home

easy-wifi-radar.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from files.downloadnow.com and multiple other hosts.
MD5:
043c0b936d44a14cfe1639be60bfeab8

SHA-1:
72332f0f42639ea86d00388e8c1d9e20228dbc6c

SHA-256:
ea961995c7539b81d70c7de6ac4a7b202ada5bdc3ddf7f1e36bd713ad54277cc

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
11/23/2024 6:07:48 AM UTC  (today)

Scan engine
Detection
Engine version

Fortinet FortiGate
Riskware/WiFiRadar
9/8/2014

ViRobot
Backdoor.Win32.A.BlackHole.2197393[UPX]
2011.4.7.4223

File size:
2.1 MB (2,238,508 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\easy-wifi-radar.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
49152:1vNyq/7NXegCYNZoO4lgc8sdF3ihlkAn7q/T0lEIhJ2:1NROONZoOuN3UlveAf2

Entry point:
50, 4B, 03, 04, 14, 00, 00, 00, 08, 00, F2, 6B, 41, 37, ED, F6, 6E, F9, 82, 27, 22, 00, 7E, 44, 22, 00, 24, 00, 00, 00, 45, 61, 73, 79, 20, 57, 49, 46, 49, 20, 52, 61, 64, 61, 72, 20, 31, 2E, 30, 2E, 35, 76, 20, 49, 6E, 73, 74, 61, 6C, 6C, 65, 72, 2E, 65, 78, 65, EC, F8, 79, 3C, 94, 7F, F4, 3F, 0E, CF, 66, 66, CC, 0C, 06, 83, C1, 60, EC, BB, EC, DB, A0, B1, 0D, B2, 0D, 83, B1, 6F, 59, 26, 7B, CC, 20, A1, 61, 10, 06, 29, A5, 4D, 85, 36, 85, B2, 6F, 45, F6, 25, 2A, 0A, 11, 6A, 94, 4A, 06, A9, 84, 4A, B9, DF...
 
[+]

Entropy:
7.9991  (probably packed)

The file easy-wifi-radar.exe has been seen being distributed by the following 6 URLs.

http://files.downloadnow.com/s/software/11/37/64/.../EasyWifiRadar.zip?token=1474986316_942786429bc674a3e780b297f34a809f&fileName=EasyWifiRadar.zip

http://gsf-cf.softonic.com/723/32f/.../file?SD_used=0&channel=WEB&fdh=no&id_file=54560&instance=softonic_en&type=PROGRAM&Expires=1478598858&Signature=fa6kAwue1HxBWrXTpW8NnRGi3AMRhS8UjexJkvuC8SY9jLZVriP3qlrnT9lDuo0jIxKCfmljM48iPKBK19yfKlOWHAfOAFTTZ57H8sRaggHMjBMVmQ1tCaj2XCazLvDKp84X2LFROXE34Go-aKRYSQ1YBQ7so1Cw2a~mekIRPg8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=EasyWifiRadar.zip

http://www.ranchsendgift.com/PGZVkvhfy v Q7DA9U1MNDXuNlLoTtK60qr69xlLCrzVf7OVpXrEXyjF_D7F4swXe5pzv3RiCLQmEWoYwb26oOjFP8KwW7TBPqYVE9CgB6BxDbtQxt65QN0geycxqaDp5Kk7cPFpVtmuTTRJJFC4JFlhz5c2e0H5rxLEiU7MDtawYfF r1dA2aR8PGInmISyUTThQR9EIpRl_TvFDy2RuVSXF2j7pPsyIfJ4Yqe7edAec0Wkz_B3mbUj2fB5peUMvgx2apw7_oniMa7zm9PIu5DNz17dXsN1QFQUCC1NBSC2se46EJJuNTPjKWPpmF8bXvQPgd92DTjYZhiMUfpf6usHAapFtPt6wH1kOxsUjEPlEqRxuv0lswCJRrNSQR8c6kzyguAXTiV9wlJE lndlPKGLH9ytSkQhtesqXEOnmDKKTIvng vX5DKsGbAZ6tY5bIM2ptU68hYChJaFyM2V998LVoOjti5c4lix_21rH6VJd9vO_AZhCW7GMiDIiTSDSg9ZkEEk6CZ7hHmGIVYDKLIwxaS4KFuHIcKsNi9HvyjsXDLbszl6dPhjpv5DZHX6cn53iyPvuQEocEirx5UP5KZzVJYyg==-GygAAARqc7FZmqFYzAcyeIYwtuRakEJ2UUhuHOiNiZ9mMzSed96kloLi2tcB-e

http://slc.lo4d.com/files/.../EasyWifiRadar.zip

http://www.makayama.com/EasyWifiRadar.zip

http://s02.mydiv-downloads.net/download/aHR0cDovL3NvZnQubXlkaXYubmV0L3dpbi9kb3dubG9hZC1FYXN5LVdpRmktUmFkYXIuaHRtbA==/fb120/56f16ff46c5f9/soft/dfiles/ru/win/Easy-WiFi-Radar/.../EasyWifiRadar.zip

Scan easy-wifi-radar.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.