» ativador sca academia 2016.exe
Overview
Analysis
File Details
Downloads (1)

ativador sca academia 2016.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from dc692.4shared.com.

File name:

MD5:

e6f69de673449faf1b7738697ecd9726

SHA-1:

86ac8843cb13ba695d94aeff9b8f5123b2fb98a5

SHA-256:

65a74b4235c1f276003aefda44f1952d9de92b07f4d47f9b6492f8999722533b

Scanner detections:

5 / 68

Status:

Inconclusive (not enough data for an accurate detection)

Analysis date:

5/4/2024 4:36:28 PM UTC (today)

Scan engine

Detection

Engine version

AegisLab AV Signature

Troj.Dropper.W32.Agent.l6ad

2.1.4+

Clam AntiVirus

Win.Trojan.Agent-412607

0.98/21511

NANO AntiVirus

Trojan.Win32.Agent.ecvrsg

1.0.38.8984

Qihoo 360 Security

QVM41.1.Malware.Gen

1.0.0.1120

Vba32 AntiVirus

TrojanDownloader.Betload

3.12.26.4

File size:

1.5 MB (1,580,174 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\ativador sca academia 2016.exe

File PE Metadata

Compilation timestamp:

2/24/2011 7:11:14 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

Entry address:

0x8489C

Entry point:

55, 8B, EC, 83, C4, F0, B8, 4C, 3A, 48, 00, E8, 74, 2C, F8, FF, A1, 00, 78, 48, 00, 8B, 00, E8, A8, 90, FE, FF, A1, 00, 78, 48, 00, 8B, 00, B2, 01, E8, 02, AC, FE, FF, A1, 00, 78, 48, 00, 8B, 00, 33, D2, E8, 34, 8B, FE, FF, 8B, 0D, 98, 77, 48, 00, A1, 00, 78, 48, 00, 8B, 00, 8B, 15, 18, 2C, 48, 00, E8, 8C, 90, FE, FF, A1, 00, 78, 48, 00, 8B, 00, E8, D0, 91, FE, FF, E8, 3B, 03, F8, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C++

Code size:

526 KB (538,624 bytes)

The file ativador sca academia 2016.exe has been seen being distributed by the following URL.

https://dc692.4shared.com/download/.../Ativador_SCA_Academia_2016.exe

Scan ativador sca academia 2016.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.