» battlefield_hardline_repack-torrent.exe
Overview
Analysis
File Details

battlefield_hardline_repack-torrent.exe

Dr.Web

Force LLC

The executable battlefield_hardline_repack-torrent.exe, “SpIDer Agent for Windows” has been detected as malware by 1 anti-virus scanner.

File name:

Publisher:

Doctor Web, Ltd. (signed by Force LLC)

Product:

Dr.Web ®

Description:

SpIDer Agent for Windows

Version:

6.0.1.07066

MD5:

21e89e40f011f98e69798c5f2a748fa1

SHA-1:

5b2918f9ce3f5e41436c6b3d6ec304d5502f3740

SHA-256:

9d0a5cabc7e72e498ff47842d68e6c59b54834788dbad3ed4201dae170058bad

Scanner detections:

1 / 68

Status:

Malware

Analysis date:

9/22/2024 8:15:07 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP (M)

17.3.15.22

File size:

1.2 MB (1,212,888 bytes)

Product version:

6.0.1.07066

Original file name:

SpIDerAgent.exe

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\battlefield_hardline_repack-torrent.exe

Digital Signature

Signed by:

Force LLC

Authority:

COMODO CA Limited

Valid from:

5/5/2015 5:00:00 AM

Valid to:

5/5/2016 4:59:59 AM

Subject:

CN=Force LLC, O=Force LLC, POBox=119331, STREET=Vernandskogo 29, L=Moscow, S=Moscow, PostalCode=119331, C=RU

Issuer:

CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

7F1FBFEC9EBD89CCB543E7C5811DE223

File PE Metadata

Compilation timestamp:

6/20/1992 3:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

Entry address:

0xEFB51

Entry point:

50, 60, C7, 44, 24, 20, 0F, 0B, 21, 80, E8, 62, 4D, 00, 00, CA, A1, 8C, D1, DC, 06, E2, 02, E0, 28, 53, FB, 6F, B1, 2A, C3, B4, E8, 50, C7, 93, CF, 94, 5F, 3D, 28, 1E, ED, 64, 43, BF, DB, 2E, 77, 19, 4C, 3F, 31, BA, F6, 33, 01, 8C, EA, D9, F5, 93, 47, CF, 23, E8, 84, 31, CF, 01, 50, 6F, AC, 9E, 49, AC, C4, 2F, 3E, 1F, 80, FF, 1A, 3B, 32, 23, 6D, 91, 98, BD, D3, E3, FA, DB, 6C, 23, B4, EB, D6, 07, 8E, E7, B9, 85, 6C, 88, 61, 4F, E7, 9B, C3, AD, AB, C2, 13, D1, 32, E1, 4B, BC, AE, 28, E4, 7E, 72, B3, A5, D9... 
[+]

Code size:

649 KB (664,576 bytes)

Remove battlefield_hardline_repack-torrent.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.