» rvl-hacker-1.0.exe
Overview
Analysis
File Details
Downloads (36)

rvl-hacker-1.0.exe

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from hacker-simulator.softonic.com.br and multiple other hosts.

File name:

rvl-hacker-1.0.exe

MD5:

bc1b659a1019602a5cf668a66bfe18f1

SHA-1:

c7e4c24543620616930801032604427efc22015c

SHA-256:

e216a2e3a69c8b620e3a0911b68f966356ff92fd8b4c671acb834ba7c3853be9

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/30/2024 8:30:42 AM UTC (today)

File size:

33.8 MB (35,450,249 bytes)

File type:

Executable application (Win32 EXE)

Installer:

NSIS (Nullsoft Scriptable Install System)

File PE Metadata

Compilation timestamp:

2/9/2007 2:50:20 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

7.10

CTPH (ssdeep):

786432:PxTI4MVhiXiQvwkJgQFT6r+YCWU7fGiYd6vb41/efOds+q:PxU4MVaiw0/r+YzU7Ond6E1/wwu

Entry address:

0x3236

Entry point:

81, EC, 7C, 01, 00, 00, 53, 55, 56, 33, F6, 57, 89, 74, 24, 18, BD, A0, 74, 40, 00, C6, 44, 24, 10, 20, FF, 15, 30, 70, 40, 00, 56, FF, 15, 70, 72, 40, 00, 56, 68, 60, 01, 00, 00, A3, 50, F1, 42, 00, 8D, 44, 24, 34, 50, 56, 68, 9F, 74, 40, 00, FF, 15, 58, 71, 40, 00, 68, 94, 74, 40, 00, 68, A0, E8, 42, 00, E8, 6C, 23, 00, 00, BB, 00, 64, 43, 00, 53, 68, 00, 04, 00, 00, FF, 15, B4, 70, 40, 00, E8, 3F, FF, FF, FF, 85, C0, 75, 24, 68, FB, 03, 00, 00, 53, FF, 15, B0, 70, 40, 00, 68, 8C, 74, 40, 00, 53, E8, 57... 
[+]

Entropy:

7.9994

Packer / compiler:

Nullsoft install system v2.x

Code size:

23.5 KB (24,064 bytes)

The file rvl-hacker-1.0.exe has been seen being distributed by the following 36 URLs.

https://hacker-simulator.softonic.com.br/.../6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAPemSpzydROONygDLMhXLMTlkesa85E2lr2EB4Yvr7k9RZxAcXqVVKaKCfc0qfOwOOXCLqbYU4fEiIOHN6ztLf9Qn58wFTYORtaYxW0Y7wGLbuDxO4R4L5D2P2iN6uSt6U=

https://hacker-simulator.it.softonic.com/.../6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAPemSpzydROONygDLMhXLMTlkesa85E2lr2EB4Yvr7k9RZxAcXqVVKaKCfc0qfOwOOXCLqbYU4fEiIOHN6ztLf9Qn58wFTYORtaYxW0Y7wGLbuDxO4R4L5D2P2iN6uSt6U=

http://gsf-cf.softonic.com/c7e/4c2/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3353200&instance=softonic_en&type=PROGRAM&Expires=1433522033&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=Bt8ZB7e0G9awe1SAsnEhYxCywS3CqJL2NknLJNqoIIuKXJpRFGebs8h4sqm~FKzO6x9wpKKg0vUccRggW2I7E3kHXgMeZS-roBDDT8~Kw5pvVjDjPxPJkW0Hu70BrlE4Oryqd3~6Os3IKzO1UmFVv68X0v7R3w2NUnn5AhFgJ9M_&filename=RVLHacker-Demo-Setup.exe

http://gsf-cf.softonic.com/c7e/4c2/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3353200&instance=softonic_en&type=PROGRAM&Expires=1476007246&Signature=XXI00GzBxQxpMpFS~BExY6-6tCzpLY8ZHpsqDkB2ZSn52bSz~uq39LDyYJdyeqozg4zmtuz~3~Bbl1Q044lk5hX9RQ1nV7e453w1OTcI~qVjyJU47ZoukCxTmkDT~pb13-9dBmf26LJvV6EiTw0x2J08434sPgZEYbuezwyUXqI_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=RVLHacker-Demo-Setup.exe

https://hacker-simulator.en.softonic.com/.../6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAPemSpzydROONygDLMhXLMTlkesa85E2lr2EB4Yvr7k9RZxAcXqVVKaKCfc0qfOwOOXCLqbYU4fEiIOHN6ztLf9Qn58wFTYORtaYxW0Y7wGLbuDxO4R4L5D2P2iN6uSt6U=

