home

eset_t1865937700344246t_.exe

Facebook Malware Scanner

Facebook, Inc.

This is a setup program which is used to install the application. The file has been seen being downloaded from scontent-fra3-1.xx.fbcdn.net.
Publisher:
Facebook Inc.  (signed by Facebook, Inc.)

Product:
Facebook Malware Scanner

Version:
0.06

MD5:
157f58aea741eca8e4a0c7e6dd75b3cd

SHA-1:
17b38460d2f39c069190e9db03c92e95546ef191

SHA-256:
fd7c1a83a7ffd139f0218b5b75e74eab5f4a33cfe656d257908f359226a7f551

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 6:25:57 AM UTC  (today)

File size:
4.9 MB (5,135,576 bytes)

Product version:
0.06

Copyright:
2004-present Facebook. All Rights Reserved.

File type:
Executable application (Win64 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\eset_t1865937700344246t_.exe

Digital Signature
Signed by:
Facebook, Inc.

Authority:
DigiCert Inc

Valid from:
5/13/2016 3:00:00 AM

Valid to:
5/26/2017 3:00:00 PM

Subject:
CN="Facebook, Inc.", O="Facebook, Inc.", L=Menlo Park, S=CA, C=US, PostalCode=94025, STREET=1601 Willow Rd., SERIALNUMBER=3835815, OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, OID.2.5.4.15=Private Organization

Issuer:
CN=DigiCert EV Code Signing CA (SHA2), OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
035BCAAA1D49BB2F4B788F8C9D8CB7EE

File PE Metadata
OS version:
4.0

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
3.0

Entry address:
0x55D60

Entry point:
5C, 49, 60, 03, 2C, 12, EF, 61, 0C, 63, 94, E6, 51, A2, E7, 35, 76, 5D, 71, A6, D1, 0E, 0A, 6A, 18, 91, 62, 68, FE, 16, 4C, 95, D4, 7D, 80, 5C, FA, 9C, 34, 31, 60, 1F, F2, 81, BD, E2, 07, 77, A9, 12, EC, 34, CD, E8, 31, DC, 58, 56, 24, CC, 5C, 70, C7, BC, 4B, 2A, CF, 19, AC, 63, 4D, 8C, D1, AE, 1A, 48, 63, 45, F0, 01, 51, EF, C7, 07, 8E, AB, 44, 1F, 1E, 60, C9, BF, 5A, 37, 84, 19, BF, A9, 44, 46, 9D, 3A, FD, 23, A3, B2, CB, 91, 1E, 7C, 5A, 00, 65, C1, 35, CF, 50, 11, AA, B4, 55, 70, B8, 8B, AB, FE, 46, 6F...
 
[+]

Code size:
4.6 MB (4,860,416 bytes)

The file eset_t1865937700344246t_.exe has been seen being distributed by the following URL.

https://scontent-fra3-1.xx.fbcdn.net/v/t39.2507-6/.../ESET_T1865937700344246T_.exe

Scan eset_t1865937700344246t_.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.