command & conquer generals.exe

The application command & conquer generals.exe has been detected as a potentially unwanted program by 16 anti-malware scanners. The file has been seen being downloaded from www.indirbir.com.
Version:
1.0.0.0

MD5:
7ef5b267548709db7744f303859ab0bb

SHA-1:
2fa95d298dd643a5094b8e83fb11217d2ab26c65

SHA-256:
a41d1b8f17ff6ec8f21fa9425a55f09f3d2ce5397a4733ebca9c5c348b42b3a3

Scanner detections:
16 / 68

Status:
Potentially unwanted

Analysis date:
12/27/2024 2:47:27 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Adware.Strictor.52822
996

Agnitum Outpost
PUA.Anasayfa
7.1.1

Avira AntiVirus
TR/Drop.Agent.5831263
7.11.149.142

avast!
Win32:Dropper-gen [Drp]
2014.9-140514

AVG
Generic5
2015.0.3474

Bitdefender
Gen:Variant.Adware.Strictor.52822
1.0.20.670

Emsisoft Anti-Malware
Gen:Variant.Adware.Strictor.52822
8.14.05.14.07

ESET NOD32
Win32/AdWare.Anasayfa (variant)
8.9799

F-Secure
Gen:Variant.Adware.Strictor.52822
11.2014-14-05_4

G Data
Gen:Variant.Adware.Strictor.52822
14.5.24

IKARUS anti.virus
Trojan-Dropper.Agent
t3scan.1.6.1.0

K7 AntiVirus
Adware
13.177.12067

Malwarebytes
PUP.Optional.Anasayfa.A
v2014.05.14.07

MicroWorld eScan
Gen:Variant.Adware.Strictor.52822
15.0.0.402

NANO AntiVirus
Riskware.Win32.Anasoyfar.cwywuc
0.28.0.59826

VIPRE Antivirus
Trojan.Win32.Generic
29202

File size:
5.6 MB (5,831,240 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\command & conquer generals.exe

File PE Metadata
Compilation timestamp:
11/24/2013 1:33:46 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:Isud2rCIkBC09p0Sbm21O292WFoLgd3XAvvNL5tQ8GKJabhKAFSQ99TdDMHooVtx:T/CIkBF923NL5O8GKJabhKAFSQGx7hj

Entry address:
0x3FF844

Entry point:
55, 8B, EC, 83, C4, F0, 53, B8, 7C, 1E, 7F, 00, E8, 6F, EB, C0, FF, 8B, 1D, F4, C5, 80, 00, 8B, 03, E8, 2A, FB, DE, FF, 8B, 03, B2, 01, E8, 6D, 18, DF, FF, 8B, 0D, 80, C2, 80, 00, 8B, 03, 8B, 15, 30, 02, 7F, 00, E8, 26, FB, DE, FF, 8B, 0D, 84, C5, 80, 00, 8B, 03, 8B, 15, F4, B8, 7E, 00, E8, 13, FB, DE, FF, 8B, 0D, 30, BD, 80, 00, 8B, 03, 8B, 15, B0, F4, 7E, 00, E8, 00, FB, DE, FF, 8B, 0D, D0, BD, 80, 00, 8B, 03, 8B, 15, F0, E8, 7E, 00, E8, ED, FA, DE, FF, 8B, 0D, E0, C9, 80, 00, 8B, 03, 8B, 15, 04, D9, 7E...
 
[+]

Entropy:
6.5586

Developed / compiled with:
Microsoft Visual C++

Code size:
4 MB (4,186,624 bytes)

The file command & conquer generals.exe has been seen being distributed by the following URL.

Remove command & conquer generals.exe - Powered by Reason Core Security