http://gsf-cf.softonic.com/c7e/4c2/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3353200&instance=softonic_br&type=PROGRAM&Expires=1451963187&Signature=cUqhvhtsiIQCkLsWrMPwU7NxHDe3QZqLqad1lrkPZuim5tblvWAeyIn5IlHvR2OVYQAZuNBNklKJpbr2Xo3p3LAiqCFaVk1yMWlWTPkUx8DUX3W2HdB7fuc4v-NelROWFESCi6U1cpAMVDEAMFYJiwQQykkhhEejJ13XDrMDJdQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=RVLHacker-Demo-Setup.exe

http://gsf-cf.softonic.com/c7e/4c2/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3353200&instance=softonic_br&type=PROGRAM&Expires=1475974173&Signature=ZMXP945390dFOmHQp5JtUs9PJ4rlw-Lvy2nyFA-YPKpPJT8f7nngJXQ~hafSNIk32NpBIon-A0bOLCnaxFMXFSY8tD4ORy4H-XY4lzsuMIHcMKhSVPh22-vZa-nN0BQBWXLxMBQf4Nvs9oFnbzfSBwG~hnaq8siNekYH-wfqXM0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=RVLHacker-Demo-Setup.exe

http://gsf-cf.softonic.com/c7e/4c2/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3353200&instance=softonic_br&type=PROGRAM&Expires=1474524260&Signature=Qzp~8~ivZiEM503QtI~QNlXqWhtE4xTYEKjWr~5cKTuymojHU9xIRxDYTMK1WcOxHhScGvl~YzTbb~UAHQuDkYvjyNDj0ECdA3M0s4naSkvskFHWULckfaOV20hXo5WRT9UlI3f9EexNyocqW~tBdTNHSN0lWuyBELMAfAhgCh8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=RVLHacker-Demo-Setup.exe

http://gsf-cf.softonic.com/c7e/4c2/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3353200&instance=softonic_en&type=PROGRAM&Expires=1478145719&Signature=I9yKgAEkXkD6TreiM4HaCOykVbaIkKXlz~tmwc2FeIhGRyRG0WhlElCcTiKrPNTgMw8qPt99R8txAPtAopo41~vAL625Dt42bu0pXAnQhpN8IfWWVojRzr3o06~Z2IszHVZ0ru8zENsVgIo4GbbnAbp~ZDpOigla3q-jHqCTkDI_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=RVLHacker-Demo-Setup.exe

http://gsf-cf.softonic.com/c7e/4c2/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3353200&instance=softonic_en&type=PROGRAM&Expires=1470603778&Signature=Fp9BGo4cVQVYsnVPhWMuHchnaMrg18WmLJG1AHSMcqpJR8n7M56Xz0zP2AmdAAt0H0UZ82qO7j5ilgZcz4OGorleOLgPy7CWFTaArticEPLIhTBkdqtkmp30MMUCGSIboGtbgbQYKrO9~eTwqaqKyzUfjbeSAEPF6HWvS5XnPJw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=RVLHacker-Demo-Setup.exe

http://rvl-hacker.software.informer.com/.../

http://www.presentsendbundles.com/8VZk8trFUiHOsk78vvbVmcbv2vC s300zOrHC_9ai_cIyqRGXgrTbt3FJrVct59flFiwlQEqZTgT6_eQYelTJWXsT1iq4Pyhk0MrIRKDAQ1meXz7NxEO2ii2TaKMIA4 u_z5eZw6QODZvB6S27ItfFQV0tDJMSLOqU7TZIOqx1SslfyTNqKTu72gX7lKkQ5XZkNgn1iwJiiyc g2LQmKzECi8fndQwky63rD1C_iOBEsrqLhpSUHtxKxHCPGtb2wyMkex7FqayPqUdPGw5SnuVBvw5B4_eWuTkAJCnP3OCbzUpPD3_vvWUlWagYAneAhfZrPedITKh9Qw0T9lmQhrX2G UO3rD1WpPc2WvPq OR5TWFxfwlfEcWJZGAbClWryMSHBYJxWbXv05BZ_CBH1559Jwd8FTSf91i963v1xxnoo4 Fx8NcVzckpAAr8tShjQds4HLM5CUuwZRzbtAx4Q5Fj93a5yCozAa9SMv5kDe d37CSE uj22pT4AvbOfP7A0eGVAHX8GvJ ye62tDByqQX5Gefg==-G1cAAGRwXmtvAEKB8uYTsAEHLhEFGqBNeGfbp5Lf954E ErDum54Njq0tcwBmsgpzgKswb2dEvlJfN3hTlhTYrPFV393k1nQ2TrzTyChajiqbiuKqwA=-e

