» crossfire hack master.exe
Overview
Analysis
File Details
Downloads (1)

crossfire hack master.exe

Windows Internet Explorer

Microsoft Corporation

This is a setup program which is used to install the application. The file has been seen being downloaded from fs05n2.sendspace.com.

File name:

Publisher:

Microsoft Corporation

Product:

Windows® Internet Explorer

Description:

Autoextrator de arquivo de gabinete Win32

Version:

8.00.7600.16385 (win7_rtm.090713-1255)

MD5:

c880dd2782bba7f770df974686d88831

SHA-1:

8510c4e277fefe589f4f4d7412ae1ff3bedcf666

SHA-256:

71afd41c98d2255bff7c92c93685361bd4b7fee9e9c6b71e5cdf84ffc2b3edf1

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

11/15/2024 9:38:28 PM UTC (today)

File size:

9 MB (9,437,184 bytes)

Product version:

8.00.7600.16385

Original file name:

WEXTRACT.EXE .MUI

File type:

Executable application (Win64 EXE)

Language:

Brazilian Portuguese

Common path:

C:\users\{user}\downloads\crossfire hack master.exe

File PE Metadata

Compilation timestamp:

7/13/2009 8:58:27 PM

OS version:

6.1

OS bitness:

Win64

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

6144:0aKMSD4YuaejWC2S1DgbGhbpWyN90QEYBfkIrRRX/:dK3D4lapC1DgqhYy90EkInX/

Entry address:

0xC9C8

Entry point:

48, 83, EC, 28, E8, F3, 02, 00, 00, 48, 83, C4, 28, E9, DA, FC, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 66, 66, 0F, 1F, 84, 00, 00, 00, 00, 00, 48, 3B, 0D, 09, 27, 00, 00, 75, 12, 48, C1, C1, 10, 66, F7, C1, FF, FF, 75, 03, C2, 00, 00, 48, C1, C9, 10, E9, 70, 03, 00, 00, CC, CC, CC, CC, CC, CC, CC, CC, 40, 53, 48, 83, EC, 20, 45, 8B, 18, 48, 8B, DA, 4C, 8B, C9, 41, 83, E3, F8, 41, F6, 00, 04, 4C, 8B, D1, 74, 13, 41, 8B, 40, 08, 4D, 63, 50, 04, F7, D8, 4C, 03, D1, 48, 63, C8, 4C, 23, D1, 49... 
[+]

Code size:

54 KB (55,296 bytes)

The file crossfire hack master.exe has been seen being distributed by the following URL.

https://fs05n2.sendspace.com/dl/dfe40ca671150d57349489697a272e63/56fbf5e27dc6dd0c/.../CROSSFIRE HACK MASTER.exe

Scan crossfire hack master.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.