home

מיקמק.exe

מיקמק

This is a setup program which is used to install the application. The file has been seen being downloaded from serv33.f2h.co.il and multiple other hosts.
Publisher:
מיקמק

Product:
מיקמק

Description:
מיקמק מנהל

Version:
1.0.0.0

MD5:
a2ce099e2b81a24518a0ef00e233fb8f

SHA-1:
e21ebf104583dc48d17508f5a24104cbc810d03b

SHA-256:
0bf5b76863ee1193747a51c819163e151888ea1a135bb664fcc1ce81b27083d5

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
12/26/2024 4:18:33 PM UTC  (today)

Scan engine
Detection
Engine version

Trend Micro House Call
Suspicious_GEN.F47V0801
7.2.285

VIPRE Antivirus
LooksLike.Win32.Malware!C
32648

File size:
802.5 KB (821,760 bytes)

Product version:
1.0.0.0

Copyright:
מיקמק מנהל

Original file name:
מיקמק מנהל.exe

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
3/22/2012 6:15:28 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
24576:ZknHdCo9+OHDYFhMwaz//YopMXX8AZM6VmLDn9g:ZAOOHD0KwM/mvFV+Jg

Entry address:
0xC9922

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.9643

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
798.5 KB (817,664 bytes)

The file מיקמק.exe has been seen being distributed by the following 29 URLs.

http://serv33.f2h.co.il/.../dbnnyf54wq1|b5b0f742f1cdaa7dc67c913f641df20f

http://serv33.f2h.co.il/.../dbnnyf54wq1|a554980e867c95a231478bc8c39079b3|.exe

http://serv33.f2h.co.il/.../dbnnyf54wq1|5db338b6ead5ea3ad6f26754459131b2

http://f2h.nana10.co.il/.../dbnnyf54wq1|a22ffde311d5bb5677f7930e504d01b3|.exe

http://f2h.nana10.co.il/.../dbnnyf54wq1|4c5d99fcbb251701243cf43d7dc40687|.exe

http://f2h.nana10.co.il/.../dbnnyf54wq1|a9fac0f4d0b3b18219868ef3a2bfbed2|.exe

http://f2h.nana10.co.il/.../dbnnyf54wq1|39e87821dbc02164cfb068b7f8dc9313|.exe

http://f2h.nana10.co.il/.../dbnnyf54wq1|56bc6afb3c6fa97822b03f72e3436162|.exe

http://f2h.nana10.co.il/.../dbnnyf54wq1|1eb09840182ed0e10ce485de66cf187e|.exe

http://f2h.nana10.co.il/.../dbnnyf54wq1|651284d58d4631a990fca6619c29a659|.exe

http://f2h.nana10.co.il/.../dbnnyf54wq1|0f6caf23d6e7ec914b5d66857bc88dfa|.exe

http://f2h.nana10.co.il/.../dbnnyf54wq1|5b850c6f4e8a9a0d9f3e926ceea75073|.exe

http://serv33.f2h.co.il/.../dbnnyf54wq1|04f9d018ac3b853733e7d49d7ceab3a9

http://f2h.nana10.co.il/.../dbnnyf54wq1|bcecc042d7955d80cc4ae724b168553c|.exe

http://f2h.nana10.co.il/.../dbnnyf54wq1|0d1909cd6082f3852b7cf95f8bea291d|.exe

http://f2h.nana10.co.il/.../dbnnyf54wq1|6ae2f6a3c2d2dbadf501047d05301a6b|.exe

http://f2h.nana10.co.il/.../dbnnyf54wq1|f9b5c8d763d6e502fcb2bbe74631c26c|.exe

http://serv33.f2h.co.il/.../dbnnyf54wq1|a234e7f883092f000696f15afb7b1059

http://f2h.nana10.co.il/.../dbnnyf54wq1|5f2b9f39767933012dada5a4611b5e96|.exe

http://f2h.nana10.co.il/.../dbnnyf54wq1|19101ddd01b53679052cc7f9fd61aabe|.exe

http://f2h.nana10.co.il/.../dbnnyf54wq1|5f18ce75efa1b354d377d1626c79540b|.exe

http://f2h.nana10.co.il/.../dbnnyf54wq1|69a9a909cded9ada32a315f6700c0d37|.exe

http://down.upf.co.il/downloadnew/file/.../e744f01b993f046edafae0efa66eb164_TltMh5vUMlVXmTIc64S9Mg==

http://f2h.nana10.co.il/.../dbnnyf54wq1|5453bb6702f97f74a5e0a4727543f9ed|.exe

http://f2h.nana10.co.il/.../dbnnyf54wq1|1fa925f17a5f8f179da584fd015ddb0b|.exe

http://f2h.nana10.co.il/.../dbnnyf54wq1|47a670314fcd0992539ec36827ef97f3|.exe

http://f2h.nana10.co.il/.../dbnnyf54wq1|56abf45926b149e0081a347176a35398|.exe

http://f2h.nana10.co.il/.../dbnnyf54wq1|27050c59c4217b0957813c8eea51eb30|.exe

http://f2h.nana10.co.il/.../dbnnyf54wq1|fdf2ff7db555cd72506f04b1d8071bbe|.exe

Scan מיקמק.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.