卡刀软件免费使用(补偿).exe

KeyImitative Module

Product:
KeyImitative Module

Version:
1, 0, 0, 2

MD5:
c658861f71beff4aca8c06f12b78215d

SHA-1:
37febac6db49cc334048fafd2f6d94de3ddf78f5

SHA-256:
b50bab8a96fd870018aefcb061798940ea0a585224ddf00675bab85a5c4e35f8

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
12/25/2024 4:36:36 PM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Ramnit-CZ
160326-0

AVG
Win32/Ramnit.A
2015.0.4545

File size:
244 KB (249,856 bytes)

Product version:
1, 0, 0, 2

Copyright:
Copyright 2010

Original file name:
KeyImitative.exe

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
8/2/2011 1:37:09 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
3072:XDvyCvevSjxxzqFgISYsKoipEs7bDbdu4owiW3FlbtZlek4pu:XmdixxzqFvPx7bDM4o9W1Zle0

Entry address:
0x10A9A

Entry point:
E8, B4, 8B, 00, 00, E9, 17, FE, FF, FF, 8B, 44, 24, 04, 33, C9, 3B, 04, CD, C8, 71, 42, 00, 74, 12, 41, 83, F9, 2D, 7C, F1, 8D, 48, ED, 83, F9, 11, 77, 0C, 6A, 0D, 58, C3, 8B, 04, CD, CC, 71, 42, 00, C3, 05, 44, FF, FF, FF, 6A, 0E, 59, 3B, C8, 1B, C0, 23, C1, 83, C0, 08, C3, E8, 41, 25, 00, 00, 85, C0, 75, 06, B8, 30, 73, 42, 00, C3, 83, C0, 08, C3, E8, 2E, 25, 00, 00, 85, C0, 75, 06, B8, 34, 73, 42, 00, C3, 83, C0, 0C, C3, 56, E8, E7, FF, FF, FF, 8B, 4C, 24, 08, 51, 89, 08, E8, 8D, FF, FF, FF, 59, 8B, F0...
 
[+]

Entropy:
5.2022

Code size:
132 KB (135,168 bytes)

The file 卡刀软件免费使用(补偿).exe has been seen being distributed by the following URL.

Scan 卡刀软件免费使用(补偿).exe - Powered by Reason Core Security