» crack.exe
Overview
Analysis
File Details
Downloads (5)

crack.exe

The executable crack.exe has been detected as malware by 5 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from s7229.chomikuj.pl and multiple other hosts.

File name:

crack.exe

MD5:

03ba81690f89fb03d762a9fa83281544

SHA-1:

a5b272f2ac72ba54b032c33d8ab8defdb1d69668

SHA-256:

03c8c37650b49626726b721209fe29a4f2b8adf56eb63f9d861f406a1b61dd07

Scanner detections:

5 / 68

Status:

Malware

Analysis date:

12/28/2024 12:22:10 AM UTC (today)

Scan engine

Detection

Engine version

Agnitum Outpost

Trojan.Strictor

7.1.1

IKARUS anti.virus

Win32.SuspectCrc

t3scan.1.8.6.0

Malwarebytes

Trojan.Agent

v2015.03.17.09

Trend Micro House Call

Suspicious_GEN.F47V0304

7.2.76

VIPRE Antivirus

Trojan.Win32.Generic

38410

File size:

90.4 KB (92,540 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\software\dfx audio enhancer 11\crack.exe

File PE Metadata

Compilation timestamp:

6/26/2012 8:18:44 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

1536:Pi4iekw62derNaFOmd9excKkGbV3K5/j/5J/lYuiph4A6/:6ekw6dAFBd9excKkMVyD5J/lYdphL6/

Entry address:

0x91DC

Entry point:

55, 8B, EC, 6A, FF, 68, 20, D3, 40, 00, 68, F8, BF, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, F8, D0, 40, 00, 33, D2, 8A, D4, 89, 15, 5C, 1A, 41, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, 58, 1A, 41, 00, C1, E1, 08, 03, CA, 89, 0D, 54, 1A, 41, 00, C1, E8, 10, A3, 50, 1A, 41, 00, 33, F6, 56, E8, 52, 0B, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, B0, 00, 00, 00, 59, 89, 75, FC, E8, F5, 2B, 00, 00, FF, 15, FC, D0, 40, 00, A3, 6C, 1F, 41, 00, E8... 
[+]

Developed / compiled with:

Microsoft Visual C++ v6.0

Code size:

48 KB (49,152 bytes)

The file crack.exe has been seen being distributed by the following 5 URLs.

http://s7229.chomikuj.pl/File.aspx?e=Hlfya7ZKqCYv4N7NyDimdpVBX4QNUF3fPIBZlTZCAnoJlt-fjo9zjefHRa_SmXB6hafvew4GcgxyJZISmYM7GzxHKMWhMIWCWwW1fq8UHKduSOen2BYKb_phN4inj02mcjQrEjANFJ1THNs6XP2vfQ&pv=2

http://s7229.chomikuj.pl/File.aspx?e=Hlfya7ZKqCYv4N7NyDimdpVBX4QNUF3fPIBZlTZCAnr3hquwbUEPZg72ZdrrpMNO1ubHRnOXtIOildi0Z4H2AdrXis617EfROQ65LqwFzYsxgHupVHs9H_8Ec-dntUYnzhy65yJrxfYc0r-UjwpE3g&pv=2

http://s7229.chomikuj.pl/File.aspx?e=Hlfya7ZKqCYv4N7NyDimdpVBX4QNUF3fPIBZlTZCAnpyCkhasW4dYycglpwXcY_qLonfOY5MQtx_mkFQzrhU0ew96PbNp_8-W8y-JkZpuCPYEpDQmydQaFYmfB6nfryqPU75s5yJoy-CXtBi2F_WbA&pv=2

http://s7229.chomikuj.pl/File.aspx?e=Hlfya7ZKqCYv4N7NyDimdpVBX4QNUF3fPIBZlTZCAnqYXQj5sosSLmABAqGuSKMrHJxi1BYJKYokSyXARIAzftJvwyyb-sqXUAPlOcxpHSurnGYp_ALOqGAezcAFtA6UAwqNFVdhwTwzcbyp7gps2Q&pv=2

http://revpx18.chomikuj.pl/.../File.aspx?e=Hlfya7ZKqCYv4N7NyDimdpVBX4QNUF3fPIBZlTZCAnprY39l3xRpJaiERd6XFDRBlebPwxVVmlwgf9-wJ-PgoHbbsIrl5XpoIEYnIdOBFfJJ_jckfWYvGfjEx6daK1NtZjvPdm-IItDlHBkIikKBzg&pv=2

Remove crack.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.