home

dodge-challenger-srt8-hemi-drag-tuning.exe

dodge-challenger-srt8-hemi-drag-tuning

The executable dodge-challenger-srt8-hemi-drag-tuning.exe, “dodge-challenger-srt8-hemi-drag-tuning Setup ” has been detected as malware by 4 anti-virus scanners. The program is a setup application that uses the Inno Setup installer, however the file is not signed with an authenticode signature from a trusted source. The file has been seen being downloaded from th.softoware.net.
Product:
dodge-challenger-srt8-hemi-drag-tuning

Description:
dodge-challenger-srt8-hemi-drag-tuning Setup

MD5:
4f50b6d90be840c6ef64c337d8fe76ed

SHA-1:
e208b795ef14becd713ccebdebc640ad435a366e

SHA-256:
541569b29e4a1b224d41692aa46497fb7735dbfcfc28f0b6dfab9cb0be79e974

Scanner detections:
4 / 68

Status:
Malware

Analysis date:
11/27/2024 10:36:00 AM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:SaliCode
160518-2

ESET NOD32
Win32/Sality.NBA virus
8.0.319.0

F-Prot
W32/Sality.gen2
4.6.5.141

VIPRE Antivirus
Threat.4721115
49498

File size:
5.5 MB (5,718,281 bytes)

Product version:
1.5

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\dodge-challenger-srt8-hemi-drag-tuning.exe

File PE Metadata
Compilation timestamp:
6/20/1992 5:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:/tDkt0KMIQS4GaP6AQhJEwfab2ljSacdkMANDdfkc1xv6E/jK7QJp1VyviUgy4S8:Z2cS4GaOv62tMkdKc1kErKUJp1VyUF

Entry address:
0xA5F8

Entry point:
0F, AF, EB, 87, D7, FF, C9, 69, F8, AC, C8, 05, 42, C6, C1, 88, 11, D3, 87, F3, 23, D1, 33, DB, 0F, AF, D6, 8B, C7, 84, FB, 0F, AF, C9, 80, DD, CB, 2B, ED, 85, D1, F6, C7, C4, 03, E8, 8D, 3D, 9D, 66, 71, DE, FE, C2, F2, 28, CA, 86, D3, 1B, D8, 15, 6B, A9, B9, 71, B5, B6, 33, FF, 0F, AF, D9, 33, D7, 8A, D3, 88, CF, 8B, C6, C7, C1, E2, 0C, CC, 50, 81, C7, 01, 00, 00, 00, 69, C5, 60, 82, 18, 76, F7, C6, 38, 96, 3D, 60, 0F, B6, F3, C7, C1, A1, 08, AF, C4, 0F, BF, CD, F6, C4, 71, 88, F9, 74, 02, 88, F7, 81, FF...
 
[+]

Entropy:
7.9991  (probably packed)

Code size:
39.5 KB (40,448 bytes)

The file dodge-challenger-srt8-hemi-drag-tuning.exe has been seen being distributed by the following URL.

http://th.softoware.net/get-gta-san-andreas-mod-dodge-challenger-srt8-hemi-drag-tuning.html?ir=1

Remove dodge-challenger-srt8-hemi-drag-tuning.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.