» xf-sms502ex.exe
Overview
Analysis
File Details
Programs (1)
Downloads (1)

xf-sms502ex.exe

The application xf-sms502ex.exe has been detected as a potentially unwanted program by 24 anti-malware scanners. This is a setup program which is used to install the application. This file is typically installed with the program Manga Studio by Smith Micro Software Inc.. The file has been seen being downloaded from download1885.mediafire.com.

File name:

xf-sms502ex.exe

MD5:

031d88abe79f4752c5808f7348a1a592

SHA-1:

9d9bcde6566dae2e589b31904d66dd72cfdda36d

SHA-256:

3f35003975d116d3326de01fae81870783ce9a0b977edcfdce552b572c54a287

Scanner detections:

24 / 68

Status:

Potentially unwanted

Analysis date:

4/27/2024 12:05:22 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.Generic.9413467

825

Avira AntiVirus

TR/Rogue.9413467

7.11.179.120

avast!

Win32:Malware-gen

2014.9-141101

AVG

Crack

2015.0.3303

Bitdefender

Trojan.Generic.9413467

1.0.20.1525

Bkav FE

W32.Clod7ea.Trojan

1.3.0.4959

Comodo Security

UnclassifiedMalware

19842

Emsisoft Anti-Malware

Trojan.Generic.9413467

8.14.11.01.06

ESET NOD32

Win32/Keygen.HA (variant)

8.10584

Fortinet FortiGate

W32/KeyGen.M

11/1/2014

F-Secure

Trojan.Generic.9413467

11.2014-01-11_7

G Data

Trojan.Generic.9413467

14.11.24

IKARUS anti.virus

Trojan.SuspectCRC

t3scan.1.7.8.0

K7 AntiVirus

Trojan

13.184.13727

McAfee

RDN/Generic PUP.x!bts

5600.6959

MicroWorld eScan

Trojan.Generic.9413467

15.0.0.915

Norman

Suspicious_Gen2.VRKSX

11.20141101

nProtect

Trojan.Generic.9413467

14.10.17.01

Rising Antivirus

PE:Trojan.Win32.Generic.15A3E37C!363062140

23.00.65.141030

Sophos

Mal/KeyGen-M

4.98

Trend Micro House Call

TROJ_GEN.R0CBC0EH514

7.2.305

Trend Micro

TROJ_GEN.R0CBC0EH514

10.465.01

VIPRE Antivirus

Trojan.Win32.Generic

34048

ViRobot

RiskTool.Keygen.95744

2011.4.7.4223

File size:

93.5 KB (95,744 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\manga studio ex 5.0.2 windows (keygen x-force) [chingliu]\crack\xf-sms502ex.exe

File PE Metadata

Compilation timestamp:

7/22/2013 8:12:52 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

1536:N1bRixYFg0lAPT8u84MF90eRF+c5Ty53+iQAqSlbpEaQPsliYdDH+nouy8VB:fbRiola8EheGc5Ot0nkdEaHHKoutV

Entry address:

0xA5A40

Entry point:

60, BE, 00, 10, 49, 00, 8D, BE, 00, 00, F7, FF, 57, 89, E5, 8D, 9C, 24, 80, C1, FF, FF, 31, C0, 50, 39, DC, 75, FB, 46, 46, 53, 68, 47, 39, 0A, 00, 57, 83, C3, 04, 53, 68, 33, 4A, 01, 00, 56, 83, C3, 04, 53, 50, C7, 03, 03, 00, 00, 00, 90, 90, 90, 90, 90, 55, 57, 56, 53, 83, EC, 7C, 8B, 94, 24, 90, 00, 00, 00, C7, 44, 24, 74, 00, 00, 00, 00, C6, 44, 24, 73, 00, 8B, AC, 24, 9C, 00, 00, 00, 8D, 42, 04, 89, 44, 24, 78, B8, 01, 00, 00, 00, 0F, B6, 4A, 02, 89, C3, D3, E3, 89, D9, 49, 89, 4C, 24, 6C, 0F, B6, 4A... 
[+]

Entropy:

7.9000 (probably packed)

Code size:

88 KB (90,112 bytes)

The file xf-sms502ex.exe has been discovered within the following programs.

Manga Studio by Smith Micro Software Inc.

Publisher's description - “Whether you want to simply enhance and perfect your pen-and-paper illustrations or you want to experience a completely digital creative process, Manga Studio is the ultimate software tool for comic and manga creation.”

manga.smithmicro.com

About 8% of users remove it

The file xf-sms502ex.exe has been seen being distributed by the following URL.

http://download1885.mediafire.com/mdgj88lfheig/.../xf-sms502ex.exe

Remove xf-sms502ex.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.