» Fable Anniversary Spolszczenie.exe
Overview
Analysis
File Details
Downloads (1)

Fable Anniversary Spolszczenie.exe

Fable Anniversary Spolszczenie

The executable Fable Anniversary Spolszczenie.exe has been detected as malware by 11 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from gry-skidrow.pl.

File name:

Product:

Fable Anniversary Spolszczenie

Version:

1.0.0.0

MD5:

ed2094eece48b3cf8b6b3a213290c0b5

SHA-1:

f0c7c53405d41d4262f21e6904fb6a9307405dd8

SHA-256:

63bfc70d43aee27eac22534c6fab6f5386f643f67697f1e3b7708f6ef3f61f28

Scanner detections:

11 / 68

Status:

Malware

Analysis date:

11/15/2024 12:28:14 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Kazy.750159

301

Arcabit

Trojan.Kazy.DB724F

1.0.0.597

Bitdefender

Gen:Variant.Kazy.750159

1.0.20.500

Emsisoft Anti-Malware

Gen:Variant.Kazy.750159

8.16.04.09.02

ESET NOD32

MSIL/Surveyer.CT (variant)

10.12601

Fortinet FortiGate

MSIL/Surveyer.CT!tr

4/9/2016

F-Secure

Gen:Variant.Kazy.750159

11.2016-09-04_7

G Data

Gen:Variant.Kazy.750159

16.4.25

Kaspersky

UDS:DangerousObject.Multi.Generic

14.0.0.390

MicroWorld eScan

Gen:Variant.Kazy.750159

17.0.0.300

Qihoo 360 Security

HEUR/QVM03.0.Malware.Gen

1.0.0.1077

File size:

3.1 MB (3,208,192 bytes)

Product version:

1.0.0.0

Original file name:

Fable Anniversary Spolszczenie.exe

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\fable anniversary spolszczenie.exe

File PE Metadata

Compilation timestamp:

8/4/2015 12:07:18 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

98304:FdWdYdWd2dWdidWd4dWdidWd6h97GxtQEdWd:j7M

Entry address:

0x2BE77E

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

2.7 MB (2,869,248 bytes)

The file Fable Anniversary Spolszczenie.exe has been seen being distributed by the following URL.

http://gry-skidrow.pl/faspolszczenie

Remove Fable Anniversary Spolszczenie.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.