» routerkeygen-1.0.0.exe
Overview
Analysis
File Details
Downloads (23)

routerkeygen-1.0.0.exe

RouterKeygen

Rui AraÃºjo

The application routerkeygen-1.0.0.exe, “Default WPA/WEP key generator for several routers such as Thomson based routers ( this includes Thomson, SpeedTouch, Orange, Infinitum, BBox, DMax, BigPond, O2Wireless, Otenet, Cyta, TN_private and Bl” has been detected as a potentially unwanted program by 12 anti-malware scanners. This is a setup program which is used to install the application. The installer uses the OpenCandy monitzation platform which will donwload and install offers in the setup for potentially unwanted software including ad/search-supported toolbars.

File name:

Publisher:

Rui AraÃºjo

Product:

RouterKeygen

Description:

Default WPA/WEP key generator for several routers such as Thomson based routers ( this includes Thomson, SpeedTouch, Orange, Infinitum, BBox, DMax, BigPond, O2Wireless, Otenet, Cyta, TN_private and Bl

Version:

1.0.0

MD5:

8d2adaeefbc724423f2e1bf1eb5251ea

SHA-1:

00af47a075bd645ae9fe08c2fae8d303cb81a0c9

SHA-256:

0a0b97dbd5e1f2a5a7e4844cc435acc771adc9e13ba59e78f7d5f2a0cd4490d6

Scanner detections:

12 / 68

Status:

Potentially unwanted

Explanation:

Packages the OpenCandy software bundler that offers to install additional software and may include web browser add-ons and toolbars which display advertising (based on publisher settings and geo context).

Analysis date:

4/26/2024 8:52:04 PM UTC (today)

Scan engine

Detection

Engine version

avast!

Win32:Malware-gen

2014.9-140110

Bkav FE

W32.Clod67c.Trojan

1.3.0.4613

ESET NOD32

Win32/OpenCandy

8.9264

G Data

Win32.Trojan.Agent.1IHDYA

14.1.22

K7 AntiVirus

Trojan

13.175.10766

Malwarebytes

PUP.Optional.OpenCandy

v2014.01.10.03

McAfee

Artemis!8D2ADAEEFBC7

5600.7254

Norman

Suspicious_Gen4.FNAWL

11.20140110

Rising Antivirus

PE:PUF.OpenCandy!1.9DE5

23.00.65.14108

Trend Micro House Call

TROJ_SPNR.08A614

7.2.10

Trend Micro

TROJ_SPNR.08A614

10.465.10

VIPRE Antivirus

Opencandy

25216

File size:

9.4 MB (9,846,885 bytes)

Product version:

1.0.0

Rui AraÃºjo

Trademarks:

Original file name:

routerkeygen.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

File PE Metadata

Compilation timestamp:

2/19/2012 4:01:49 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.22

CTPH (ssdeep):

196608:ICSd6rjuPkXGePsXDWtEE2E9zgvn8D5c3G1Aa+mKcnxYMkuU/Rl8UtlU:wkjsMG5zWHL9zgvqIG1AuKcxFBU/71LU

Entry address:

0x4327

Entry point:

55, 89, E5, 57, 56, 53, 81, EC, AC, 01, 00, 00, FF, 15, 74, 93, 42, 00, C7, 04, 24, 01, 80, 00, 00, FF, 15, 58, 94, 42, 00, 53, C7, 04, 24, 00, 00, 00, 00, FF, 15, 98, 94, 42, 00, 56, A3, 40, 7B, 42, 00, C7, 04, 24, 08, 00, 00, 00, E8, 8D, 3B, 00, 00, A3, 9C, 7B, 42, 00, 8D, 85, 84, FE, FF, FF, 57, C7, 44, 24, 10, 00, 00, 00, 00, C7, 44, 24, 0C, 60, 01, 00, 00, 89, 44, 24, 08, C7, 44, 24, 04, 00, 00, 00, 00, C7, 04, 24, 01, B3, 40, 00, FF, 15, AC, 94, 42, 00, 83, EC, 14, C7, 44, 24, 04, 02, B3, 40, 00, C7... 
[+]

Code size:

34.5 KB (35,328 bytes)

The file routerkeygen-1.0.0.exe has been seen being distributed by the following 23 URLs.

http://dw3.uptodown.com/u2d/.../router-keygen-1-0-es-en-br-fr-de-it-win.exe

http://dw6.uptodown.com/dw/1440512492/.../router-keygen-1-0-es-en-br-fr-de-it-win.exe

http://dw.uptodown.com/dl/1444866483/.../router-keygen-1-0-es-en-br-fr-de-it-win.exe

https://s3.amazonaws.com/github-cloud/releases/.../b61fef2a-359f-11e4-9331-cd66c98a11e6.exe

http://dw.uptodown.com/dl/1444886659/.../router-keygen-1-0-es-en-br-fr-de-it-win.exe

http://146.185.26.220/.../router-keygen.exe

http://dw.uptodown.com/dl/1419693156/.../router-keygen-1-0-es-en-br-fr-de-it-win.exe

http://dw.uptodown.com/dl/1435845805/.../router-keygen-1-0-es-en-br-fr-de-it-win.exe

http://dw.uptodown.com/dl/1444670509/.../router-keygen-1-0-es-en-br-fr-de-it-win.exe

http://dw7.uptodown.com/dw/1439923437/.../router-keygen-1-0-es-en-br-fr-de-it-win.exe

http://dw.en.uptodown.com/dl/1428783436/.../router-keygen-1-0-es-en-br-fr-de-it-win.exe

http://dw7.uptodown.com/dl/1414301472/.../router-keygen-1-0-es-en-br-fr-de-it-win.exe

http://dw.uptodown.com/dl/1445026992/.../router-keygen-1-0-es-en-br-fr-de-it-win.exe

http://dw9.uptodown.com/dw/1425190562/.../router-keygen-1-0-es-en-br-fr-de-it-win.exe

http://dw.uptodown.com/dl/1432015374/.../router-keygen-1-0-es-en-br-fr-de-it-win.exe

http://dw.uptodown.com/dl/1433367781/.../router-keygen-1-0-es-en-br-fr-de-it-win.exe

http://dl3.vessoft.com/files2/.../routerkeygen-1.0.0.exe

http://dw2.uptodown.com/dw/1439378639/.../router-keygen-1-0-es-en-br-fr-de-it-win.exe

http://dw9.uptodown.com/dw/1416850572/.../router-keygen-1-0-es-en-br-fr-de-it-win.exe

https://github.com/routerkeygen/routerkeygenPC/releases/download/.../routerkeygen-1.0.0.exe

http://dw7.en.uptodown.com/dw/1418142334/.../router-keygen-1-0-es-en-br-fr-de-it-win.exe

http://dw4.en.uptodown.com/dl/1414159396/.../router-keygen-1-0-es-en-br-fr-de-it-win.exe

https://android-thomson-key-solver.googlecode.com/.../routerkeygen-1.0.0.exe

Remove routerkeygen-1.0.0.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.