http://gsf-cf.softonic.com/c7e/4c2/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3353200&instance=softonic_en&type=PROGRAM&Expires=1448516086&Signature=LVmeDcoUZ49qEyVZL9C4WGkMnNHa6tOvzHccDud6-roMVO8xaQ9Ca8fcn77U32y3e3xHrz-yw0Tnfh5QSTZU9aF9BTM-czPT9zf4FuKdzoHOCu0ecExvrEe5ZVFdS1oiSdLDTaKnktFFJAaj961eU1jbawk8UsMS-mr503AeIPc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=RVLHacker-Demo-Setup.exe

http://gsf-cf.softonic.com/c7e/4c2/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3353200&instance=softonic_en&type=PROGRAM&Expires=1478064645&Signature=ZTG0rzCdyLKe0pelxZgZLMl2YDnBjUTXRzdB2rlsljcd-K3HM6qmSxHGquFLZExtHhMYiJKz4C82ffjj6eonABQPcT04AnuNEG3eZhluBE5UVj9k7br~2SYbaEnELAshfcyQHHYTOp9CFECE5VhKFBdVFZ2b54fTo1tkT0wVC5g_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=RVLHacker-Demo-Setup.exe

http://gsf-cf.softonic.com/c7e/4c2/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3353200&instance=softonic_de&type=PROGRAM&Expires=1474436083&Signature=hCMPAWrSTbZXJ0Vh2~Gdu9LZslyrojGxSb1objvHye1WysbHcbM0F4KuEwDzxIxNXkpIJQAIc4SRe4vgZFWWOzqtolryb0PVZ9KOgo9TBGoZc6-q~bgxGWgjQZpb5~s-bCFcjMP3rKmtozn9ReVIjxHDLLHAtCzWYaGiZzfC4ms_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=RVLHacker-Demo-Setup.exe

http://hacker-simulator.softonic.com.br/.../6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAPemSpzydROONygDLMhXLMTlkesa85E2lr2EB4Yvr7k9RZxAcXqVVKaKCfc0qfOwOOXCLqbYU4fEiIOHN6ztLf9Qn58wFTYORtaYxW0Y7wGLbuDxO4R4L5D2P2iN6uSt6U=

http://hacker-simulator.fr.softonic.com/.../6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAPemSpzydROONygDLMhXLMTlkesa85E2lr2EB4Yvr7k9RZxAcXqVVKaKCfc0qfOwOOXCLqbYU4fEiIOHN6ztLf9Qn58wFTYORtaYxW0Y7wGLbuDxO4R4L5D2P2iN6uSt6U=

http://gsf-cf.softonic.com/c7e/4c2/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3353200&instance=softonic_en&type=PROGRAM&Expires=1467712542&Signature=Gnzxfsr3R2IkYhFpIieOPZEgvl5uNUH~Jw1io3pz-b28y1GUE3H-pP-b9MjcMIZPDqGvMYlqtdfkjYYn5Vo8987P2QnMNY6CfwicEEWKXHMiCjb~ULZJOJei2X-qq8K~9z1FgPFpfZHK8xuZ3tbeeN0l11DpKl3KgEGBWBfuOFM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=RVLHacker-Demo-Setup.exe

http://gsf-cf.softonic.com/c7e/4c2/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3353200&instance=softonic_es&type=PROGRAM&Expires=1466317216&Signature=PTvuf~JEm74Pf01ggOSIa4V~pHCTzxvoEqyDxAN6486GLcWO-Xcn0Y1gugSO3-YLVBW8DH2XP89r~vUbd4pyJcjB2jVvWlDm4lrjMp8RNRTqCMG4-5n3vqUxE-2KpVsGDMzHJfiZ5nj5zovrdyNPbI6kHITA8mdgrNWeqorCq-Y_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=RVLHacker-Demo-Setup.exe

http://hacker-simulator.softonic.pl/.../6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAPemSpzydROONygDLMhXLMTlkesa85E2lr2EB4Yvr7k9RZxAcXqVVKaKCfc0qfOwOOXCLqbYU4fEiIOHN6ztLf9Qn58wFTYORtaYxW0Y7wGLbuDxO4R4L5D2P2iN6uSt6U=

http://hacker-simulator.en.softonic.com/.../6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAPemSpzydROONygDLMhXLMTlkesa85E2lr2EB4Yvr7k9RZxAcXqVVKaKCfc0qfOwOOXCLqbYU4fEiIOHN6ztLf9Qn58wFTYORtaYxW0Y7wGLbuDxO4R4L5D2P2iN6uSt6U=

