» creaturecd_leopard.exe
Overview
Analysis
File Details
Downloads (1)

creaturecd_leopard.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from blackwh.w.interia.pl.

File name:

MD5:

9c4c204f77a87b385c25e4192743119b

SHA-1:

a35f0fa566d9e0d0936670e8621e1295ab7e581a

SHA-256:

a2bf5a4645677a34660b66804592bc00a9e11e680e2ab27c34189f9d1bac36f1

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

12/26/2024 8:21:20 AM UTC (today)

File size:

267.4 KB (273,816 bytes)

File type:

Executable application (Win64 EXE)

Common path:

C:\users\{user}\downloads\creaturecd_leopard.exe

File PE Metadata

OS bitness:

Win64

CTPH (ssdeep):

6144:dZmwXhBL/YIdSeOo75m3UnsSl/YIdSeOo75sUnsSKF:dZ1bL/kUXnsQ/kUHnsD

Entry point:

04, FD, 10, 69, 41, 00, 66, 89, 45, F8, FF, 75, FC, FF, 75, F8, E8, 52, 06, 00, 00, B9, 08, 69, 41, 00, 8B, C7, 83, 01, 08, 83, C1, 08, 4F, 85, C0, 75, F3, 81, 3D, 08, 69, 41, 00, D8, 0E, 00, 00, 76, 0A, 68, 00, 69, 41, 00, E8, 97, FE, FF, FF, 85, F6, 74, 3B, 83, FE, 01, 0F, 84, BE, 00, 00, 00, 83, FE, 02, 0F, 84, 42, 01, 00, 00, 83, FE, 03, 0F, 84, C9, 01, 00, 00, 83, FE, 04, 0F, 84, 50, 02, 00, 00, 83, FE, 05, 0F, 84, D0, 02, 00, 00, 83, FE, 06, 0F, 84, 50, 03, 00, 00, E9, 87, 04, 00, 00, A1, 18, 6B, 41... 
[+]

The file creaturecd_leopard.exe has been seen being distributed by the following URL.

http://blackwh.w.interia.pl/pliki/.../CreatureCD_Leopard.exe

Scan creaturecd_leopard.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.