» avast-free-antivirus-7-0-sborka-1426.exe
Overview
Analysis
File Details
Downloads (1)

avast-free-antivirus-7-0-sborka-1426.exe

iTorrent

TORRENT

The executable avast-free-antivirus-7-0-sborka-1426.exe has been detected as malware by 1 anti-virus scanner. This is a setup program which is used to install the application. The file has been seen being downloaded from dl.itorrentdl.ru.

File name:

Publisher:

iTorrent LCC (signed by TORRENT)

Product:

iTorrent

Version:

1.0.0.298

MD5:

a31978dba80041d0b57476a2ee50fcd7

SHA-1:

e8bdde61d131496a49d7db2778faf760b3960f82

Scanner detections:

1 / 68

Status:

Malware

Analysis date:

11/15/2024 9:02:48 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP (M)

17.3.12.16

File size:

379.5 KB (388,592 bytes)

Product version:

1.0.0.298

File type:

Executable application (Win32 EXE)

Common path:

C:\Documents and Settings\{user}\My documents\downloads\avast-free-antivirus-7-0-sborka-1426.exe

Digital Signature

Signed by:

TORRENT

Authority:

COMODO CA Limited

Valid from:

8/17/2015 4:00:00 AM

Valid to:

8/17/2016 3:59:59 AM

Subject:

CN="""TORRENT"", OOO", O="""TORRENT"", OOO", STREET="Admirala Tribuca, 37", L=Kaliningrad, S=Kaliningrad, PostalCode=236006, C=RU

Issuer:

CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

138718A754F2731D87CEDDCB1E570C6C

File PE Metadata

Compilation timestamp:

11/25/2015 10:41:54 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

12.0

Entry address:

0x22CD9

Entry point:

E8, EC, 6C, 00, 00, E9, 7F, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 8B, 4C, 24, 08, 8B, 44, 24, 04, 57, 53, 56, 83, 3D, A0, 03, 45, 00, 01, 0F, 82, CE, 01, 00, 00, 0F, 87, FD, 00, 00, 00, 0F, B6, 11, 8B, DA, C1, E2, 08, 0B, D3, 0F, 84, E9, 00, 00, 00, 66, 0F, 6E, DA, F2, 0F, 70, DB, 00, 0F, 16, DB, 66, 0F, EF, C0, 8B, F1, 83, CF, FF, 0F, B6, 19, 83, C1, 01, 85, DB, 74, 1D, F7, C1, 0F, 00, 00, 00, 75, EE, 66, 0F, 6F, 11, 66, 0F, 74, D0, 66, 0F, D7, DA, 85, DB, 75, 05, BF, 0F, 00, 00... 
[+]

Code size:

234.5 KB (240,128 bytes)

The file avast-free-antivirus-7-0-sborka-1426.exe has been seen being distributed by the following URL.

http://dl.itorrentdl.ru/download/M83HT.GMS.C/2CZ/28FME/3E2/28/5B/3CSHR-SHB/3B6/24M/3C/23/3DV05/29/2B4U/29G8U91/3CF/3D/2A/3E/24Q/279U/5D/3F/0AM/3C/26E-/28CMS.C/3CZ/28G-I/3D/265/3F/3A60B.W/2CZ/2CCHB/2C3/28B.W/2CZ/2CSHB/3D7/29L/28CMS.C8P.B/29H/0AM/3D/271P.B/5CO8FEN/2C2YO/3C/265N/3C/27/29O9RYR/3D2/5CR.3/28O/2C2/5DA/3DF/25S/3D/25/5DF/3CF5E7V/25N/3D/26EV/0AM/3A7/29U/3CU/5DS971U/3C/22YE/3E/264B.W/2CZ./23HB9FEL94YA/3B64B.W/2CZ-/23/60Z/28F/25V87-T/2B69R/0AC964M86YT/3A79I/3CG5S/2B3/3CM/2C/22US8F/5DR/3AV/24M/2C30R-BYE/3E/264B.WT/.../0A/.../0A

Remove avast-free-antivirus-7-0-sborka-1426.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.