home

bbb+to+csv+file+converter_10924_i52487566_il345.exe

Runner Utility

LLC Arctic West

The file bbb+to+csv+file+converter_10924_i52487566_il345.exe has been detected as malware by 1 anti-virus scanner.
Publisher:
Dummy, Ltd.  (signed by LLC Arctic West)

Product:
Runner Utility

Version:
1.0.0.151

MD5:
5d95da0e2777c62e8fd541ed0bb1c143

SHA-1:
7c4ce31675894b6846147a2a861c210c615ccb3e

SHA-256:
2302d4924a92578c708030cc3b02fe426cb2af91406c27d0fa189230893b5c02

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
11/15/2024 4:53:25 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.3.4.5

File size:
1.9 MB (2,025,472 bytes)

Product version:
1.0.0.151

Copyright:
Copyright (C) 2013

Original file name:
runner.exe

Language:
English (United States)

Common path:
C:\users\{user}\downloads\bbb+to+csv+file+converter_10924_i52487566_il345.exe.part

Digital Signature
Signed by:
LLC Arctic West

Authority:
COMODO CA Limited

Valid from:
8/25/2015 7:00:00 AM

Valid to:
8/25/2016 6:59:59 AM

Subject:
CN=LLC Arctic West, O=LLC Arctic West, STREET=Lviv highway 1, L=Mikolaiv, S=Lvovskaja, PostalCode=81600, C=UA

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
416057CF015B4832DC973BA203AAB312

File PE Metadata
Compilation timestamp:
8/31/2015 12:43:05 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

Entry address:
0x2688F0

Entry point:
68, 5C, 22, D5, 0B, E8, 14, D7, FC, FF, 6D, D2, E8, 19, 74, 4C, 87, D3, 39, 73, F4, 6B, 9B, F2, FB, 12, 42, A0, 02, 37, 30, E4, BD, 3C, 03, 46, 81, B9, 37, 77, 7B, 3A, 56, 3C, 70, 0D, 63, 49, EE, 0C, 08, 5C, B5, C0, 1D, A7, 22, 16, 09, 80, FF, D0, 73, 33, 9C, 99, 54, 4A, EE, BE, BA, 6D, F1, C3, A3, 07, 07, A7, D5, 3A, DE, 18, D5, 01, A2, 09, FF, 32, 9D, 1A, 65, 9B, F2, 21, BE, E0, 16, D0, A9, 50, A9, AC, 01, 5D, 6E, E8, 3D, 39, 55, 88, BD, 50, F8, 8D, 78, C1, 1D, 9A, 30, EB, DF, 2B, 8A, 4D, 39, 2A, 87, 64...
 
[+]

Entropy:
7.9924  (probably packed)

Code size:
1.9 MB (2,014,208 bytes)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.