home

barada-ip.exe

The executable barada-ip.exe has been detected as malware by 1 anti-virus scanner. This is a setup program which is used to install the application. The file has been seen being downloaded from barada-ip.at.ua.
MD5:
600284213acaee808d0bb4484a83cfb9

SHA-1:
db88a330a580db28689de1f71fbd1a6cc9b13095

SHA-256:
dbb928cfcc060a26415b1138b7bcf0b4fbca3e6f88f3c08277ec6c50193e7bd8

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
11/5/2024 4:36:01 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Threat.Win.Reputation.IMP
16.3.20.13

File size:
89.5 KB (91,648 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\barada-ip.exe

File PE Metadata
Compilation timestamp:
8/9/2015 11:07:26 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
2.50

CTPH (ssdeep):
1536:kWqCR8ze0SMfFIE43jqTYf/iPX3XzG4Ic1+CCU7vA4v5VxyZ8OC:Vqk0SvWTsqPXHzG4VECR7o4vDsA

Entry address:
0x1000

Entry point:
68, 00, 01, 00, 00, 68, 00, 00, 00, 00, 68, D8, E3, 40, 00, E8, 5C, 30, 00, 00, 83, C4, 0C, 68, 00, 00, 00, 00, E8, 55, 30, 00, 00, A3, DC, E3, 40, 00, 68, 00, 00, 00, 00, 68, 00, 10, 00, 00, 68, 00, 00, 00, 00, E8, 42, 30, 00, 00, A3, D8, E3, 40, 00, E8, BC, 2F, 00, 00, E8, D7, 9A, 00, 00, E8, 7E, 99, 00, 00, E8, A0, 7E, 00, 00, E8, CB, 79, 00, 00, E8, 73, 73, 00, 00, E8, F7, 6F, 00, 00, E8, 29, 6E, 00, 00, E8, 06, 6E, 00, 00, E8, 78, 6D, 00, 00, E8, DB, 64, 00, 00, E8, 05, 55, 00, 00, E8, 11, 47, 00, 00...
 
[+]

Packer / compiler:
PKLITE32, 0x1.1

Code size:
41.5 KB (42,496 bytes)

The file barada-ip.exe has been seen being distributed by the following URL.

http://barada-ip.at.ua/barada-ip.exe

Remove barada-ip.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.