home

StresserbySandroModz.exe

StresserbySandroModz

Microsoft

This is a setup program which is used to install the application. The file has been seen being downloaded from download1332.mediafire.com.
Publisher:
Microsoft

Product:
StresserbySandroModz

Version:
1.0.0.0

MD5:
4a4febab0afff2287634cbdbdb7670b2

SHA-1:
610426a801b5a9969c1cf3d88ad00496796999cd

SHA-256:
c4094e677b4c02b06c8d708f7d4a86173a4e56cbd19e67e8b7c360cd474c26ca

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/24/2024 2:29:02 AM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Malware.RDM.32!5.26[F1]
23.00.65.151024

File size:
136 KB (139,264 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © Microsoft 2014

Original file name:
StresserbySandroModz.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\stresserbysandromodz.exe

File PE Metadata
Compilation timestamp:
9/10/2014 8:41:07 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
768:aZRI/oITpNhSKWRrI2CjlGlW5DVMtudgCMfHQBcPTh0vjpQm/S81TLqk1NA:ajIVhirolBT8wBYkdQc

Entry address:
0x22B9E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 43, 9B, 10, 54, 00, 00, 00, 00, 02, 00, 00, 00, 89, 00, 00, 00, 1C, 40, 02, 00, 1C, 10, 02, 00, 52, 53...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
131 KB (134,144 bytes)

The file StresserbySandroModz.exe has been seen being distributed by the following URL.

http://download1332.mediafire.com/rn9v5fd4r79g/.../StresserbySandroModz.exe

Scan StresserbySandroModz.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.