home

לא מאושר 654357.crdownload

תוכנת פריטים למיקמק 2015

Microsoft

Publisher:
Microsoft

Product:
תוכנת פריטים למיקמק 2015

Version:
1.0.0.0

MD5:
638d54f868be24ece9284db142edcde0

SHA-1:
76c24c7b0fa8889ad906366d0a11c268a832031e

SHA-256:
d385f71dd37facba46d429079bc9dce3b34e6dd67446f2b4a02056d4e9abd81c

Scanner detections:
3 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/23/2025 1:41:24 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Spy.A.17187
8.3.2.2

Panda Antivirus
Trj/Sharik.B
15.08.24.11

Qihoo 360 Security
HEUR/QVM03.0.Malware.Gen
1.0.0.1015

File size:
884.5 KB (905,728 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © Microsoft 2015

Original file name:
תוכנת פריטים למיקמק 2015.exe

Common path:
C:\users\{user}\downloads\?? ????? 654357.crdownload

File PE Metadata
Compilation timestamp:
4/10/2015 11:41:40 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
24576:bIeZ1zhZo3xeuIeZ1zhZo3xeuaIeZ1zhZo3xe:bIIBhZohlIIBhZohdaIIBhZoh

Entry address:
0xDDC0E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.2458

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
879.5 KB (900,608 bytes)

The file לא מאושר 654357.crdownload has been seen being distributed by the following 28 URLs.

http://serv71.f2h.co.il/.../3vyw52pl5lg|91122996ab0d95ea6309b244ad9c8836

http://serv71.f2h.co.il/.../3vyw52pl5lg|86ac7b5dca0e8670f2a563ea9e0514e4|.exe

http://serv71.f2h.co.il/.../3vyw52pl5lg|9ef208234e5dabd8275d8e58c024e231|.exe

http://f2h.nana10.co.il/.../3vyw52pl5lg|d673364bec0c5084e7d0ea9ad08650fa|.exe

http://f2h.nana10.co.il/.../3vyw52pl5lg|fea1eec6bda91c032c9c28c830cfde6d|.exe

http://serv71.f2h.co.il/.../3vyw52pl5lg|a313e249d1929390543f76c492eeb618

http://serv71.f2h.co.il/.../3vyw52pl5lg|391df0ec5f2ce23959d293061e9b2c79|.exe

http://serv71.f2h.co.il/.../3vyw52pl5lg|16964a9cabb0eb15fddf851801cff79c

http://f2h.nana10.co.il/.../3vyw52pl5lg|c743faabd31be80a41ee0e91b450023b|.exe

http://f2h.nana10.co.il/.../3vyw52pl5lg|f09df64c515fdaae73ef6253ab3e20a0|.exe

http://serv71.f2h.co.il/.../3vyw52pl5lg|7b78b709569c7aa1653a010652ddd43f

http://f2h.nana10.co.il/.../3vyw52pl5lg|4ffd10771677b552ec405fa3f84e98e5|.exe

http://f2h.nana10.co.il/.../3vyw52pl5lg|af883e3118822e5d4d1797671edb2c23|.exe

http://serv71.f2h.co.il/.../3vyw52pl5lg|895db4fad44b011b33702e1b7a37182d|.exe

http://f2h.nana10.co.il/.../3vyw52pl5lg|ec74b0b21d13d8dc9821fbb13943d643|.exe

http://f2h.nana10.co.il/.../3vyw52pl5lg|5a4a49fd3013e874e9c0fbd389f46a1a|.exe

http://serv71.f2h.co.il/.../3vyw52pl5lg|4af8d6cbd56c52d21ef9748dcddb9c0a|.exe

http://f2h.nana10.co.il/.../3vyw52pl5lg|94f622ae5802bcaf0cf21c90e275fff3|.exe

http://serv71.f2h.co.il/.../3vyw52pl5lg|0fe31b2988fa81baa34649e7d9764ce9

http://serv71.f2h.co.il/.../3vyw52pl5lg|9da52d55f55631ee98646843a474ed28

http://f2h.nana10.co.il/.../3vyw52pl5lg|46c06f2a87b394e9e9c7fa91e0a81f2e|.exe

http://f2h.nana10.co.il/.../3vyw52pl5lg|e76ffd45afa1830e77aedb7783433ce3|.exe

http://f2h.nana10.co.il/.../3vyw52pl5lg|83c2a6f8095e863be96c6657bf1e4af4|.exe

http://serv71.f2h.co.il/.../3vyw52pl5lg|e1e04230848e18b0040a09613818d6cc

http://f2h.nana10.co.il/.../3vyw52pl5lg|218cb192b65f8ef8e83eee8730712a9b|.exe

http://f2h.nana10.co.il/.../3vyw52pl5lg|efb0ec064c8de93d2fffb1753e4d5fa2|.exe

http://f2h.nana10.co.il/.../3vyw52pl5lg|4e176d39c1167dfb1bea60641563ecd7|.exe

http://f2h.nana10.co.il/.../3vyw52pl5lg|0f78b3e48a450e8cb010152e43d80c49|.exe

Scan לא מאושר 654357.crdownload - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.