facebook-messenger_facebook_messenger_francais_427630-v2.1.4623.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from d.ccm2.net and multiple other hosts.
MD5:
6c0ab35ae65b50c952db01c64a404f06

SHA-1:
c3fed10a29f4198ea01229b5a3d1868994b1bc94

SHA-256:
2392e494198d639d89cfc44ba8a2e7c3e93b99d1541623974ba76723d3e7a026

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
12/25/2024 1:30:58 PM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Trojan.Win32.Generic.12B3F302!313783042
23.00.65.141210

Total Defense
Win32/Tnega.dICee
37.0.11313

File size:
482.3 KB (493,877 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\programs\facebook-messenger_facebook_messenger_francais_427630-v2.1.4623.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
12288:1M+HFwtnysCJIlRfgfjCJLl4XfU85SNALN+1i:nlwtnnCJI824X88EALNqi

Entry point:
48, 54, 54, 50, 2F, 31, 2E, 31, 20, 32, 30, 30, 20, 4F, 4B, 0D, 0A, 53, 65, 72, 76, 65, 72, 3A, 20, 6E, 67, 69, 6E, 78, 0D, 0A, 44, 61, 74, 65, 3A, 20, 57, 65, 64, 2C, 20, 31, 39, 20, 4E, 6F, 76, 20, 32, 30, 31, 34, 20, 30, 39, 3A, 33, 38, 3A, 33, 37, 20, 47, 4D, 54, 0D, 0A, 43, 6F, 6E, 74, 65, 6E, 74, 2D, 54, 79, 70, 65, 3A, 20, 61, 70, 70, 6C, 69, 63, 61, 74, 69, 6F, 6E, 2F, 78, 2D, 6D, 73, 64, 6F, 73, 2D, 70, 72, 6F, 67, 72, 61, 6D, 0D, 0A, 43, 6F, 6E, 74, 65, 6E, 74, 2D, 4C, 65, 6E, 67, 74, 68, 3A, 20...
 
[+]

The file facebook-messenger_facebook_messenger_francais_427630-v2.1.4623.exe has been seen being distributed by the following 2 URLs.