home

aa_v3.5.exe

MD5:
9e25b07605a2ce1e1992de1ae801a2f6

SHA-1:
6c78ae9145c8dc032a4c76ecc3a1627b9c66b9f8

SHA-256:
77d749adac5cb780dfe5063a2cea677bebc7734253ab4e9b2b89e394c002db13

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
6/17/2024 8:51:44 AM UTC  (today)

File size:
1.9 KB (1,985 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\aa_v3.5.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
48:Ix5sh3eAIueAjYfouCrfat9ws5/hvMeyjPl5I8vC2lyzIh1SmU:73eXueSo4T8Ws5/hUeyB5v68wI+t

Entry point:
3C, 3F, 70, 68, 70, 0D, 0A, 0D, 0A, 09, 24, 65, 6D, 20, 3D, 20, 74, 72, 69, 6D, 28, 24, 5F, 47, 45, 54, 5B, 27, 65, 6D, 27, 5D, 29, 3B, 0D, 0A, 09, 69, 66, 20, 28, 73, 74, 72, 70, 6F, 73, 28, 24, 65, 6D, 2C, 27, 40, 27, 29, 3D, 3D, 3D, 66, 61, 6C, 73, 65, 29, 20, 24, 65, 6D, 3D, 22, 22, 3B, 0D, 0A, 0D, 0A, 09, 69, 66, 20, 28, 73, 74, 72, 6C, 65, 6E, 28, 24, 65, 6D, 29, 3E, 30, 29, 20, 7B, 0D, 09, 09, 24, 69, 70, 20, 3D, 20, 24, 5F, 53, 45, 52, 56, 45, 52, 5B, 27, 52, 45, 4D, 4F, 54, 45, 5F, 41, 44, 44, 52...
 
[+]

Entropy:
5.6817

The file aa_v3.5.exe has been seen being distributed by the following 18 URLs.

http://touch.kaspersky.com/.../1484141429

http://www.towerbitscenter.com/Vu6a8rsn1 kpk0hKAtyMz0ZvxLT9i6jecIiAjXDO2s5TK6WIYqFAPmGn0vc7HSS1Pk3QBu1XVR0i38XVxpv0q20VsN9b3u07reWlDGIYeBrlLSrUk8eGTLnIQ4ZcsavM7iWIRKoMV7 3wz8GwLEk3joomEtjbnc9vvRPNOmoP8IsJLIlpVOdFaodZtAhVMyrHSj6xvD hy7aK7L7nIYXwbz96cFP1_b8MbxRqdyIjigZrAhm870=-Gx8AAMRtbD5PxHetaDi9kS1IIasIJDcO9MbEb 0Ec RcoaEX

http://touch.kaspersky.com/.../1486099275

http://www.ammyy.com/aa_v3.exe

http://www.towerbitscenter.com/4VMsW5erIOhLaHq N_k6dy6vXB99TTDSVYSPyJK4oMRS3sa190I3L8NefD0Kv43iCpNxyr4JqQhFxa7R2IfMVHtr8oah75wPxKkCkOHHKq3ebXJpUfTPx2RnWlhqEpgBGbn63dEL_QyJdTlwAZU HJaQwGM1NtkA0IcuN_WkWjPx9oYo4MWnTXke l8eMcpmXi HHnVDd8lQO wzH0MYlWYjbRpcIpig2lb3cV1I1VOHrvIWQ9k=-Gx8AAMRtbD5PxHetaDi9kS1IIasIJDcO9MbEb 0Ec RcoaEX

http://www.chilidownload.com/22080/.../AMMYY_Admin.exe

http://www.logitheque.com/.../ad2e3844.dl

http://touch.kaspersky.com/.../1468320783

http://www.sonsurum.net/.../ammyy-390.exe

http://www.ranchsendgift.com/pVoca9k0uLDM5mx 9hVmAHEflrLGMw8JTbNktorXg_FLSrtTCGTSH1OuLrgAjeMfFvxc_PQawWajwfWSPRM F6O3i0o_fDeRGca5f5wSvZqYz9mw_8a8bRVmHL7GBgrGxnJE7mOdmwq7p6i__UaIFvkRbL2oQ47ihrNueIruLQo_UMcsGiaSNLn099K4FRanku6PjIJZtrobEE8uEJDdRdmiiod0PQ==-Gx8AAMRtbD5PxHetaDi9kS1IIasIJDcO9MbEb 0Ec RcoaEX

http://www.funcyclecapital.com/ Vcbt97D9Gs1KQN_Wz16CAM8nyi 9nei90xnJ7YN0CKp1c6XPm447jMhqKilbKDzPREIj1tMD92zHqVq_woPJmSqDzV1DcIHf9lbwbJtaJHA9xioQZ1z230bDk07N8GX2x2W 06W2o5XDPGIZ30FLAAyyQU91nctdFtwNSUrNmydlfQjLWFbHNKlLfTAMOgtTqiroy9XWZlgVxBMEqaZQ6GFhO3GPQ==-Gx8AAMRtbD5PxHetaDi9kS1IIasIJDcO9MbEb 0Ec RcoaEX

http://dl3.vessoft.com/files2/.../AA_v3.5.exe

http://touch.kaspersky.com/url_redirect/.../00005E040000184B

http://www.lo4d.com/get-file/ammyy-admin/.../

http://soft.oszone.net/download-file/.../

http://www.ammyy.com/AMMYY_Admin.exe

http://software.thaiware.com/download_url.php?id=10685

http://www.ammyy.com/AA_v3.5.exe

Scan aa_v3.5.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.