home

uggusf pub. v1.3.1(vip).exe

Speedhack

Your Organization Name

Publisher:
Your Organization Name

Product:
Speedhack

Version:
1.00

MD5:
6b2f5718e156b70bbb407c7e81a38536

SHA-1:
12f6deddbf2d0145730b056686764dc28ebecc0b

SHA-256:
b8747131c52c8198d43d0000745f30e567e9947f3868405c2f14caa4edd10a30

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
5/2/2024 1:40:56 AM UTC  (today)

Scan engine
Detection
Engine version

Quick Heal
(Suspicious) - DNAScan
8.15.14.00

File size:
32 KB (32,768 bytes)

Product version:
1.00

Original file name:
Speedhack.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\uggusf pub. v1.3.1(vip).exe

File PE Metadata
Compilation timestamp:
7/18/2009 12:23:53 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
192:/To/KDZUgTTKDZUg6NdeEhQrFVPJM+2nHT2eLaEkQKDZU:/To/KDZvKDZkHhQrFVPJ4z2eLaETKDZ

Entry address:
0x11DC

Entry point:
68, 04, 2F, 40, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 3C, 6F, 24, 73, 33, E8, BA, 48, 90, 3D, C9, 07, 21, 95, 18, 07, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 54, 61, 62, 49, 6E, 64, 53, 70, 65, 65, 64, 68, 61, 63, 6B, 00, 3D, 20, 20, 20, 30, 0D, 00, 00, 00, 00, FF, CC, 31, 00, 0C, 06, 66, DA, 13, BA, 39, 1B, 46, BA, 78, CB, 9C, B1, 50, 4E, BD, 84, D8, 56, 1B, C7, C4, C9, 4B, 83, BC, 5F, 9F, 44, C3, 38, F1, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00...
 
[+]

Entropy:
3.0756

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
16 KB (16,384 bytes)

The file uggusf pub. v1.3.1(vip).exe has been seen being distributed by the following 16 URLs.

http://download2186.mediafire.com/28336437f8qg/.../ECOIN BANK..exe.exe

http://download2147.mediafire.com/fo23fdooy3vg/.../ECOIN BANK..exe.exe

http://download1470.mediafire.com/a9gb9b89n8ug/.../FREE DECOIN.exe

http://download2186.mediafire.com/67xmf4hqh63g/.../ECOIN BANK..exe.exe

http://download711.mediafire.com/uotnah4y8hvg/.../ECOIN BANK..exe.exe

http://download1396.mediafire.com/qbi31q41q1yg/.../ECOIN BANK..exe.exe

http://download2147.mediafire.com/34uze7ao0wtg/.../ECOIN BANK..exe.exe

http://download1396.mediafire.com/j7zdvdcnz12g/.../ECOIN BANK..exe.exe

http://download2147.mediafire.com/2us2k6d312rg/.../ECOIN BANK..exe.exe

http://download1396.mediafire.com/fk1vpalrmsig/.../ECOIN BANK..exe.exe

http://download1396.mediafire.com/yv15602mqnvg/.../ECOIN BANK..exe.exe

http://download1396.mediafire.com/4z5xj43h7nwg/.../ECOIN BANK..exe.exe

http://download1396.mediafire.com/yj2r7tkaxo1g/.../ECOIN BANK..exe.exe

http://download1947.mediafire.com/jhh0c4zb5vyg/.../ECOIN BANK..exe.exe

http://download1363.mediafire.com/g7bihippco4g/.../ECOIN BANK..exe.exe

http://download1363.mediafire.com/ua4u7rsbbhrg/.../ECOIN BANK..exe.exe

Scan uggusf pub. v1.3.1(vip).exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.