» vkcracker.zip.exe
Overview
Analysis
File Details
Downloads (1)

vkcracker.zip.exe

iDatix Corporation

The application vkcracker.zip.exe by iDatix has been detected as a potentially unwanted program by 8 anti-malware scanners. This is a setup program which is used to install the application. This program installs potentially unwanted software on your PC at the same time as the software you are trying to install, without adequate consent. The file has been seen being downloaded from configlinker.net.

File name:

vkcracker.zip.exe

Publisher:

iDatix Corporation (signed and verified)

MD5:

4f8be4c2a4f16d7fb6bf04951a03fd68

SHA-1:

3684ec1b8599aa637fa612ba10473a1b82b69543

SHA-256:

87315ce4a6ca1fcde1f386462ef13a3363912c02836247f7c0a4d95de56b9cd5

Scanner detections:

8 / 68

Status:

Potentially unwanted

Analysis date:

5/9/2024 4:38:00 PM UTC (today)

Scan engine

Detection

Engine version

avast!

Win32:Downloader-VNU [PUP]

160216-0

AVG

Adware Generic5.BDJT

2015.0.4533

Dr.Web

Trojan.Packed.31367

9.0.1.05190

Emsisoft Anti-Malware

Application.Bundler.BA

11.5.0.6191

ESET NOD32

Win32/AdWare.Toolbar.Webalta.GM application

8.0.319.0

F-Secure

Riskware.Application.Bundler.BA

5.15.21

Kaspersky

not-a-virus:Downloader.Win32.LMN

15.0.0.562

Norman

Application.Bundler.BA

29.02.2016 03:11:57

File size:

1.2 MB (1,310,280 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\vkcracker.zip.exe

Digital Signature

Signed by:

iDatix Corporation

Authority:

VeriSign, Inc.

Valid from:

9/10/2012 4:00:00 AM

Valid to:

10/2/2015 3:59:59 AM

Subject:

CN=iDatix Corporation, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=iDatix Corporation, L=Clearwater, S=Florida, C=US

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

6A2BECD74BF6AAF73D2D909F5C4A93CD

File PE Metadata

Compilation timestamp:

6/20/1992 2:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

24576:CpVl8OJAsTTy/TgeUePZ78OpnhsVer+nVtMsaZOtInSN4BjmsMJd:kllTAT71DPs4ezInSNCjId

Entry address:

0xA0894

Entry point:

55, 8B, EC, 83, C4, F0, B8, 4C, 06, 4A, 00, E8, 0C, 60, F6, FF, A1, A8, 2C, 4A, 00, 8B, 00, E8, 84, FF, FB, FF, 8B, 0D, AC, 2C, 4A, 00, A1, A8, 2C, 4A, 00, 8B, 00, 8B, 15, 00, F6, 48, 00, E8, 84, FF, FB, FF, 8B, 0D, 98, 2A, 4A, 00, A1, A8, 2C, 4A, 00, 8B, 00, 8B, 15, 80, F3, 48, 00, E8, 6C, FF, FB, FF, 8B, 0D, 58, 2C, 4A, 00, A1, A8, 2C, 4A, 00, 8B, 00, 8B, 15, DC, 02, 4A, 00, E8, 54, FF, FB, FF, A1, A8, 2C, 4A, 00, 8B, 00, E8, C8, FF, FB, FF, E8, 8B, 3A, F6, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C++

Code size:

638.5 KB (653,824 bytes)

The file vkcracker.zip.exe has been seen being distributed by the following URL.

http://configlinker.net/archive.php?name=vkcracker&site=tv

Remove vkcracker.zip.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.