action 1.29.0 [nxhacking].exe

This is a setup program which is used to install the application. The file has been seen being downloaded from download1314.mediafire.com and multiple other hosts.
MD5:
dfc3aca82c009e20d43bb7df2b498cc6

SHA-1:
dcaadb19caaa3e9807d63a43c9e7cb320ff8014b

SHA-256:
9bd972255afcd2a154633765ad007c044ee0d6b7bf8ee63d4fa7c99515ecdf02

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 1:20:55 PM UTC  (today)

File size:
20.8 MB (21,794,573 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\action 1.29.0 [nxhacking].exe

File PE Metadata
Compilation timestamp:
10/27/2015 6:12:50 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
393216:ukr7sHOU7088x730JRd2mPfIpzP4w+NqXb1CqkpfiAbiuUYRbjduEF:QOi088J30JWWfI0NqL19kV/biuUkbjMO

Entry address:
0x1DA8B

Entry point:
E8, 86, 63, 00, 00, E9, 78, FE, FF, FF, 8B, FF, 55, 8B, EC, 56, 8D, 45, 08, 50, 8B, F1, E8, 82, FC, FF, FF, C7, 06, F0, B2, 42, 00, 8B, C6, 5E, 5D, C2, 04, 00, C7, 01, F0, B2, 42, 00, E9, 37, FD, FF, FF, 8B, FF, 55, 8B, EC, 56, 8B, F1, C7, 06, F0, B2, 42, 00, E8, 24, FD, FF, FF, F6, 45, 08, 01, 74, 07, 56, E8, 96, CA, FF, FF, 59, 8B, C6, 5E, 5D, C2, 04, 00, 8B, FF, 55, 8B, EC, 56, 57, 8B, 7D, 08, 8B, 47, 04, 85, C0, 74, 47, 8D, 50, 08, 80, 3A, 00, 74, 3F, 8B, 75, 0C, 8B, 4E, 04, 3B, C1, 74, 14, 83, C1, 08...
 
[+]

Code size:
163 KB (166,912 bytes)

The file action 1.29.0 [nxhacking].exe has been seen being distributed by the following 50 URLs.

http://download1314.mediafire.com/c1wdn1nur5cg/.../Action 1.29.0 [NxHacking].exe

http://download1983.mediafire.com/u6clhoz9vuzg/.../Action 1.29.0 [NxHacking].exe

http://download2148.mediafire.com/759fbniw69ug/.../Action 1.29.0 [NxHacking].exe

http://download2148.mediafire.com/918jzpvw6wsg/.../Action 1.29.0 [NxHacking].exe

http://download2148.mediafire.com/7ja21dr4y2eg/.../Action 1.29.0 [NxHacking].exe

http://download2148.mediafire.com/dk4d884a4kyg/.../Action 1.29.0 [NxHacking].exe

http://download804.mediafire.com/y7cyfis2elpg/.../Action 1.29.0 [NxHacking].exe

http://download1175.mediafire.com/xflinamayt8g/.../Action 1.29.0 [NxHacking].exe

http://download25.mediafire.com/9aoc4ri9r9mg/.../Action 1.29.0 [NxHacking].exe

http://download2148.mediafire.com/wdrc951q4ccg/.../Action 1.29.0 [NxHacking].exe

http://download868.mediafire.com/1efevy91dyag/.../Action 1.29.0 [NxHacking].exe

http://download1936.mediafire.com/5x5nrcthaiwg/.../Action 1.29.0 [NxHacking].exe

http://download1281.mediafire.com/pyq4d95zbyhg/.../Action 1.29.0 [NxHacking].exe

http://download734.mediafire.com/ddhw54aaqgqg/.../Action 1.29.0 [NxHacking].exe

http://download1709.mediafire.com/c5y2pt6b59xg/.../Action 1.29.0 [NxHacking].exe

http://download1763.mediafire.com/lii3a0btm9dg/.../Action 1.29.0 [NxHacking].exe

http://download1281.mediafire.com/5xpn87nodfvg/.../Action 1.29.0 [NxHacking].exe

http://download1214.mediafire.com/7by5qj50lbsg/.../Action 1.29.0 [NxHacking].exe

http://download804.mediafire.com/yhj21krh4fog/.../Action 1.29.0 [NxHacking].exe

http://download884.mediafire.com/cfrgduf6wfog/.../Action 1.29.0 [NxHacking].exe

http://download995.mediafire.com/q3fmw2y5ddjg/.../Action 1.29.0 [NxHacking].exe

http://download25.mediafire.com/ssagqfexjggg/.../Action 1.29.0 [NxHacking].exe

http://download2148.mediafire.com/ua5l01kaf8ng/.../Action 1.29.0 [NxHacking].exe

http://download734.mediafire.com/n8o91157t5bg/.../Action 1.29.0 [NxHacking].exe

http://download1314.mediafire.com/824rjqhihxlg/.../Action 1.29.0 [NxHacking].exe

http://download1657.mediafire.com/oc8eov0xeqlg/.../Action 1.29.0 [NxHacking].exe

http://download804.mediafire.com/auab2kyjz32g/.../Action 1.29.0 [NxHacking].exe

http://download895.mediafire.com/drxvya2k12zg/.../Action 1.29.0 [NxHacking].exe

http://download1214.mediafire.com/tzqdt14ekrzg/.../Action 1.29.0 [NxHacking].exe

http://download1763.mediafire.com/hexxdz35jnpg/.../Action 1.29.0 [NxHacking].exe

Latest 30 of 146 download URLs

Scan action 1.29.0 [nxhacking].exe - Powered by Reason Core Security