» contract killer sniper hack tool 2014 updated version no survey.exe
Overview
Analysis
File Details
Behaviors (1)

contract killer sniper hack tool 2014 updated version no survey.exe

ALEKSANDR SHORNIKOV

The application contract killer sniper hack tool 2014 updated version no survey.exe by ALEKSANDR SHORNIKOV has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It runs as a scheduled task under the Windows Task Scheduler triggered daily at a specified time.

File name:

Publisher:

ALEKSANDR SHORNIKOV (signed and verified)

MD5:

ec239daaa46eaec3c84b6f8876c5087b

SHA-1:

ed89c48d7f0d59e52a3ea6e2a942136911cb48a4

SHA-256:

1ab8e3040d3e5a2e7bbe722245b12d6747cabb70d18e7810d5aef1d478fead9c

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

11/5/2024 3:24:14 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Optional.PCUtilities (M)

17.2.24.1

File size:

2.4 MB (2,564,816 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\ProgramData\{018303df-7081-8013-0183-303df7080f7d}\contract killer sniper hack tool 2014 updated version no survey.exe

Digital Signature

Signed by:

ALEKSANDR SHORNIKOV

Authority:

Unizeto Technologies S.A.

Valid from:

6/30/2014 2:14:25 PM

Valid to:

6/30/2015 2:14:25 PM

Subject:

E=shorsashka@mail.ru, CN=ALEKSANDR SHORNIKOV, O=ALEKSANDR SHORNIKOV, C=RU

Issuer:

CN=Certum Code Signing CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:

2BC59693E98782662377A24E813EB37D

File PE Metadata

Compilation timestamp:

11/5/2012 2:25:20 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

Entry address:

0x21223B

Entry point:

E8, 54, 12, 00, 00, E9, 00, 00, 00, 00, 6A, 14, 68, B0, 07, 64, 00, E8, 5F, 17, 00, 00, E8, 21, 14, 00, 00, 0F, B7, F0, 6A, 02, E8, E7, 11, 00, 00, 59, B8, 4D, 5A, 00, 00, 66, 39, 05, 00, 00, 40, 00, 74, 04, 33, DB, EB, 33, A1, 3C, 00, 40, 00, 81, B8, 00, 00, 40, 00, 50, 45, 00, 00, 75, EB, B9, 0B, 01, 00, 00, 66, 39, 88, 18, 00, 40, 00, 75, DD, 33, DB, 83, B8, 74, 00, 40, 00, 0E, 76, 09, 39, 98, E8, 00, 40, 00, 0F, 95, C3, 89, 5D, E4, E8, C8, 0B, 00, 00, 85, C0, 75, 08, 6A, 1C, E8, DC, 00, 00, 00, 59, E8... 
[+]

Entropy:

1.3937

Code size:

2.1 MB (2,192,384 bytes)

Scheduled Task

Task name:

Bidaily Synchronize Task[973b]

Trigger:

Daily (Runs daily at 3:10:00 PM)

Remove contract killer sniper hack tool 2014 updated version no survey.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.