home

dmc+14tr-lng.exe

DmC: Devil May Cry - Released 26 jan 2013 - Updated 28 Jan 2013 - Trainer by LinGon

LinGon

The application dmc+14tr-lng.exe has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup program which is used to install the application. The file has been seen being downloaded from s5914.chomikuj.pl.
Publisher:
LinGon

Product:
DmC: Devil May Cry - Released 26 jan 2013 - Updated 28 Jan 2013 - Trainer by LinGon

Description:
A LinGon Trainer

Version:
1.02.0003

MD5:
b52997596220e4af9fa6f1504b1fbd93

SHA-1:
c6f558518c26b101a451d2f4d45ded3642f39007

SHA-256:
f65ebda39699e896d75098b7a5f7cdcb8eac8b82b75ddc800949d9bd664717d4

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/18/2024 6:38:58 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Lingon.Bundler.Meta (L)
16.2.8.3

File size:
4.8 MB (5,069,312 bytes)

Product version:
1.02.0003

Copyright:
LinGon

Original file name:
DmC+14Tr-LNG_28_Jan_2013_FIXED.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

File PE Metadata
Compilation timestamp:
1/28/2013 9:52:05 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
24576:AA0spDc7ql6Znrs5G2MrE6y+5B3DZ3l1H7v/LrfkvwrA967WjfhK1Rnwy9GS:AKDc7qlms5G2/mbb/Lrfkv+A6nweGS

Entry address:
0x3ABC

Entry point:
68, 40, E4, 4F, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 60, 00, 00, 00, 40, 00, 00, 00, 15, E0, 6E, D0, 67, 83, 53, 48, 89, 9C, 2E, E1, 33, DC, 36, C5, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 2D, 43, 30, 30, 30, 2D, 54, 72, 61, 69, 6E, 65, 72, 50, 52, 4A, 78, 00, 7D, 23, 32, 2E, 54, 72, 61, 69, 6E, 65, 72, 20, 43, 6F, 64, 65, 64, 20, 26, 20, 4D, 61, 64, 65, 20, 62, 79, 20, 4C, 69, 6E, 47, 6F, 6E, 00, 79, 00, 00, 00, 00, FF, CC, 31, 00, FE, CC, B9, 05, C3, 45, 3A, D5, 4B, AB, 58, E6...
 
[+]

Developed / compiled with:
Microsoft Visual Basic v5.0/v6.0

Code size:
3.5 MB (3,696,128 bytes)

The file dmc+14tr-lng.exe has been seen being distributed by the following URL.

http://s5914.chomikuj.pl/File.aspx?e=-yUlcDyBuqxXhRYdIKg77Wpcmnb4Q3EbYdsuMHm_uxnLKAVnSX26gt6L_5NbBbhDxIqfl052_mQEtJqNYG1Z0r5vuvey5kZAUc2V-pX3Sjm3oqNi7MtAzsUoXqOExumBaPz_4LO-7dAGwyCi1F0x4Q&pv=2

Remove dmc+14tr-lng.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.