home

elves2.exe

This is a setup program which is used to install the application.
MD5:
2fb2710852912e947f4b95fe61d04e3f

SHA-1:
11ab1960961b15d5ab15d90d04d12dfc3a32f55e

SHA-256:
288bd28f950c65e876751a3cc3f4cec5dc617329f4959c92c612355ea3cf6b9d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 8:44:27 AM UTC  (today)

File size:
1.5 MB (1,526,272 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
11/29/2000 9:08:02 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:pqaTYH2/lJtWOUR3mxc2C+VDPqJfbZiKhDpmANZCHqE5sYAcjXIIDblt:5yEJ82x3CWjafbxRNZOTOYAcc

Entry address:
0x1000

Entry point:
A1, 84, E1, 44, 00, C1, E0, 02, A3, 88, E1, 44, 00, 57, 51, 33, C0, BF, EC, EB, 45, 00, B9, 48, 44, 46, 00, 3B, CF, 76, 05, 2B, CF, FC, F3, AA, 59, 5F, 52, 6A, 00, E8, 5E, C2, 04, 00, 8B, D0, E8, B7, 92, 02, 00, 5A, 6A, 00, E8, 1F, A1, 02, 00, 59, 68, 4C, E1, 44, 00, 6A, 00, E8, 42, C2, 04, 00, A3, 8C, E1, 44, 00, 6A, 00, E9, 6A, 04, 03, 00, E9, 75, A1, 02, 00, 33, C0, A0, 79, E1, 44, 00, C3, A1, 8C, E1, 44, 00, C3, CC, B9, AC, 00, 00, 00, 0B, C9, 74, 3C, 83, 3D, 84, E1, 44, 00, 00, 73, 0A, B8, E2, 00, 00...
 
[+]

Entropy:
7.8083  (probably packed)

Code size:
308 KB (315,392 bytes)

The file elves2.exe has been seen being distributed by the following 3 URLs.

temp:elves2.exe

http://host-a.net/dl/.../18456754521643

http://www.justlaugh.com/downloads/games/.../elves2.exe

Scan elves2.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.