BruteforceSaveData.exe

Bruteforce Save Data

2014 by Aldo Vargas - http://www.aldostools.org

Publisher:
2014 by Aldo Vargas - http://www.aldostools.org

Product:
Bruteforce Save Data

Version:
4.05.0001

MD5:
e25e56ff934ed7e39c9a500463b746e4

SHA-1:
ab1a18727bfd47d0ae90303d0f1857533617e991

SHA-256:
43083450af825f4dcb3274337c073f5abec77e1237eb9c1203b14e6dbb40f3dc

Scanner detections:
3 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
12/23/2024 11:51:19 AM UTC  (today)

Scan engine
Detection
Engine version

Baidu Antivirus
HackTool.Win32.BruteForce
4.0.3.1456

ESET NOD32
Win32/HackTool.BruteForce.CF
8.9725

Trend Micro House Call
TROJ_GEN.F47V0307
7.2.126

File size:
222.5 KB (227,840 bytes)

Product version:
4.05.0001

Copyright:
2014 by flatz & aldostools

Trademarks:
2014 by flatz & aldostools

Original file name:
BruteforceSaveData.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\bruteforce save data\bruteforcesavedata.exe

File PE Metadata
Compilation timestamp:
1/18/2014 2:12:52 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
4.20

CTPH (ssdeep):
6144:gteESSgTc3Had/9cd+Elyqq4qfZatTiA8a0F2EDA:gttQoHS1c8EQZ46ZcTY7FzD

Entry address:
0xEEBD0

Entry point:
60, BE, 15, 90, 4B, 00, 8D, BE, EB, 7F, F4, FF, 57, EB, 0B, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 75, D1, F8, 89, C5, EB, 0B, 01, DB, 75, 07, 8B...
 
[+]

Packer / compiler:
UPX v0.89.6 - v1.02 / v1.05 -v1.24

Code size:
216 KB (221,184 bytes)

The executing file has been seen to make the following network communications in live environments.

TCP (HTTP):
Connects to unknown.prolexic.com  (72.52.4.90:80)

TCP (HTTP):
Connects to lb-182-207.above.com  (103.224.182.207:80)

Scan BruteforceSaveData.exe - Powered by Reason Core Security