home

facebook-messenger_facebook_messenger_francais_427630-v1.2.205.0.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from od.ccm2.net.
MD5:
38558c6426fb2c841dda659d45366f11

SHA-1:
af90b48619f451f10ff69e15d9742296a6f05859

SHA-256:
256f324fa06a9b17ca8a9c4cea63d5e772a0219d1385f7792b08a83cf3931f1d

Scanner detections:
3 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/23/2024 2:41:21 AM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Trojan.Win32.Generic.12B3F302!313783042
23.00.65.141226

Total Defense
Win32/Tnega.dICee
37.0.11285

Trend Micro House Call
Suspicious_GEN.F47V1114
7.2.362

File size:
482.3 KB (493,877 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\programs\facebook-messenger_facebook_messenger_francais_427630-v1.2.205.0.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
12288:KM+HFwtnysCJIlRfgfjCJLl4XfU85SNALN+1i:ElwtnnCJI824X88EALNqi

Entry point:
48, 54, 54, 50, 2F, 31, 2E, 31, 20, 32, 30, 30, 20, 4F, 4B, 0D, 0A, 53, 65, 72, 76, 65, 72, 3A, 20, 6E, 67, 69, 6E, 78, 0D, 0A, 44, 61, 74, 65, 3A, 20, 54, 68, 75, 2C, 20, 30, 36, 20, 4E, 6F, 76, 20, 32, 30, 31, 34, 20, 31, 34, 3A, 32, 31, 3A, 35, 31, 20, 47, 4D, 54, 0D, 0A, 43, 6F, 6E, 74, 65, 6E, 74, 2D, 54, 79, 70, 65, 3A, 20, 61, 70, 70, 6C, 69, 63, 61, 74, 69, 6F, 6E, 2F, 78, 2D, 6D, 73, 64, 6F, 73, 2D, 70, 72, 6F, 67, 72, 61, 6D, 0D, 0A, 43, 6F, 6E, 74, 65, 6E, 74, 2D, 4C, 65, 6E, 67, 74, 68, 3A, 20...
 
[+]

The file facebook-messenger_facebook_messenger_francais_427630-v1.2.205.0.exe has been seen being distributed by the following URL.

http://od.ccm2.net/www.commentcamarche.net/download/.../facebook-messenger_facebook_messenger_francais_427630-v1.2.205.0.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.