home

baretail.exe

MD5:
f3e7a015c1d541528085d3f9581ab41f

SHA-1:
2aa7d3806d614fd9e1e6b099d134784a98b6dd9e

SHA-256:
160d6a3bdc9d64677643376f82e559eb4112289e6b6d722b5b3b32699d18bca9

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 5:56:00 PM UTC  (today)

File size:
220 KB (225,280 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\baretail.exe

File PE Metadata
Compilation timestamp:
6/19/1992 6:22:17 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
6144:C9DH/mHTUUo87osathhHbunP8kFZb15ZIqM:cf0TUY7osuhdunRFZpg

Entry address:
0x2DDDC

Entry point:
55, 8B, EC, 83, C4, F4, 53, 56, B8, 84, DB, 42, 00, E8, 4E, 79, FD, FF, 68, F4, 01, 00, 00, A1, C8, E6, 42, 00, 8B, 00, 50, E8, 98, 7D, FD, FF, 8B, D8, B9, 34, DE, 42, 00, B2, 01, A1, BC, AD, 42, 00, E8, 39, D0, FF, FF, 8B, F0, 8B, C3, E8, 28, 46, FE, FF, 8B, C6, E8, F1, 4C, FD, FF, 5E, 5B, E8, 8A, 55, FD, FF, 00, 00, FF, FF, FF, FF, 08, 00, 00, 00, 42, 61, 72, 65, 54, 61, 69, 6C, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.5390

Developed / compiled with:
Microsoft Visual C++

Code size:
180 KB (184,320 bytes)

The file baretail.exe has been discovered within the following programs.

FPW Workflow Servidor  by LG lugar de gente
www.lg.com.br
About 4% of users remove it
Rave Mobile Safety Console  by Rave Mobile Safety
www.smart911.com
About 5% of users remove it
TkDiff  by John Klassa
sourceforge.net/projects/tkdiff
About 2% of users remove it
Unknown Device Identifier 7.00  by Huntersoft
www.zhangduo.com
About 1% of users remove it
 
Powered by Should I Remove It?

The file baretail.exe has been seen being distributed by the following 12 URLs.

ftp://ftp.devsystem.com.br/devsystem.com.br/.../baretail.exe

https://mega.nz/temporary/.../vcdUxISK

ftp://ftp.enfock.com.br/.../baretail.exe

http://files.downloadnow.com/s/software/12/77/84/.../baretail.exe

ftp://ftp.devsystem.com.br/devsystem.com.br/.../baretail.exe

ftp://ftp.lzt.com.br/upload/.../baretail.exe

ftp://ftp.enfock.com.br/.../baretail.exe

https://vault-ext.rafael.co.il/SFE/.../DownloadFile.ashx?Data=V2UtU0lFTV5AXlJvb3RcQXJjaGl2ZV5AXmJhcmV0YWlsLmV4ZV5AXl5AXjBeQF5CYWNrVVJMPU1zZ0Vycj1Nc2dJbmZvPQ==

http://www.baremetalsoft.com/.../baretail.exe

https://www.baremetalsoft.com/.../download.php?p=m

http://www.baremetalsoft.com/.../download.php?p=w

http://www.baremetalsoft.com/.../download.php?p=m

Scan baretail.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.