home

epsxe_for_android_v1.9.5.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from r.tusfiles.net a known adware distribution point operated by Artur Kozak.
MD5:
e082fb160e28f010b45d3458f8b1a312

SHA-1:
6c05f98b3d69796342a4b6fe9f1fae978d81fce6

SHA-256:
e2ab213a837c9a4bdaee45bbd5b54fdd38d35f852c69eb2f0de66be073d1959e

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/5/2024 11:06:54 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

AegisLab AV Signature
Spr.Andr.Smalihook.A!c
2.1.4+

Avira AntiVirus
SPR/ANDR.SmaliHook.A.Gen
8.3.2.4

File size:
2.4 MB (2,504,450 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\epsxe_for_android_v1.9.5.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
49152:Cr9NcOowBp4opLBm1VEO1j+RcDHalx14nx/8TIZ/8TI2/8TIcPQx/8TIwMefe9Ho:4LDf10jucD6bU9csctc1Q9cCHTM

Entry point:
50, 4B, 03, 04, 14, 00, 08, 00, 08, 00, 98, 42, FC, 42, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 14, 00, 00, 00, 4D, 45, 54, 41, 2D, 49, 4E, 46, 2F, 4D, 41, 4E, 49, 46, 45, 53, 54, 2E, 4D, 46, AD, 57, 49, 8F, A3, C8, 1A, BC, B7, D4, FF, A1, 8E, F3, 84, AA, C0, 06, BC, B4, 34, 07, B0, 29, 63, B3, 1A, E3, 8D, 4B, 89, 25, D9, 21, 71, 26, 98, E5, D7, 0F, D5, D3, 7A, AF, C7, 05, 35, AD, 79, 73, F2, 26, 07, 91, 91, 5F, 44, 46, 2A, 76, 1E, F9, 00, 97, CF, 27, 80, 70, 04, F3, 6F, 4F, 93, 17, EA, EB, 97, 15...
 
[+]

The file epsxe_for_android_v1.9.5.exe has been seen being distributed by the following URL.

https://r.tusfiles.net/d/.../ePSXe_for_Android_v1.9.5_Android.apk

Scan epsxe_for_android_v1.9.5.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.