home

samsung 300k tool.exe

The executable samsung 300k tool.exe has been detected as malware by 5 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from dc732.4shared.com and multiple other hosts.
MD5:
cf71b9d21035ae67513fa11726483a2b

SHA-1:
500baec57fdaf6137801b28e37bcbf42159d87f6

SHA-256:
53b59f77d730c0d20539f72b85767609f809a690b1b493eeda1eb9ccd1ed816a

Scanner detections:
5 / 68

Status:
Malware

Analysis date:
4/26/2024 8:23:22 PM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
HW32.Packed
1.3.0.6379

Emsisoft Anti-Malware
Trojan.Generic.15146130
11.5.0.6191

F-Secure
Trojan.Generic.15146130
5.15.96

Norman
Trojan.Generic.15146130
28.05.2016 13:03:37

Quick Heal
(Suspicious) - DNAScan
2.15.14.00

File size:
661.4 KB (677,285 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
9/25/2013 7:55:14 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:MtaPfM5taOqOiy5Q7FRq3RGXRaQCToldp8iPxoyO6sOP+h6:eaPfM5kWiya7Fs3Ua903p8iqosOm6

Entry address:
0x183000

Entry point:
EB, 01, 90, 90, 68, 00, 10, 40, 00, 68, 01, 11, 02, 00, E8, 39, 00, 00, 00, 68, 00, D0, 51, 00, 68, 81, 04, 00, 00, E8, 2A, 00, 00, 00, 68, 00, 00, 52, 00, 68, 01, 0F, 00, 00, E8, 1B, 00, 00, 00, 68, E8, 64, 54, 00, 68, 35, 4D, 00, 00, E8, 0C, 00, 00, 00, 90, EB, 01, 62, 61, B8, 68, F0, 51, 00, FF, E0, 55, 8B, EC, 60, 55, 8B, 75, 08, 8B, 7D, 0C, E8, 02, 00, 00, 00, EB, 04, 8B, 1C, 24, C3, 81, C3, 00, 02, 00, 00, 53, 57, 8B, 07, 89, 03, 83, C7, 04, 83, C3, 04, 4E, 75, F3, 5F, 5E, FC, B2, 80, 8A, 06, 46, 88...
 
[+]

Entropy:
7.8734  (probably packed)

Code size:
533.5 KB (546,304 bytes)

The file samsung 300k tool.exe has been seen being distributed by the following 17 URLs.

http://dc732.4shared.com/download/.../Samsung_300K_Tool.exe

http://dc702.4shared.com/download/.../Samsung_300K_Tool.exe

http://dc732.4shared.com/download/.../Samsung_300K_Tool.exe

https://fs05n3.sendspace.com/dl/fb6aa210939569b6a9fa5b2485d9dd31/57a0b3287c90d6cd/.../Samsung 300K Tool.exe

http://download1389.mediafire.com/fo21gwkg1dig/.../Samsung 300K Tool.exe

https://fs05n4.sendspace.com/dl/9c3a4880795b7083b423c5290da7b62c/58220d146ec014f8/.../Samsung 300K Tool.exe

https://fs05n5.sendspace.com/dl/9dcf689963d94fdd8d6ad079c10f7264/5805e85d57ee8d99/.../Samsung 300K Tool.exe

https://fs05n3.sendspace.com/dl/5e70358209d8bb6eeb4881662f8432cd/57e1b3d66d213a81/.../Samsung 300K Tool.exe

https://fs05n5.sendspace.com/dl/7c800e2ae7caf3ff3c711ebc724037a5/57e94e1372e94ef4/.../Samsung 300K Tool.exe

http://download1990.mediafire.com/qar9h67dwbhg/.../Samsung 300K Tool.exe

http://download1633.mediafire.com/ewdlqerq6ebg/.../Samsung 300K Tool.exe

http://download1633.mediafire.com/u3tp7widkvxg/.../Samsung 300K Tool.exe

http://download1389.mediafire.com/3qtcnht56o3g/.../Samsung 300K Tool.exe

http://download1389.mediafire.com/tlde2bi9q5sg/.../Samsung 300K Tool.exe

http://download1389.mediafire.com/g327kcyt2ihg/.../Samsung 300K Tool.exe

http://dc440.4shared.com/download/.../Samsung_300K_Tool.exe

http://download832.mediafire.com/8fb19m5h71gg/.../Samsung 300K Tool.exe

Remove samsung 300k tool.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.