» darkscreensetup.exe
Overview
Analysis
File Details
Downloads (1)

darkscreensetup.exe

Dark Screen

fxc

The application darkscreensetup.exe has been detected as a potentially unwanted program by 33 anti-malware scanners. This is a setup and installation application, however the file is not signed with an authenticode signature from a trusted source. The file has been seen being downloaded from fx-software.co.uk.

File name:

darkscreensetup.exe

Publisher:

fxc

Product:

Dark Screen

Version:

1.0.1.1

MD5:

2ec0f52b393e4d55bb5a59ffb4a5eecb

SHA-1:

fd2542c9d283d5e4fd79325d2c14b348e5114b30

SHA-256:

6333157cee24f871cefccf548ee880bd4a08b40b571ec5a5537be8b7b144a987

Scanner detections:

33 / 68

Status:

Potentially unwanted

Analysis date:

11/24/2024 11:10:33 AM UTC (today)

Scan engine

Detection

Engine version

AVG

Generic4

2015.0.3410

Baidu Antivirus

AdWare.Win32.Rabio

4.0.3.14718

Bkav FE

W32.Clod205.Trojan

1.3.0.4959

Comodo Security

UnclassifiedMalware

18852

IKARUS anti.virus

Win32.SuspectCrc

t3scan.1.6.1.0

Malwarebytes

Adware.Rabio

v2014.07.18.01

McAfee

Artemis!2EC0F52B393E

5600.7066

Norman

Suspicious_Gen2.AEFHK

11.20140718

nProtect

Trojan-Clicker/W32.Rabio.1082893

14.07.14.01

Quick Heal

AdWare.Rabio.rq.n8 (Not a Virus)

7.14.14.00

Vba32 AntiVirus

AdWare.Rabio

3.12.26.3

VIPRE Antivirus

Trojan.Win32.Malware.a

31276

ViRobot

Adware.Rabio.1082893

2011.4.7.4223

File size:

1 MB (1,082,893 bytes)

Product version:

1.0.1.1

File type:

Executable application (Win32 EXE)

Language:

English (United States)

File PE Metadata

Compilation timestamp:

6/20/1992 12:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

24576:kWmAFubSZM+03Ysn6pjJj5I8coz9a0aZehV4tpIacMZeEYoY8UoXOo4c0oIeOVyB:Y2ZM+0R6LtIoQ0aZHP5Z2o5zOHc0cOQB

Entry address:

0x25858

Entry point:

55, 8B, EC, 83, C4, F0, B8, 48, 57, 42, 00, E8, E8, FF, FD, FF, 66, B8, 02, 00, E8, 4F, D3, FE, FF, E8, 8A, FB, FF, FF, E8, 1D, E8, FD, FF, 90, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C++

Code size:

146.5 KB (150,016 bytes)

The file darkscreensetup.exe has been seen being distributed by the following URL.

http://fx-software.co.uk/DarkScreenSetup.exe

Remove darkscreensetup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.