home

adept-translator-pro-setup.exe

Adept Translator Pro

AdeptDict,Inc.

The executable adept-translator-pro-setup.exe, “{cm:MyAppVer} ” has been detected as malware by 11 anti-virus scanners. Infected by an entry-point obscuring polymorphic file infector which will create a peer-to-peer botnet and receives URLs of additional files to download. The file has been seen being downloaded from english-to-hindi-translator.soft32.com.
Publisher:
AdeptDict,Inc.

Product:
Adept Translator Pro

Description:
{cm:MyAppVer}

MD5:
40a344177d21f8dec444c452786ba887

SHA-1:
4e73624a5c99c9d3485cff09c0c0beb41cef8d98

SHA-256:
a4630345b1038e84619554d9ffab95d0cae9e2f19d75d75331c5b0acd9820ed7

Scanner detections:
11 / 68

Status:
File is infected by a Virus

Explanation:
The file is infected by a polymorphic file infector virus.

Analysis date:
1/13/2025 5:08:23 PM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:SaliCode
160216-3

AVG
Win32/Sality
2015.0.4530

Dr.Web
Win32.Sector.30
9.0.1.05190

Emsisoft Anti-Malware
Win32.Sality
10.0.0.5366

ESET NOD32
Win32/Sality.NBA virus
8.0.319.0

F-Prot
W32/Sality.gen2
4.6.5.141

F-Secure
Win32.Sality.3
5.15.21

Kaspersky
Virus.Win32.Sality
15.0.0.562

McAfee
Virus.W32/Sality.gen.z
18.0.204.0

Microsoft Security Essentials
Threat.Undefined
1.213.7034.0

Norman
Win32.Sality.3
19.02.2016 10:08:15

File size:
2.4 MB (2,534,457 bytes)

Copyright:
Copyright © 2010-2015 AdeptDict,Inc.

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\adept-translator-pro-setup.exe

File PE Metadata
Compilation timestamp:
7/9/2014 12:58:13 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:ixGFdq8667ElRypHN2x6e9Js/TngH3rN80G6BzzwNMWPP:HFYVRg+Kn8rN8oXw

Entry address:
0x113BC

Entry point:
28, C7, 53, 68, 6C, FC, DE, 00, 81, FA, D6, C0, 00, 00, 77, 08, 86, C7, 69, F3, 87, D6, 47, 0E, F7, C6, 1F, 9D, AA, 63, BA, 51, 14, C2, C2, 80, E8, 7D, 0F, BF, CE, FE, CE, 09, EA, 0F, AF, CB, 42, 0F, AF, C8, 0C, 4D, 68, 48, 3D, F3, FF, F2, 5A, 2A, E1, 81, C2, 02, 7F, 0B, 00, 86, E0, B4, 7A, F2, 0F, B7, C0, FE, C8, 81, D8, A3, 0C, 76, 3C, 0F, AF, C6, 2B, C3, B8, 00, 00, 00, 00, 33, C2, 8B, C8, 48, 83, E7, 00, 89, E8, 1A, C0, 0B, F9, 30, CC, F3, 57, 87, C0, 35, FF, 70, 39, FD, 85, ED, 5E, 48, 2A, EC, 80, FD...
 
[+]

Entropy:
5.3285

Code size:
63.5 KB (65,024 bytes)

The file adept-translator-pro-setup.exe has been seen being distributed by the following URL.

http://english-to-hindi-translator.soft32.com/get/file/id/.../?no_download_manager=true

Remove adept-translator-pro-setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.