home

cloud_av_uninstaller.exe

MD5:
56ae346f901a4bfea72651a8723e33af

SHA-1:
3b1e1161b9d16113c7f24ef2f4d72be5d5e890d9

SHA-256:
89d56e2640f0162bf17c7de6dd627244ae7fb74ba423351d403754145019f5c6

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 12:00:22 PM UTC  (today)

File size:
1.1 MB (1,102,688 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Documents and Settings\{user}\My documents\downloads\cloud_av_uninstaller.exe

File PE Metadata
OS bitness:
Win32

.NET CLR dependent:
Yes

CTPH (ssdeep):
24576:TuAMXHAzOb3z0Ne97TwTEg6VcFwHX7MGW3KmJ4F3f6glDg:TuAMXHAzOb3z6e97TwTEg6VcFwHX7MGA

Entry point:
00, EF, BF, BD, EF, BF, BD, 1B, EF, BF, BD, 72, EF, BF, BD, EF, BF, BD, 10, 73, 00, 00, 23, EF, BF, BD, 70, EF, BF, BD, EF, BF, BD, EF, BF, BD, 2E, 00, 00, EF, BF, BD, D8, 8D, EF, BF, BD, EF, BF, BD, 72, 00, 00, 1B, EF, BF, BD, 23, EF, BF, BD, 70, EF, BF, BD, EF, BF, BD, EF, BF, BD, EF, BF, BD, EF, BF, BD, EF, BF, BD, EF, BF, BD, EF, BF, BD, 0C, 00, 00, EF, BF, BD, EF, BF, BD, EF, BF, BD, EF, BF, BD, EF, BF, BD, EF, BF, BD, EF, BF, BD, 2D, 08, 00, 00, EF, BF, BD, EF, BF, BD, EF, BF, BD, 2E, 00, 00, EF, BF...
 
[+]

Entropy:
4.3772

The file cloud_av_uninstaller.exe has been seen being distributed by the following URL.

http://www.pandasecurity.com/resources/.../Cloud_AV_Uninstaller.exe

Scan cloud_av_uninstaller.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.