home

700 adet flash oyun paketi.exe

The executable 700 adet flash oyun paketi.exe has been detected as malware by 1 anti-virus scanner. This is a setup program which is used to install the application. The file has been seen being downloaded from www.indirbir.com.
Version:
1.0.0.0

MD5:
1a5869beb4b1393f76f011c6d66f748f

SHA-1:
8b383873d34563468c211719e76eb90cf29a68d4

SHA-256:
07329757434d57027965413dee8c4180181bc8fdcbbe9b4c72edfa916eb7ba5b

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
12/27/2024 2:47:02 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Threat.Win.Reputation.IMP
14.10.6.7

File size:
5.6 MB (5,831,300 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\700 adet flash oyun paketi.exe

File PE Metadata
Compilation timestamp:
11/24/2013 1:33:46 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:Isud2rCIkBC09p0Sbm21O292WFoLgd3XAvvNL5tQ8GKJabhKAFSQ99TdDMHooVts:T/CIkBF923NL5O8GKJabhKAFSQGx7h2

Entry address:
0x3FF844

Entry point:
55, 8B, EC, 83, C4, F0, 53, B8, 7C, 1E, 7F, 00, E8, 6F, EB, C0, FF, 8B, 1D, F4, C5, 80, 00, 8B, 03, E8, 2A, FB, DE, FF, 8B, 03, B2, 01, E8, 6D, 18, DF, FF, 8B, 0D, 80, C2, 80, 00, 8B, 03, 8B, 15, 30, 02, 7F, 00, E8, 26, FB, DE, FF, 8B, 0D, 84, C5, 80, 00, 8B, 03, 8B, 15, F4, B8, 7E, 00, E8, 13, FB, DE, FF, 8B, 0D, 30, BD, 80, 00, 8B, 03, 8B, 15, B0, F4, 7E, 00, E8, 00, FB, DE, FF, 8B, 0D, D0, BD, 80, 00, 8B, 03, 8B, 15, F0, E8, 7E, 00, E8, ED, FA, DE, FF, 8B, 0D, E0, C9, 80, 00, 8B, 03, 8B, 15, 04, D9, 7E...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
4 MB (4,186,624 bytes)

The file 700 adet flash oyun paketi.exe has been seen being distributed by the following URL.

http://www.indirbir.com/indir.php?id=MzQxOTM=

Remove 700 adet flash oyun paketi.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.