home

admin pro.exe

skypy

Product:
skypy

Version:
1.0.0.0

MD5:
4d38ca75648ca1017209b8f4eb5cd170

SHA-1:
c94539fa28b9605763cc2500aa6f5c26dcbfd5e8

SHA-256:
4792b574e0d2914c47df0127ad41ed0c238d1de8a31a38d3bc3f4b3486867e4b

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/30/2024 10:35:25 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
MSIL/Kryptik.GGX trojan
8.0.319.0

File size:
103 KB (105,472 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2016

Original file name:
skypy.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\admin pro.exe

File PE Metadata
Compilation timestamp:
6/20/2016 3:53:35 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
1536:c/sb3x2CiJ7jmWoIC+epV1jcHMG0fS1dSdVrpSYmLPpGubGZG/:isb3x2Cids+epV1jcHMGJdsVrczv4G/

Entry address:
0x181DE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 9F, 4C, 67, 57, 00, 00, 00, 00, 02, 00, 00, 00, 1C, 01, 00, 00, 1C, A0, 01, 00, 1C, 66, 01, 00, 52, 53, 44, 53, D4, E8, 50, 3F, FC, 70, 36, 4F, A1, 8D, 0A, 59, 10, 52, 54, 26, 01, 00, 00, 00, 63, 3A, 5C, 75, 73, 65, 72, 73, 5C, 68, 5C, 64, 6F, 63, 75, 6D, 65, 6E, 74, 73, 5C, 76, 69, 73, 75, 61, 6C, 20, 73, 74, 75, 64, 69, 6F, 20, 32, 30, 31, 33, 5C, 50, 72...
 
[+]

Entropy:
6.2261

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
88.5 KB (90,624 bytes)

The file admin pro.exe has been seen being distributed by the following URL.

http://www82.zippyshare.com/d/DLVdxF9w/.../Admin Pro.exe

Scan admin pro.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.