXzDUqo6OT-ooN8Hsqm3wadTPjTZffYGxu512JOYEjTQhIOjR9htRj5Yz0wCxW9ZrBcKTwFWVntMfxJtQZdqw_cxWTFdriLYXzHtobUIn3hEKPm12M8OL/.../

http://dw.uptodown.com/dwn/xp16kamMhGzuVaCtV4XrZB8Tq2fdYgeZa0YTEjVA64wseSFUeEZAKez2CRi7_8Jc--daJRz5Cn8TqUNwvCKNlee4E3lRwLKp3UQBRVBKdcdrq6iIXJ6Uy782Ql8yNAjG/cfdUWuS6TKIBgzSqzA73fmOv1RWARQWP4ed6VqDU5BWh8J1V9Al38VIceXa4paoH7e3KhPJ9HKWoEKNAUYbOhLZTqEOaNRVLYx4mlH-WAfEOS_tfwXt-vuoqoXQu1-oR/oWhwiNZdMyxl5LsR6KUemVS8ppoS7i50GFn-zJbDhOmu6TrUDVHrPZV6C-x7HGBWQAJo8AzEfucZxknGfAy3eyZns-RIvHKHzoPpramw5M4V5Fi0zTYOTD-9WUp1xIb7/.../

https://dw.uptodown.com/dwn/utZ6_YoGrYZovTbj9RE1LOtJ-k8fkspYq24ZUWWFC8Z9-OL0UzxITl4fNkApb3NV9umDve-MY-b-yMR3rcoqXoeIoJkgFgs4avUHEsk75Y_dGYqDLVOR-65e2Olxo2fu/FyZgftAsPr09RdscIExj-Coo57nsx9x_ZgSqzGWmIhIkZYPst6OGVoWecGHRAy40Adre62jKpOKWSY4CtT0h4GY7fuhaUxonHq452y6skGAd_q8Zj47K-E5w7tkV2pON/TFWzUtolphxsfyt4sClrLtwKOYNWyMkFnbnEYreyTDtwy9Tkaach0CM8wfA-yBdDTaYrGTd3LOntln_xxWaZkt4dR3ss0Oi9K2wh1DG5SuT-rFE1gBQbExChcReW8Iey/.../

http://dw.uptodown.com/dwn/ycTlHO5h9isDz_OsBCPAExmYbjktahXWjkuZ2-if696D37iRNlHlBVI7kkOIIbBSYVuJQ7M-xBtnFkVeouAlXefPxgq_fUth-Ajd40bJ-unFqzbkPMPNRKtfKqPT0mAc/P-LuysXziQ-ojyCNV42wDazB2gsP68FyjiAaznLYfXBDCI81ucNZH8LHoCR28AZkIXjnzSSHLll3WSCDh93WJOCgBbghW_rZOm8EBvU0OCc-4p-WywcK2qSggwfI8wBb/YdgJR_Z3uPeCSgidW4jB8rs6X5Brt9MgsJE7L_LN2ocbID-wSu50X6fab6foHvKxAEefJ92TzzJl-JmayRFN2xnLGqGNbNQ-cHu29RriT0h8lXe07uFiATDkpPr0lAHB/.../

http://dw.uptodown.com/dwn/Rp3rmSXiGY7m3UqJGuWTQdpxTBLxBBEmNk3znklC_GPzrw_OX-4zGMZW8f0C-AltOllpoAWgo1qdZRvMSt-9_Nsyk8Dq0jo3rKJmmrvroJ8PCbG4nrYt6wdDxN1QhhWP/MPoWxxbqT0hgA4nSFR8V_y-f6tvl_FWVeawS5YfvenBBzz1FDiTpWHuwvLavdF87AzSPfVT5-xobZg0xJ_NUknd-jjmlMt59Z86L9fYpVlORITErarDHYXO3Vzl__ocN/O3HdCF4qUWzJQ_UPIrmxccPGWSlJoiVrNSsbLB8vfDIHtbJZLWeS_OR2DCIBddbeedszE0ThU5tI0T925Paz86Q20cZwDAB18i1iwpwvExm9sF8lxj_9Yf09_50Zs_GE/.../

http://mutaz.net/.../download.php?id=201

http://dw.uptodown.com/dwn/UT3aLD-GlvN8-rrbJfXTPRVbdbyf2WsxZ5k8QggyqOq617k8iVkOdf5j0lfp1VuAfRuiWSpC8MJ6PWWGyWYmou6ZPhgHuAU-NozPG6Q7upCj0kGPX18DG7GPpkGf7wDt/tQ7EcmQnehAnLF94uGRmoHV9HUQCXZHM6c_6W7qrfEViQ6oDcqKcsAGXH9JjL9n9V9PXW7K84XznJ8tLSRrOWozJMq-6ESR4STQBW4--AEGMmsyHTe8WorwAEHkh9Ul1/SmlQ6nCcd1NEDS0FhrfAkYqDvIM8RVvhSL397SLSjWMHYWyL4Itt1j8uh-PSaIK0L0a7oNE-fYWUTC0HjKngEaz5OOx0SGm_soouDqFUihegfi4iX_QsqkfDOWypSC6u/.../

http://download.messengergeek.com/MessengerReviver-2-4-0.exe

http://messenger.jonathankay.com/.../messengerreviver2dl.asp

Scan messengerreviver-2-4-0.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.