http://gsf-cf.softonic.com/c7e/4c2/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3353200&instance=softonic_en&type=PROGRAM&Expires=1437762662&Signature=Ge6RfC2N1YLxbKxsC4oRIUJTCqic6NnPHLY8nbbd6RIm3JC4SANv9bpHN07DgDo0sPVM2VW3~R8W7p5tvpCZ2ea5tAJSR12tntkTfc~7qRPcIjuVGYb7BdL7qxGPj0nG3K0q4pveQeLgAGr3KxJTh~H7q-DOWPecroaU7DD-3WQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=RVLHacker-Demo-Setup.exe

http://gsf-cf.softonic.com/c7e/4c2/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3353200&instance=softonic_en&type=PROGRAM&Expires=1459077892&Signature=ILkoTJenADhTN6c12clDRx~BsSBGclcZcFxdEyoFanr5FIrElJ077t4Gi~aZ7B7BUaIxANz~2iux1YDNEOcDQ7emu~2eSN9SpxQX8Yjeo5CD9zKKl~O9DnrMywTqnjrjg1MniWc6CeqWaDkXvl1AKqgUQNc9qzU4UFOPoxeClHk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=RVLHacker-Demo-Setup.exe

http://hacker-simulator.de.softonic.com/.../6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAPemSpzydROONygDLMhXLMTlkesa85E2lr2EB4Yvr7k9RZxAcXqVVKaKCfc0qfOwOOXCLqbYU4fEiIOHN6ztLf9Qn58wFTYORtaYxW0Y7wGLbuDxO4R4L5D2P2iN6uSt6U=

http://gsf-cf.softonic.com/c7e/4c2/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3353200&instance=softonic_br&type=PROGRAM&Expires=1459935162&Signature=RbQo1GmR92teTye~EUJgDiQx-ByOZm~lKt6ZQaYcy4O4MxY9wTxoUK1RqC4L47mWTW8FrYSmlQAyGTVwLuSdB1prQBSRXk4dxufUi-WVS89E1xvY9mgyG1LeniNc1AkaFZo5lDc2yzWalqBLkrVSrSfH9h-oMK~NNLKrhw~PDFQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=RVLHacker-Demo-Setup.exe

http://gsf-cf.softonic.com/c7e/4c2/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3353200&instance=softonic_en&type=PROGRAM&Expires=1459069242&Signature=M045tKbFwhkKppmd4PfRLFjS1ZLgGWLe0fbsXnN90cRaM52-nj8JzGkn848AzS23woXQa0xqXPW5kuPFeZy6whaKoETvb0TdLZ98hRm-x6vrgFjKsmzNdnke5nuusDOZzrSDVc8p5IsrQPPhXEH0tBcxCStimZxUwMF8dhEaIV4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=RVLHacker-Demo-Setup.exe

http://www.rvlgames.com/.../RVLHacker-Demo-Setup.exe

http://gsf-cf.softonic.com/c7e/4c2/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3353200&instance=softonic_br&type=PROGRAM&Expires=1454155839&Signature=KSl5XKvgN0VOxgXw80m-04-r-Q6VRdKc~U88E4Vob~4FQzVaS4CX7lg-nM9SYXlw06vj1PCK7xMScSKkTXxJ6EvTj~v4vBgvQQM~vY-z16U2bhetovgVHM1zu6blOGLxAcvRlVnotT9qs-gxZfgSdRieWmi5GzI1UVAhhk2zcZ8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=RVLHacker-Demo-Setup.exe

http://gsf-cf.softonic.com/c7e/4c2/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3353200&instance=softonic_en&type=PROGRAM&Expires=1444177442&Signature=eQuK3AKjrXKEvS2SxScnhIaUIVzcnBfBwq9zABgX2Mw5kQETFmrHoeTStWJuP9vi4~1HLtJJDVFMTnIWJVmiEX2uXoro9WVj824Wj7cUskOdk6QFhLQ9d9PNz52aM3HFToZjci1iFG7Ytaae3u~~ZlW5fIQnlWsCXH2ORSPmgcQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=RVLHacker-Demo-Setup.exe

http://gsf-cf.softonic.com/c7e/4c2/.../file?SD_used=0&channel=WEB&fdh=no&id_file=3353200&instance=softonic_en&type=PROGRAM&Expires=1455857655&Signature=KIs8G6YAOz0JeFS~pMpP1iGTllN3r8N42ZBy5dGE66C4cd5KH3vEYyy6aPGkoIYTzgPoYngXrjvUMTB998n~UlrE~w2bTfHgCk4tAwN8Nl4fmgYmz5GPqN6zfC6hlNruWd0h3iM9n-XGKesmmSN6NwvqZRYCs3i0qY7tjQrigGc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=RVLHacker-Demo-Setup.exe

Latest 30 of 36 download URLs

Scan rvl-hacker-1.0.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.