» minecraft skin stealer.exe
Overview
Analysis
File Details
Downloads (1)

minecraft skin stealer.exe

Minecraft Skin Stealer V.1

The executable minecraft skin stealer.exe has been detected as malware by 21 anti-virus scanners. The file has been seen being downloaded from download965.mediafire.com.

File name:

Product:

Minecraft Skin Stealer V.1

Version:

1.0.0.0

MD5:

403beeb01ac9fd19f4f08d3500752cc2

SHA-1:

7aedce3152cc1ffd6ef02f4c3236c24233e95a2d

SHA-256:

a2f4a58ebb7ec5e86b606df41b3f98a165530926ac4436c86c7984376deb26c0

Scanner detections:

21 / 68

Status:

Malware

Analysis date:

4/19/2024 7:28:44 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.GenericKD.1413777

934

Avira AntiVirus

TR/Rogue.1413777

7.11.154.68

AVG

Generic35

2015.0.3412

Baidu Antivirus

Trojan.Win32.Llac

4.0.3.14716

Bitdefender

Trojan.GenericKD.1413777

1.0.20.985

Bkav FE

W32.Clod118.Trojan

1.3.0.4959

Comodo Security

UnclassifiedMalware

18507

Emsisoft Anti-Malware

Trojan.GenericKD.1413777

8.14.07.16.01

F-Secure

Trojan.GenericKD.1413777

11.2014-16-07_4

G Data

Trojan.GenericKD.1413777

14.7.24

IKARUS anti.virus

Trojan.Rogue

t3scan.1.6.1.0

K7 AntiVirus

Riskware

13.1712358

McAfee

Artemis!403BEEB01AC9

5600.7068

MicroWorld eScan

Trojan.GenericKD.1413777

15.0.0.591

Norman

Troj_Generic.SRTPH

11.20140716

nProtect

Trojan.GenericKD.1413777

14.06.10.01

Panda Antivirus

Generic Malware

14.07.16.01

Qihoo 360 Security

Win32/Trojan.9f4

1.0.0.1015

Trend Micro House Call

HKTL_AGENT

7.2.197

Trend Micro

HKTL_AGENT

10.465.16

VIPRE Antivirus

Trojan.Win32.Generic

30174

File size:

166.5 KB (170,496 bytes)

Product version:

1.0.0.0

Original file name:

Minecraft Skin Stealer V.1.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\minecraft skin stealer.exe

File PE Metadata

Compilation timestamp:

8/16/2012 6:11:10 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

3072:OHGC+f9DaUmCX+BvVTW8Lg29ieLAlF1n9AuAjclUKC:OHGT1NXINTW8LgAFAl7n9u

Entry address:

0x2A57E

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

7.3930

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

161.5 KB (165,376 bytes)

The file minecraft skin stealer.exe has been seen being distributed by the following URL.

http://download965.mediafire.com/jc5arwvjz3yg/.../Minecraft Skin Stealer.exe

Remove minecraft skin stealer.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.