home

photo grid.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from storage.evozi.com.
MD5:
b4bee706e2689c5e6d4948930280e0ed

SHA-1:
de670a2f75f2a7652247765dde5bf806aacdb595

SHA-256:
4c5c1d854b09f3ff05241da38c944e9c578fe168a945ecf5ffc3e8e9ba7eb3d4

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 3:59:50 PM UTC  (today)

File size:
19.3 MB (20,273,186 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\photo grid.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
393216:BLdBWyf5m1MFB3v1y2pYMjHl7AL16SXqOuocgGXK:B2k5Nf1ZHl061EYK

Entry point:
50, 4B, 03, 04, 14, 00, 08, 08, 08, 00, D4, 8E, 74, 47, 16, 20, CE, 90, 61, 17, 00, 00, F4, 85, 00, 00, 13, 00, 04, 00, 41, 6E, 64, 72, 6F, 69, 64, 4D, 61, 6E, 69, 66, 65, 73, 74, 2E, 78, 6D, 6C, FE, CA, 00, 00, BD, 5C, 09, 74, 54, 55, 9A, BE, 55, 81, 10, 01, 01, 51, 71, 43, 40, D9, 11, 0A, 08, 3B, AE, 01, 42, 88, 24, 10, 93, 88, 68, AB, 98, 54, 16, 02, D9, AC, 2C, 80, FB, 82, 36, 6E, B8, 23, 2A, 2E, AD, B6, BB, 88, A2, D8, EE, AD, ED, D2, F6, 78, 9C, 9E, 1E, 9D, 46, DB, 65, DA, E9, 39, E3, A1, DD, 5B, 1D...
 
[+]

Entropy:
7.8139  (probably packed)

The file photo grid.exe has been seen being distributed by the following URL.

https://storage.evozi.com/apk/dl/15/02/.../com.roidapp.photogrid.apk?h=1pHpxOR6NFDHinPTIJWwrQ&t=1461689171

Scan photo grid.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.