home

pro+evolution+soccer+2016_10924_i85759093_il345.exe

Free MP3 Cutter Joiner

KASHTAN OOO

The executable pro+evolution+soccer+2016_10924_i85759093_il345.exe, “Free MP3 Cutter Joiner Setup ” has been detected as malware by 1 anti-virus scanner. This is a setup and installation application and has been known to bundle potentially unwanted software.
Publisher:
DVDVideoMedia, Inc.   (signed by KASHTAN OOO)

Product:
Free MP3 Cutter Joiner

Description:
Free MP3 Cutter Joiner Setup

MD5:
2475b7abc8328f50334eeb72c5468940

SHA-1:
2a70dbac290990b9a658202a6164b45d339fef38

SHA-256:
c52cefc8575d75054ad948b24d81c8b2f7d654b5ee099fa8a5ad0def81972783

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
5/15/2024 7:57:00 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.2.17.23

File size:
3.4 MB (3,514,768 bytes)

Product version:
10.7

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\programs\pro+evolution+soccer+2016_10924_i85759093_il345.exe

Digital Signature
Signed by:
KASHTAN OOO

Authority:
Thawte, Inc.

Valid from:
7/5/2015 2:00:00 AM

Valid to:
5/22/2016 1:59:59 AM

Subject:
CN=KASHTAN OOO, O=KASHTAN OOO, L=Naberezhnye Chelny, S=Tatarstan republic, C=RU

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
468BE39F7FCABE2D4D2D070862DD916B

File PE Metadata
Compilation timestamp:
11/17/2015 12:52:48 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

Entry address:
0x338B7E

Entry point:
68, 7F, 1D, 14, D4, E8, AA, 4E, FF, FF, 40, F8, 66, 3B, C7, 89, 45, 08, 0F, BC, C7, 0F, C8, 8B, C2, 66, 85, FA, C1, E8, 0B, F9, 0F, AF, C1, 3B, F0, E9, 90, AE, FF, FF, CB, 2F, 93, B4, 62, D3, 68, 93, B4, 8E, 5F, CF, 6C, 4B, 0A, CF, 8B, 6C, 4B, 12, 33, C2, 6C, 4B, 82, C1, 98, 93, B4, 90, 38, 04, 93, B4, 95, 8B, FD, 6C, 4B, 2D, 99, 99, 93, B4, C0, 07, 1B, 93, B4, 4A, 69, 57, 93, B4, 20, C9, 44, 93, B4, F2, E9, B4, 1E, 2B, FD, 1E, 4B, 82, DF, 00, E1, B4, 76, A1, 15, E1, B4, E0, 7E, 9F, E1, B4, C3, 92, 9C, E1...
 
[+]

Entropy:
7.6303

Code size:
2.9 MB (3,069,952 bytes)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.