» {blocked}.exe
Overview
Analysis
File Details
Downloads (11)

{blocked}.exe

need for speed

This is a setup program which is used to install the application. The file has been seen being downloaded from s7528.chomikuj.pl and multiple other hosts.

File name:

{blocked}.exe

Product:

need for speed

Version:

1.0.0.0

MD5:

2e56601b8807bd07d26744b3c73f809b

SHA-1:

8861215899e9e0de6a5e291b9f99a8d5518a4472

SHA-256:

04cdfaa974583011b4214f39f6949824fd1eec1899a65e7417775b5026bb01fb

Scanner detections:

2 / 68

Status:

Inconclusive (not enough data for an accurate detection)

Analysis date:

11/4/2024 5:15:52 PM UTC (today)

Scan engine

Detection

Engine version

F-Prot

W32/S-099e6a31

v6.4.7.1.166

SUPERAntiSpyware

Trojan.Agent/Gen-Dropper

9436

File size:

74.5 KB (76,288 bytes)

Product version:

1.0.0.0

Original file name:

need for speed.exe

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\need for speed hot pursuit pc key gen.exe

File PE Metadata

Compilation timestamp:

10/23/2010 9:17:47 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

1536:JUTV7dLQ/aFTqQK5AgnQt/eziLtR3pFGtD4wBYXJS:UHLQ/aFTqQpY8/eWLtTFGFhBT

Entry address:

0x1352E

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

69.5 KB (71,168 bytes)

The file {blocked}.exe has been seen being distributed by the following 11 URLs.

http://s7528.chomikuj.pl/File.aspx?e=kT5nzO63xeE_yLsGFRCfZ1aTES_BDQsEDN1sjpQ48ocmPGIaBdXNjLGEX_x1deM7vysHBHGt8iBFlfd_PfvuJ3BWvJB4FKBguKhCm9SeFA2_XBJose0WRU2bvUFiXjQBaxiX11b9lz0XNThJAXyLrWD1QhwOanfEyl3ZZ6faGwCLmzamzE0JeAgE_zaMyYO1&pv=2

http://s7528.chomikuj.pl/File.aspx?e=kT5nzO63xeE_yLsGFRCfZ1aTES_BDQsEDN1sjpQ48ode3oqC9sDA6Kdd1dCw3CrFbwwAxP03E4wuXxvQL0fNtFYAEFvu5_ucdxbAKzZeu8ogN_gqcOMM4ChJfUROVtHwhGmEf06pdx8be3zmcewuVpR3ygbYyxJ6H9kMV1MszwDqMCxJSfVq3fGlNWWof-zA&pv=2

http://s7528.chomikuj.pl/File.aspx?e=kT5nzO63xeE_yLsGFRCfZ1aTES_BDQsEDN1sjpQ48odV3zsWAsDk6Q4MKCavCvFooZbNNCBMT6Px_KhOwsRcuJ_WY51sO35z3OPhiveEv7PAE3L_aCzyNIeZf33feN6f1rFOlKt6kwZgImBwJypPzulZsDi1PFhn6h2h4qvVPaBYKehbKwkRwrtp2wQBGbwA&pv=2

http://s7528.chomikuj.pl/File.aspx?e=kT5nzO63xeE_yLsGFRCfZ1aTES_BDQsEDN1sjpQ48oes5Zh2vPA3IaedYuIKGlTV8Qm54PSseyBEj26FmH4djNsrIxzZ7D7AoiddlSzQLGAlZX5O_Uwl-pbcvbG6BMiyt8c7f72VXfn2X0NXuPR6UVqEtQrbyJH_GwEYLBeg6_yzQXCF4jPav7gM9jU5KZSf&pv=2

http://s7528.chomikuj.pl/File.aspx?e=kT5nzO63xeE_yLsGFRCfZ1aTES_BDQsEDN1sjpQ48oeBNtZd2m-aWdL30Q58zgJIVIkVBttIaxQQWkk9YtVasJG-_CcnbbTnd4fDp7WLceOQ4Y1kj6Z48la_094DB4jOgbfvDxFPdtrDAISoqIyf-_XaXlZqS5q-Z67-UODSzyoPIgsRXT-5OoyTBpo9uM5a&pv=2

http://s7528.chomikuj.pl/File.aspx?e=kT5nzO63xeE_yLsGFRCfZ1aTES_BDQsEDN1sjpQ48oeZsY-Fopb3EvzknxGZiIMkWCxpoy2ahxskqt5WmSbHwHOHSoUbzOUDtAhNzp1CgJNogrKI2ptOEddbaLbnfhXjSNdbNiQKOzdPVHGXHDNktAr1S68yXr1HUQT2-9SUlt-JR1_EAHW0BXHPBZAzss4y&pv=2

http://s7528.chomikuj.pl/File.aspx?e=kT5nzO63xeE_yLsGFRCfZ1aTES_BDQsEDN1sjpQ48oceeUps0lNIW2kHO7HhAuJ49WrNRrbDJrgArC_nXsUbm38694_TJCzDLvoKkicK2trMwv-uMzLzsgvxqpaGLl5adhfnnIFTOSyisLcSTCPeRW7cRlF30iuPnuj-CZsQGsHPxGGMBsnRrLvWgk1aSwK-&pv=2

http://download1600.mediafire.com/hykp88ieepqg/.../NEED FOR SPEED HOT PURSUIT PC KEY GEN.exe

http://s7528.chomikuj.pl/File.aspx?e=kT5nzO63xeE_yLsGFRCfZ1aTES_BDQsEDN1sjpQ48ocICmtlUvZ-MxSZ-8CFdV7zVaoKytgvhz5VxMEsybVmi7wwgKASdEZP8GVbnOtXWYG9fZywyw4W8EyAHDbdIkaJXlpfJfuEc3CQ_47DJ3zs8AIWaQDw9tHqo9OSR-MkRhMRQhGgOhsl_BEg86UPaxzI&pv=2

http://s7528.chomikuj.pl/File.aspx?e=kT5nzO63xeE_yLsGFRCfZ1aTES_BDQsEDN1sjpQ48ofZbKkQntRzFYXSpxGRlu5iIunoF4CYMPEHzrvXtNs8tVoZ49JveboI1_ydkGZ5CF59lBH8nYR2rxeX7mHMpfBrwVmnL65Vt1os-qg3V6SEskJ2idRC27mHBaKiq7WMDHxRhzafZFd2dhZ0GI0hN9P9&pv=2

http://s7528.chomikuj.pl/File.aspx?e=kT5nzO63xeE_yLsGFRCfZ1aTES_BDQsEDN1sjpQ48oc0g4nM9WpegPOOVXmM_eDibAtPfJJnOXwwa4VOWiw_MLSevsLjlc9-erKLLusI-lQDw7zPEIVkva8R4dcAFvYiK7eTDkYQZ8T_VhjRsdP1Ox6UPflxuoGpjfasafUX1V9JwX0TpNlRX5lxo7mcaWUX&pv=2

Scan {blocked}.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.