» world of tanks cheat 0.8.7.exe
Overview
Analysis
File Details
Downloads (1)

world of tanks cheat 0.8.7.exe

The executable world of tanks cheat 0.8.7.exe has been detected as malware by 25 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from partnjorskie-programmy.ru.

File name:

MD5:

424ac42017b2716062678b5cd36e738e

SHA-1:

de3508fd46b0ab0080afefe736fcfcaa12e1d118

SHA-256:

7ef5affabf2096c30c491383b3ae21ea31942354b6dc2df61fb52fdd3240095c

Scanner detections:

25 / 68

Status:

Malware

Analysis date:

4/26/2024 4:11:56 AM UTC (today)

Scan engine

Detection

Engine version

Agnitum Outpost

Trojan.Kryptik

7.1.1

AhnLab V3 Security

Trojan/Win32.ArchSMS

2013.09.04

Avira AntiVirus

TR/Crypt.ZPACK.Gen

7.11.100.88

avast!

Win32:SMSSend-BSB [Trj]

2014.9-130823

AVG

FakeAV

2014.0.3538

Bitdefender

Gen:Variant.Graftor.105329

1.0.20.1175

Comodo Security

TrojWare.Win32.Kryptik.BDVV

16876

Dr.Web

Trojan.SMSSend.4196

9.0.1.0235

Emsisoft Anti-Malware

Gen:Variant.Graftor.105329

8.13.08.23.05

ESET NOD32

Win32/Kryptik.BHGX (variant)

7.8760

F-Secure

Gen:Variant.Graftor.105329

11.2013-23-08_6

G Data

Gen:Variant.Graftor.105329

13.8.22

IKARUS anti.virus

Trojan.Win32.FakeAV

t3scan.2.0.127

Kaspersky

HEUR:Trojan.Win32.Generic

14.0.0.3766

Malwarebytes

Trojan.Agent

v2013.08.23.05

McAfee

Artemis!424AC42017B2

5600.7176

MicroWorld eScan

Gen:Variant.Graftor.105329

14.0.0.705

NANO AntiVirus

Trojan.Win32.SMSSend.cchhid

0.26.0.54404

Norman

Kelihos.TJU

11.20130823

Panda Antivirus

Trj/CI.A

13.11.26.12

Sophos

Mal/Generic-S

4.91

Trend Micro House Call

TROJ_GEN.R0CBH05I313

7.2.330

Trend Micro

TROJ_GEN.R0CBC0OI313

10.465.26

Vba32 AntiVirus

SScope.Trojan.TDSS.1112

3.12.22.3

VIPRE Antivirus

Trojan.Win32.Kryptik.alry

21150

File size:

19.3 MB (20,250,155 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\world of tanks cheat 0.8.7.exe

File PE Metadata

Compilation timestamp:

7/29/2013 4:18:31 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

CTPH (ssdeep):

393216:yZWmg2Wk+gbZc7pd27x/3f1uPDtMSQHtf4ACaQ3jecyCDfeIq5T84oA:yNgkHZc7ox/3f8u63jec7e35TDV

Entry address:

0x2C2E

Entry point:

66, 83, 3D, FA, A0, 80, 00, 01, 0F, 85, BB, 02, 00, 00, 53, 50, 57, 8B, 04, 24, 89, 34, 24, 03, FE, 5F, 58, 5B, 2B, C6, 52, 33, C0, 8B, 7D, 0C, 8B, 08, 03, F1, 8B, 45, 08, 8B, FE, 03, D9, 33, C0, 8B, 70, 08, 83, EC, 2C, 89, 55, 08, 56, 89, 55, 08, 2B, F9, 8B, FE, 03, F1, 8B, 16, 8B, 40, 10, 8B, 70, 08, 2B, 78, 0C, 2B, F9, 03, F1, 2B, 78, 0C, 33, C0, 8B, 58, 04, 75, 4D, 8B, 45, 08, 2B, F9, 57, 8B, 7D, 0C, 8B, 70, 08, 52, 89, 55, 08, 33, C0, 33, C0, 89, 45, F8, 8B, 08, 2B, F9, 2B, 78, 0C, 83, EC, 2C, 89, 55... 
[+]

Entropy:

7.9723 (probably packed)

Code size:

4 MB (4,170,240 bytes)

The file world of tanks cheat 0.8.7.exe has been seen being distributed by the following URL.

http://partnjorskie-programmy.ru/.../world of tanks cheat 0.8.7.exe

Remove world of tanks cheat 0.8.7.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.