brakieobrdoibf_obrbl_setup.exe

The executable brakieobrdoibf_obrbl_setup.exe has been detected as malware by 12 anti-virus scanners. The file has been seen being downloaded from ipsppra0khp-e0qgbjiz.netdna-ssl.com.
Version:
2.11.0.999

MD5:
86b6f8338cbbcdcfc5df32db53275189

SHA-1:
4485df615fb5c737fa127a1c167937741f2ff23f

Scanner detections:
12 / 68

Status:
Malware

Analysis date:
12/25/2024 1:50:54 AM UTC  (today)

Scan engine
Detection
Engine version

Arcabit
Trojan.Kazy.DB4D98
1.0.0.582

avast!
Win32:Malware-gen
2014.9-151029

Bitdefender
Gen:Variant.Kazy.740760
1.0.20.1510

Dr.Web
Trojan.DownLoader16.63151
9.0.1.0302

Emsisoft Anti-Malware
Gen:Variant.Kazy.740760
8.15.10.29.08

F-Secure
Gen:Variant.Kazy.740760
11.2015-29-10_5

G Data
Gen:Variant.Kazy.740760
15.10.25

Kaspersky
Trojan-Dropper.Win32.Agent.bjpqwe
14.0.0.1201

MicroWorld eScan
Gen:Variant.Kazy.740760
16.0.0.906

Panda Antivirus
Generic Suspicious
15.10.29.08

Qihoo 360 Security
HEUR/QVM10.1.Malware.Gen
1.0.0.1015

Reason Heuristics
Threat.Win.Reputation.IMP
15.11.6.15

File size:
1.4 MB (1,450,496 bytes)

Product version:
2.11.0.999

Copyright:
Copyright (C) 2014

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Documents and Settings\{user}\Local settings\temporary internet files\content.ie5\{random}\brakieobrdoibf_obrbl_setup.exe

File PE Metadata
Compilation timestamp:
9/24/2015 11:52:13 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

CTPH (ssdeep):
24576:c5Miu4MmvW8YXkEQxAIjLxjlgfEB7fKFvQSSu9b3WQJzvFPoRp+FEs:K9YXkEQxA0LxjlMtgQJzvM+FEs

Entry address:
0x47680

Entry point:
E8, 87, 0B, 07, 00, E9, 37, 3C, 06, 00, 55, 8B, EC, 8B, 4D, 08, 85, C9, 75, 15, E8, 44, 67, 06, 00, C7, 00, 16, 00, 00, 00, E8, CA, B3, 06, 00, 6A, 16, 58, 5D, C3, A1, 48, 17, 54, 00, 89, 01, 33, C0, 5D, C3, 6A, 04, B8, 2D, 1E, 4C, 00, E8, 80, 45, 06, 00, 89, 4D, F0, 83, 4D, FC, FF, E8, 58, 08, 00, 00, E8, 3D, 45, 06, 00, C3, 6A, 08, B8, C3, 1F, 4C, 00, E8, 62, 45, 06, 00, 8B, F1, 89, 75, F0, 83, 65, FC, 00, 8D, 4E, 08, 89, 4D, EC, C6, 45, FC, 00, E8, 2E, 08, 00, 00, 83, 4D, FC, FF, 89, 75, EC, 83, 4D, FC...
 
[+]

Entropy:
6.3162

Code size:
932.5 KB (954,880 bytes)

The file brakieobrdoibf_obrbl_setup.exe has been seen being distributed by the following URL.

Remove brakieobrdoibf_obrbl_setup.exe - Powered by Reason Core Security