» 342_garenaru_setup.exe
Overview
Analysis
File Details
Downloads (1)

342_garenaru_setup.exe

This is a self-extracting archive and installer. The file has been seen being downloaded from wc3life.com.

File name:

MD5:

d42977b5228408b2e965a7f3c4d3538f

SHA-1:

4fc213be860161f2c1b107de914044fbd70ae95a

SHA-256:

0f6c1d0dde35e78a18dc5a975b19a0bae4aa8b38fddf3c3237ac9ac69da7d70f

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

11/24/2024 12:49:11 AM UTC (today)

File size:

1.8 KB (1,862 bytes)

File type:

Executable application (Win64 EXE)

Common path:

C:\users\{user}\appdata\local\microsoft\windows\inetcache\ie\{random}\342_garenaru_setup.exe

File PE Metadata

OS bitness:

Win64

CTPH (ssdeep):

24:kbdgqtGzPoh9wcsjoibDSVWjkAM7wy5BBExKiimiBZP3H9kmq+8Nt6hIlPTfk/Zn:vfzPk9BlnakAlKzPi+8NBkqeAp5W5mAp

Entry point:

3C, 68, 74, 6D, 6C, 3E, 3C, 68, 65, 61, 64, 3E, 3C, 74, 69, 74, 6C, 65, 3E, D0, A1, D0, BA, D0, B0, D1, 87, D0, B0, D1, 82, D1, 8C, 20, D1, 84, D0, B0, D0, B9, D0, BB, 3C, 2F, 74, 69, 74, 6C, 65, 3E, 3C, 73, 74, 79, 6C, 65, 20, 74, 79, 70, 65, 3D, 22, 74, 65, 78, 74, 2F, 63, 73, 73, 22, 3E, 74, 64, 20, 7B, 66, 6F, 6E, 74, 2D, 73, 69, 7A, 65, 3A, 31, 33, 70, 74, 3B, 66, 6F, 6E, 74, 2D, 66, 61, 6D, 69, 6C, 79, 3A, 41, 72, 69, 61, 6C, 3B, 7D, 3C, 2F, 73, 74, 79, 6C, 65, 3E, 3C, 2F, 68, 65, 61, 64, 3E, 0A, 3C... 
[+]

The file 342_garenaru_setup.exe has been seen being distributed by the following URL.

http://wc3life.com/_ld/.../342_GarenaRU_setup.exe

Scan 342_garenaru_setup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.