» ssb3.exe
Overview
Analysis
File Details
Downloads (1)

ssb3.exe

Nintendo

The executable ssb3.exe, “Super Smash Bros 3” has been detected as malware by 28 anti-virus scanners.

File name:

ssb3.exe

Publisher:

Nintendo

Description:

Super Smash Bros 3

Version:

4.0.0.0

MD5:

dd99e2700ed9757ab58048657c6e996a

SHA-1:

185f568774a0251eea3ea9971f778ac5bd5b91f4

SHA-256:

3e5c4409545c5c8b9a4f10833e6c1afa2b45a45fe2ea40d6d2306624014b44a9

Scanner detections:

28 / 68

Status:

Malware

Analysis date:

4/20/2024 1:02:40 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.GenericKD.2516252

563

Avira AntiVirus

DR/Autoit.A.9587

8.3.1.6

Arcabit

Trojan.Generic.D26651C

1.0.0.425

avast!

AutoIt:MalOb-HS [Trj]

2014.9-150722

AVG

Autoit_c

2016.0.3041

Baidu Antivirus

Trojan.Win32.Autoit

4.0.3.15722

Bitdefender

Trojan.GenericKD.2516252

1.0.20.1015

Dr.Web

Trojan.PWS.Multi.1750

9.0.1.0203

Emsisoft Anti-Malware

Trojan.GenericKD.2516252

8.15.07.22.04

ESET NOD32

Win32/Injector.Autoit.BOA trojan

7.0.302.0

Fortinet FortiGate

W32/Autoit.BOA!tr

7/22/2015

F-Secure

Trojan.GenericKD.2516252

11.2015-22-07_4

G Data

Trojan.GenericKD.2516252

15.7.25

IKARUS anti.virus

Trojan.Win32.Injector

t3scan.1.9.5.0

K7 AntiVirus

Trojan

13.205.16359

Kaspersky

Trojan.Win32.Autoit

15.0.0.543

Malwarebytes

Trojan.Injector.AI

v2015.07.22.04

McAfee

Artemis!DD99E2700ED9

5600.6697

Microsoft Security Essentials

TrojanSpy:MSIL/Omaneat.A

1.1.11804.0

MicroWorld eScan

Trojan.GenericKD.2516252

16.0.0.609

NANO AntiVirus

Trojan.Win32.Autoit.dtghxq

0.30.24.2487

nProtect

Trojan/W32.Agent.1153536.AQ

15.06.25.01

Panda Antivirus

Trj/Chgt.O

15.07.22.04

Qihoo 360 Security

HEUR/QVM10.1.Malware.Gen

1.0.0.1015

Sophos

Mal/Generic-S

4.98

Trend Micro

TROJ_GEN.R01TC0DG315

10.465.22

Vba32 AntiVirus

Trojan.Autoit

3.12.26.4

VIPRE Antivirus

Trojan.Win32.Generic

41878

File size:

1.1 MB (1,153,536 bytes)

Product version:

4.0.0.0

2015

Trademarks:

Orange

Original file name:

temp.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\ssb3.exe

File PE Metadata

Compilation timestamp:

6/24/2015 11:42:51 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

24576:3tb20pkaCqT5TBWgNQ7apKqvl03tEcO17V6A:0Vg5tQ7apKqvl0dEcO1J5

Entry address:

0x25F74

Entry point:

E8, 6A, CE, 00, 00, E9, 7F, FE, FF, FF, CC, CC, 57, 56, 8B, 74, 24, 10, 8B, 4C, 24, 14, 8B, 7C, 24, 0C, 8B, C1, 8B, D1, 03, C6, 3B, FE, 76, 08, 3B, F8, 0F, 82, 68, 03, 00, 00, 0F, BA, 25, 58, 01, 4C, 00, 01, 73, 07, F3, A4, E9, 17, 03, 00, 00, 81, F9, 80, 00, 00, 00, 0F, 82, CE, 01, 00, 00, 8B, C7, 33, C6, A9, 0F, 00, 00, 00, 75, 0E, 0F, BA, 25, 70, A3, 4B, 00, 01, 0F, 82, DA, 04, 00, 00, 0F, BA, 25, 58, 01, 4C, 00, 00, 0F, 83, A7, 01, 00, 00, F7, C7, 03, 00, 00, 00, 0F, 85, B8, 01, 00, 00, F7, C6, 03, 00... 
[+]

Entropy:

6.9063

Code size:

557.5 KB (570,880 bytes)

The file ssb3.exe has been seen being distributed by the following URL.

http://ge.tt/api/1/files/1toYB1J2/.../blob?download

Remove ssb3.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.