home

nejdannaya lyubov.exe

LLC ITC

The application nejdannaya lyubov.exe by LLC ITC has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
LLC ITC  (signed and verified)

MD5:
5043ea1e5397fde6e682f170ca80167d

SHA-1:
4ed711d9642785e9380c5d6f07a36272f0f87694

SHA-256:
7c75bacc09d3c69bc9cd09e3eea2a56f8c1d4f5c2b39e8e9063f780654f81d81

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
5/19/2024 10:33:39 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.1.23.16

File size:
422.4 KB (432,488 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\nejdannaya lyubov.exe

Digital Signature
Signed by:
LLC ITC

Authority:
COMODO CA Limited

Valid from:
6/26/2014 3:00:00 AM

Valid to:
6/27/2015 2:59:59 AM

Subject:
CN=LLC ITC, O=LLC ITC, STREET=Vvedenskogo 11/3, L=Moscow, S=Moscow oblast, PostalCode=117342, C=RU

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00F4DBD55156EE0DAFED4BAB130328504E

File PE Metadata
Compilation timestamp:
7/18/2014 11:21:59 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
26.10

Entry address:
0x7C4F

Entry point:
F5, FC, 47, F7, D2, 23, 4C, 24, FC, C1, E6, 18, 90, 09, D3, F7, D0, 2B, 44, 24, 14, C1, DB, 14, 3B, 24, 24, 81, ED, 7D, 48, 05, 4E, F9, C1, DF, 13, C1, EA, 03, 13, 2C, 24, F7, D6, F5, 81, 7C, 24, F4, 10, 15, 2B, 4B, 87, DF, 0F, BA, FB, 0F, 1B, 44, 24, F4, F7, D7, 90, 4F, 47, F8, F9, C1, D1, 1D, 1B, 44, 24, F4, 2B, 6C, 24, FC, F5, 03, 44, 24, 14, C1, E8, 1C, 23, 7C, 24, 14, 01, CD, 31, DB, 0F, BA, FA, 13, 89, F3, F5, 43, 81, CF, 3F, C3, A4, 2A, 0F, BA, EA, 1D, 2B, 7C, 24, F8, 0F, BA, E1, 1E, 3B, 6C, 24, F8...
 
[+]

Code size:
379 KB (388,096 bytes)

Remove nejdannaya lyubov.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.