» valeriy meladze - nebesa zaycev net.exe
Overview
Analysis
File Details

valeriy meladze - nebesa zaycev net.exe

Onlain Sekyuriti Sistems, OOO

The application valeriy meladze - nebesa zaycev net.exe by Onlain Sekyuriti Sistems, OOO has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.

File name:

Publisher:

Onlain Sekyuriti Sistems, OOO (signed and verified)

MD5:

116ccd95ca3b00f4710efb38a5605ce3

SHA-1:

8a6c1c3d120b7a23ca7bec4124b85dc2af601628

SHA-256:

214a13d6911e7a087159e5d7e40ee63f8255b5fea6fa8b0ca51e2089074b19ca

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

4/18/2024 3:09:24 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.OnlainSekyuritiSistems (M)

16.2.5.5

File size:

400.9 KB (410,528 bytes)

File type:

Executable application (Win32 EXE)

Digital Signature

Signed by:

Onlain Sekyuriti Sistems, OOO

Authority:

COMODO CA Limited

Valid from:

3/26/2014 3:00:00 AM

Valid to:

3/27/2015 2:59:59 AM

Subject:

CN="Onlain Sekyuriti Sistems, OOO", O="Onlain Sekyuriti Sistems, OOO", STREET="12 Komn 42, ul.Vrubelya", L=Moscow, S=Moscow region, PostalCode=125080, C=RU

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

38AA823949978CC988A90C3D6FDCCF0F

File PE Metadata

Compilation timestamp:

4/11/2014 4:32:45 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.18

CTPH (ssdeep):

6144:x70fQsc2Y6+R7ctv5lvbr8P+IW6y0hRn4d7aM7cdFVvrRO7xu1vExg638kBWA:x4YgYQBdryg6jRnU7aM7cdFDcx538WN

Entry address:

0x5B72

Entry point:

46, F5, 09, CA, 23, 5C, 24, 04, C1, DA, 0F, 87, CE, 31, CA, A1, 19, FB, 40, 00, 90, 33, 0D, 82, 28, 40, 00, B8, 68, C3, D0, C8, 90, 81, 3D, 96, BE, 41, 00, C2, 92, 12, 81, 05, 14, 9A, 6F, 37, FD, 87, D5, 87, F1, 49, 48, 13, 74, 24, 14, 85, 14, 24, 4A, 40, 46, 4F, 41, C1, E6, 1F, 0F, B6, 10, 87, FD, 39, 64, 24, 08, 81, C2, B8, 5B, F2, 45, 03, 4C, 24, 14, 1B, 7C, 24, FC, 81, C2, C4, 00, 4E, BA, FC, 90, F7, D7, 46, 8A, 1A, 2B, 6C, 24, 14, C1, E1, 1C, 8B, 6C, 24, 0C, 88, 18, 85, 5C, 24, 0C, 4D, 21, FA, BA, FD... 
[+]

Code size:

375 KB (384,000 bytes)

Remove valeriy meladze - nebesa zaycev net.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.