» autohotkey112209_install.exe
Overview
Analysis
File Details
Downloads (17)

autohotkey112209_install.exe

AutoHotkey

This is a self-extracting archive and installer. The file has been seen being downloaded from downloader.disk.yandex.ru and multiple other hosts.

File name:

Product:

AutoHotkey

Description:

AutoHotkey Setup

Version:

1.1.22.09

MD5:

e9459f111cc184777ad34c7eb02ce710

SHA-1:

6cf998ad6c82203715f0993ff9e46e4a04fc1ad9

SHA-256:

1c5023c2032ff495c26335e8fc761038894b84183f57e30279cd3fac73d2b284

Scanner detections:

2 / 68

Status:

Clean (2 probable false positive detections)

Explanation:

These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:

12/26/2024 5:25:32 AM UTC (today)

Scan engine

Detection

Engine version

IKARUS anti.virus

Trojan-PSW.Banker7

t3scan.1.9.5.0

Zillya! Antivirus

Worm.VBNA.Win32.262259

2.0.0.2571

File size:

2.9 MB (3,081,746 bytes)

Product version:

1.1.22.09

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\programs\autohotkey112209_install.exe

File PE Metadata

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

49152:PJV/vdsSZZeZtQdSH9rjWGH3PP/JVFuZGloMn35+MbK24lACdBQlV3vQc2FwMw44:PJhlsSZzSR/X3RrtljlObWG8QTpNr/4z

Entry address:

0x11E80

Entry point:

55, 89, E5, 81, EC, 68, 00, 00, 00, 90, 8D, 45, E8, 50, E8, 7E, 02, 00, 00, 83, C4, 04, B8, 02, 00, 00, 00, 50, E8, FF, 03, 00, 00, 83, C4, 04, B8, 00, 00, 03, 00, 50, B8, 00, 00, 01, 00, 50, E8, F3, 03, 00, 00, 83, C4, 08, E8, F3, 03, 00, 00, 89, 45, E4, 8B, 45, E4, 85, C0, 0F, 84, B5, 00, 00, 00, 8B, 45, E4, B9, 20, 00, 00, 00, 0F, BE, 10, 39, D1, 0F, 85, 0B, 00, 00, 00, 8B, 45, E4, 89, C1, 40, 89, 45, E4, EB, E2, 8B, 45, E4, B9, 22, 00, 00, 00, 0F, BE, 10, 39, D1, 0F, 85, 3A, 00, 00, 00, 8B, 45, E4, 40... 
[+]

Entropy:

7.9909

Packer / compiler:

REALbasic

The file autohotkey112209_install.exe has been seen being distributed by the following 17 URLs.

https://downloader.disk.yandex.ru/disk/100e374ccb5834371772acb9237921b242f07cb824ccaff665e94fd70e22e4d8/588dee8f/.../x-msdownload&fsize=3081746&hid=ba38b9bd8dd353ab8fdf44dbadf77535&media_type=executable&tknv=v2

https://www.autohotkey.com/download/.../AutoHotkey112209_Install.exe

https://downloader.disk.yandex.ua/disk/9d4534deba212c6b2c003f658611749e331c0b39fb198350edf42025f21310c9/57cb14ea/.../x-msdownload&fsize=3081746&hid=ba38b9bd8dd353ab8fdf44dbadf77535&media_type=executable&tknv=v2

https://autohotkey.com/download/.../AutoHotkey112209_Install.exe

https://downloader.disk.yandex.ru/disk/d861e0802528247ee3f981fba198f288124ff5c91f3c9c69ff85d94b1689ec6a/57179bea/.../x-msdownload&fsize=3081746&hid=ba38b9bd8dd353ab8fdf44dbadf77535&media_type=executable&tknv=v2

http://files392.xetcom.com/downloads/software/system/.../autohotkey.setup.exe

http://www.autohotkey.com/.../AutoHotkeyInstall.exe

http://software-files-a.cnet.com/s/software/14/48/70/.../AutoHotkey112209_Install.exe

http://www.programosy.pl/.../pobierz,autohotkey,2.html

http://files.downloadnow.com/s/software/14/48/70/.../AutoHotkey112209_Install.exe

http://mirrorf.donmare.net/b9/5/0/.../AutoHotkey112209_Install.exe

http://www.softportal.com/getsoft-4781-autohotkey-2.html

https://www.autohotkey.com/.../ahk-install.exe

https://autohotkey.com/.../ahk-install.exe

https://github-cloud.s3.amazonaws.com/releases/.../fe41c668-88b7-11e5-8436-e6fd2f85f730.exe

http://www.filepuma.com/file/1447513591c10038/autohotkey_1.1.22.09/.../0/

http://ahkscript.org/.../ahk-install.exe

Scan autohotkey112209_install.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.