» deliciousemilysbigsuprise.exe
Overview
Analysis
File Details
Programs (1)
Network (1)

deliciousemilysbigsuprise.exe

Delicious: Emily's 8 Story

VELOCITY | ~HTTP://RAZZ.OWNS.IT~

File name:

Publisher:

VELOCITY | ~HTTP://RAZZ.OWNS.IT~

Product:

Delicious: Emily's 8 Story

Description:

Delicious: Emily's Big Suprise

Version:

1.0.0.0

MD5:

3f40ffe3552f1d5ab5eddc742bcadb94

SHA-1:

85626e3204db967957771a04855ff9f463dd3328

SHA-256:

f5ed4ca10d0a7243b1f0d1f35c404ce61f1839bd6abb10a447166cfc5d6ded93

Scanner detections:

3 / 68

Status:

Inconclusive (not enough data for an accurate detection)

Analysis date:

11/25/2024 4:58:14 PM UTC (today)

Scan engine

Detection

Engine version

McAfee

Artemis!3F40FFE3552F

5600.6536

Trend Micro House Call

TROJ_GEN.R0C1H05CK15

7.2.364

VIPRE Antivirus

Backdoor.Graybird

39944

File size:

1.3 MB (1,384,960 bytes)

Product version:

1.0.0.9

Original file name:

GHDeliciousEmilys 8 Story.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\delicious - emilys big surprise\deliciousemilysbigsuprise.exe

File PE Metadata

Compilation timestamp:

6/13/2012 4:57:57 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

CTPH (ssdeep):

24576:LdHdMqLlOjcaBS8H+YLBREUYmsuhJeL5A5rEFPKNZ:nMKGBH9LvQmO5A+iH

Entry address:

0x1000

Entry point:

B8, 4C, 24, 8E, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, B3, C5, B0, B2, F0, 10, 03, AD, BC, 33, C0, 41, FB, F7, A4, F1, 9F, 3B, B9, 03, 90, F3, E1, C2, B3, 1D, D9, E3, 4A, 8F, F1, 83, A6, 7D, FC, 7E, 67, BB, 9F, 80, 5D, 74, 76, 3F, AB, 8D, 30, AA, A2, 82, 89, 6A, 15, 08, E9, 4F, D4, 9E, 15, BB, 68, 31, 56, B2, BF, 2F, 3B, 6A, 94, 36, 5A, CF, 76, D7, A7, EC, CC, 76, 43, 1F, E3, 57, C8, D0, 60, E8, DD, 8C, D8, 2A, 41, 72, 1B... 
[+]

Packer / compiler:

PECompact v2

Code size:

3.3 MB (3,465,728 bytes)

The file deliciousemilysbigsuprise.exe has been discovered within the following program.

Delicious - Emilys Big Surprise by Foxy Games

www.foxygames.info

10% remove it

The executing file has been seen to make the following network communication in live environments.

TCP (HTTP):

Connects to 150.34.13.149.zylom.net (149.13.34.150:80)

Scan deliciousemilysbigsuprise.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.