home

ode.exe

Database Editor

Acid

This is a setup and installation application. The file has been seen being downloaded from dbutils.org.
Publisher:
Acid

Product:
Database Editor

Description:
Database Editor Installer

Version:
2.1.2

MD5:
8eb6950149ac61e7804e9b90c36ee260

SHA-1:
f3db0d4ea50c17c915f145966d0a8281e41608f7

SHA-256:
1fd04271f4253da0a4c05450d4aea0b0f88be2505c3aaffb385481c4f96c5eec

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/25/2024 10:03:36 PM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Injector.AKVU (variant)
8.9341

K7 AntiVirus
Trojan
13.175.10963

File size:
7.4 MB (7,782,527 bytes)

Product version:
2.1.2

Copyright:
Copyright (C) Database Editor

Original file name:
ode2.0.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\ode.exe

File PE Metadata
Compilation timestamp:
2/5/2013 12:41:15 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
196608:xiM2tzqocO82DuE/VJ4f4p2JGObPdQgv4ipnyiD4Izi5WTvBR:xg5+xEdc40hztpnyiDTaC

Entry address:
0xB01B9

Entry point:
E8, A8, C9, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 51, 53, 56, 8B, F0, 33, DB, 3B, F3, 75, 1E, E8, 00, 48, 00, 00, 6A, 16, 5E, 53, 53, 53, 53, 53, 89, 30, E8, CB, EB, FF, FF, 83, C4, 14, 8B, C6, E9, C2, 00, 00, 00, 57, 39, 5D, 0C, 77, 1E, E8, DC, 47, 00, 00, 6A, 16, 5E, 53, 53, 53, 53, 53, 89, 30, E8, A7, EB, FF, FF, 83, C4, 14, 8B, C6, E9, 9D, 00, 00, 00, 33, C0, 39, 5D, 14, 66, 89, 06, 0F, 95, C0, 40, 39, 45, 0C, 77, 09, E8, AD, 47, 00, 00, 6A, 22, EB, CF, 8B, 45, 10, 83, C0, FE, 83, F8, 22, 77...
 
[+]

Code size:
910.5 KB (932,352 bytes)

The file ode.exe has been seen being distributed by the following URL.

http://dbutils.org/ode.exe

Scan ode.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.