home

rcon.exe

MD5:
3f4821cda1de6d7d10654e5537b4df6e

SHA-1:
ac682119ac4dc51d8db82fd4a6a0e1f108b74a94

SHA-256:
19f0d6d844f6f14856e3ea88853202b6310edc4726eb0c803710b67f641e596f

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/17/2024 4:54:00 PM UTC  (today)

File size:
36 KB (36,864 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\rockstar games\rcon.exe

File PE Metadata
Compilation timestamp:
6/15/2007 9:43:00 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
6.0

CTPH (ssdeep):
384:ZYblkmoSCITDXSBkCmleSWLJETJBsE9yzd9LzSjvEgKEyokl7V:Obpo8DXv34JE9W0s9LejvRKRoe7

Entry address:
0x17BD

Entry point:
55, 8B, EC, 6A, FF, 68, E0, 70, 40, 00, 68, 74, 41, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 10, 53, 56, 57, 89, 65, E8, FF, 15, 54, 70, 40, 00, 33, D2, 8A, D4, 89, 15, 24, 8A, 40, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, 20, 8A, 40, 00, C1, E1, 08, 03, CA, 89, 0D, 1C, 8A, 40, 00, C1, E8, 10, A3, 18, 8A, 40, 00, 6A, 00, E8, F3, 0C, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, 9A, 00, 00, 00, 59, 83, 65, FC, 00, E8, A0, 26, 00, 00, FF, 15, 50, 70, 40, 00, A3, 44, 9F, 40, 00, E8...
 
[+]

Entropy:
5.0465

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
24 KB (24,576 bytes)

The file rcon.exe has been discovered within the following programs.

CLEO v3.0.950  by Seemann
cleo.sannybuilder.com
About 1% of users remove it
Grand Theft Auto San Andreas MP  by RePack by -=M@N=-
www.rockstargames.com
About 3% of users remove it
Grand Theft Auto: San Andreas  by Rockstar Games
About 3% of users remove it
GTA Criminal RUSSIA  by Dark_Delphin
About 5% of users remove it
GTA Naruto  by Rockstar Games Inc.
Publisher's description - “Play as Naruto,Sasuke,Sakura and Kakashi You can use all original jutsu kage bushin,rasengan,chidori,super punch,and more! to activate the mod just type NARUTO in game.”
8% remove it
GTA SAMP  by R.G.BestGamer
About 3% of users remove it
GTA San Andreas  by Rockstar Games Inc.
Grand Theft Auto: San Andreas is an open world action-adventure video game.
1% remove it
GTA San Andreas MultiPlayer  by SAMP
advance-rp.ru
About 1% of users remove it
GTA San Andreas Shell Fixed Edition  by SAMP
www.gta-samp.ru
About 1% of users remove it
GTA Xtreme  by Rockstar Games Inc.
www.RockstarGames.com
6% remove it
 
Latest 20 of 13 programs
Powered by Should I Remove It?

The file rcon.exe has been seen being distributed by the following 2 URLs.

https://dl-mail.ymail.com/ws/download/mailboxes/@.id==VjJ-8r3gXtOfa2UrrZ9bM6_Sa4xNhXs_8qKKx4S706G3HlmTzULm-sfINTaZsRpC5vmeGl2LEeEb8L4Fd0GBJs5fOA/messages/@.id==ALxhUtQAAM3WV119xQnnKCXkMYs/content/parts/@.id==8/raw?appid=YahooMailNeo&token=zitEzqOML3j84e6ealFTT5U7-km5qEQF52lp7AcCuBbaRP6eUDchzVduXcs-fIMzujxOXHpxrq1IX5CJFF1mKQ&error=https://de-mg42.mail.yahoo.com/.../iframemsg?id=7747abd2-66a6-7cfa-198d-f8c9eb4b10e7&ymreqid=69764ce2-bc3b-2650-010c-0d001a010000

http://s10136.chomikuj.pl/File.aspx?e=jHAQ9ynkdKiOWeTp6Tt81n25vz4DN3utTE4HVNtQnt5R5QtXtBTSRyShYdfdfS4lsOJLHiEbNzkpeOHkr6VfbVOmnaidRXRQuzFnp5pl8Z1au__QJ4Y1YaZgdbxUHrJ5&pv=2

Scan rcon.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.