» shakira - dare la la la zaycev net.exe
Overview
Analysis
File Details

shakira - dare la la la zaycev net.exe

BI IT Solutions

The application shakira - dare la la la zaycev net.exe by BI IT Solutions has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.

File name:

Publisher:

BI IT Solutions (signed and verified)

MD5:

a2c99f2f696a1ba0b0be932f78475fe2

SHA-1:

221dc4291e8427d4724a125b5ddf5edac390d687

SHA-256:

c870271844383e6d4e93d12d4833a60ff818c6715b0da9860b52fb7391743d02

Scanner detections:

1 / 68

Status:

Potentially unwanted

Note:

Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:

5/16/2024 3:46:28 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP (M)

17.1.2.16

File size:

302.9 KB (310,144 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\shakira - dare la la la zaycev net.exe

Digital Signature

Signed by:

BI IT Solutions

Authority:

COMODO CA Limited

Valid from:

6/6/2014 6:00:00 AM

Valid to:

6/7/2015 5:59:59 AM

Subject:

CN=BI IT Solutions, O=BI IT Solutions, STREET="Shipilovskaya, 64/1", L=Moscow, S=Moscow oblast, PostalCode=115682, C=RU

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

7D3EDAEE82E839BAD7AC658E539D34B7

File PE Metadata

Compilation timestamp:

6/20/1992 4:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

Entry address:

0x1000

Entry point:

E9, 93, FC, 03, 00, 89, 35, 17, E0, 44, 00, 66, C7, 05, DD, E0, 44, 00, 79, 52, 89, C3, C3, 90, C3, 8D, 40, 00, FF, 25, 24, E0, 44, 00, B8, 18, 10, 40, 00, C3, 89, 35, 17, E0, 44, 00, 66, C7, 05, DD, E0, 44, 00, 79, 52, 89, C3, E8, 3A, 0A, 00, 00, 89, 05, 31, E0, 44, 00, 83, FE, FF, 75, 0B, 66, C7, 05, CB, E0, 44, 00, 5F, 13, EB, 12, 89, 15, 42, E0, 44, 00, 89, 0D, AC, E0, 44, 00, 21, 1D, CD, E0, 44, 00, 89, 05, 11, E0, 44, 00, 87, 35, F2, E0, 44, 00, 89, 15, C8, E0, 44, 00, 89, 1D, 41, E0, 44, 00, 66, C7... 
[+]

Packer / compiler:

Xtreme-Protector v1.05

Code size:

256.5 KB (262,656 bytes)

Remove shakira - dare la la la zaycev net.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.