» facebook_pro.exe.exe
Overview
Analysis
File Details
Programs (1)
Downloads (20)

facebook_pro.exe.exe

WindowsApplication1

File name:

Product:

WindowsApplication1

Version:

1.0.0.0

MD5:

bcf166f89ebde644cee4af0b17918178

SHA-1:

25569fcfb753ac79286812a4b3305f671525890b

SHA-256:

76c1fbaaadc53506eb6d08c8f37826a5176a38952ed0571f0ec9361e3248acb7

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

2/26/2025 4:53:06 AM UTC (today)

File size:

153.5 KB (157,184 bytes)

Product version:

1.0.0.0

Original file name:

FaceBook Pro.exe

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\facebook_pro.exe.exe

File PE Metadata

Compilation timestamp:

10/30/2014 4:30:50 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

768:76GlpyGK0rujhZCYs7NLZsK5NpuxUDfZDZCYs7NL6:+GlpyGK0rujhZ9gNLCueUtDZ9gNL

Entry address:

0x16DAE

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 8A, 3D, 52, 54, 00, 00, 00, 00, 02, 00, 00, 00, 5D, 00, 00, 00, 1C, 80, 01, 00, 1C, 52, 01, 00, 52, 53, 44, 53, 56, BC, D4, 7B, 13, A1, 84, 47, B0, 42, 8F, 9B, D8, 1B... 
[+]

Entropy:

3.9124

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

83.5 KB (85,504 bytes)

The file facebook_pro.exe.exe has been discovered within the following program.

UC Browser by UCWeb Inc.

About 6% of users remove it

The file facebook_pro.exe.exe has been seen being distributed by the following 20 URLs.

http://www.tamindir.com/indir/MjAxNS0wNS0yMyAyMTowMTo1Mg==/facebook-pro/.../1.2.3.0

http://www.tamindir.com/indir/MjAxNi0wNS0xMSAyMzo0NTo0MA==/facebook-pro/windows/.../

http://www.tamindir.com/indir/MjAxNi0wNS0yNCAxOTowMzo1OQ==/facebook-pro/windows/.../

&onid=12941&oid=3001-12941_4-75110467&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=internet/social-networking&topicbrcrm=&pid=13909876&mfgid=6279100&merid=6279100&ctype=dm&cval=NONE&devicetype=<!--esidesktop&pguid=3a312f41b5b9efff86fdf551&viewguid=gwsC-y30UOI-spMwsrg2jKdKohajXM3CFBoc&destUrl=http://files.downloadnow.com/s/software/13/90/98/.../FaceBookPro.exe

http://facebook-pro-app.de.softonic.com/download-tracker?th=1/6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAPUU9aRSUDg 7v0hqvPNHkQ /.../N3CYgiLobTzPU6Jp2duSgK 5SoB pwnZ0ibIMAv9Ca14R3pwdZo6dPjGV2TSWDKxI=

http://gsf-cf.softonic.com/b76/d81/.../file?SD_used=0&channel=WEB&fdh=no&id_file=69664462&instance=softonic_en&type=PROGRAM&Expires=1432039291&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=Wi5HMg2dRK7zEhn-T0EOG2kY-Gpr0tSadyeDShuHZ-gRNUIKLbZw7uwg7Rrs6Zs0DsRC4tW3yrPSLKhynKlcWriN09q~TcR4bbSFMzfAV7C0oN0CTLp~IftooWIwvOdXVo0WrXjS7pVuwbiuO~DacnKkDIKyPrOwVzBpKpW9BS4_&filename=facebookpro.exe

http://facebook-pro-app.softonic.it/download-tracker?th=1/6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAPUU9aRSUDg 7v0hqvPNHkQ /.../N3CYgiLobTzPU6Jp2duSgK 5SoB pwnZ0ibIMAv9Ca14R3pwdZo6dPjGV2TSWDKxI=

http://www.tamindir.com/indir/MjAxNi0wNS0yNyAxNToyMjoyOA==/facebook-pro/windows/.../

http://www.tamindir.com/indir/MjAxNi0wMy0xMyAyMDoxOToyNA==/facebook-pro/windows/.../

&onid=12941&oid=3001-12941_4-75110467&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=internet/social-networking&topicbrcrm=&pid=13909876&mfgid=6279100&merid=6279100&ctype=dm&cval=NONE&devicetype=desktop&pguid=1efa2ef9221c5782bd348cc1&viewguid=dEQiWRTUE4infpseMAuZWo2w25rUAPFbyegq&destUrl=http://files.downloadnow.com/s/software/13/90/98/.../FaceBookPro.exe

http://facebook-pro-app.fr.softonic.com/download-tracker?th=1/6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAPUU9aRSUDg 7v0hqvPNHkQ /.../N3CYgiLobTzPU6Jp2duSgK 5SoB pwnZ0ibIMAv9Ca14R3pwdZo6dPjGV2TSWDKxI=

&onid=12941&oid=3001-12941_4-75110467&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=internet/social-networking&topicbrcrm=&pid=13909876&mfgid=6279100&merid=6279100&ctype=dm&cval=NONE&devicetype=desktop&pguid=f0d8a6f867480cca9ec02fdd&viewguid=bfBxRWY4VXp2H@07Q4ufmFAyxtLiXF7XiFrl&destUrl=http://files.downloadnow.com/s/software/13/90/98/.../FaceBookPro.exe

&onid=12941&oid=3001-12941_4-75110467&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=internet/social-networking&topicbrcrm=&pid=13909876&mfgid=6279100&merid=6279100&ctype=dm&cval=NONE&devicetype=desktop&pguid=b21286e06c0fca2238ef4a7b&viewguid=bSKOcT4GhFh9fjHjz6G1Ur-i@t9qZC30qUsa&destUrl=http://files.downloadnow.com/s/software/13/90/98/.../FaceBookPro.exe

http://files.downloadnow-2.com/s/software/13/90/98/.../FaceBookPro.exe

http://facebook-pro-app.softonic.com/download-tracker?th=8yS3 KGEYLiw7GKMHzA/.../cC7njJxp1JX45qVzEeFziBBzX2oTLtWTDo25Scdnv0TwisAfAXQnSqjCmdGloyrltFVui44o4JNMtRsG1i8=

http://files.downloadnow.com/s/software/13/90/98/.../FaceBookPro.exe

http://facebook-pro-app.en.softonic.com/download-tracker?th=1/6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAPUU9aRSUDg 7v0hqvPNHkQ /.../N3CYgiLobTzPU6Jp2duSgK 5SoB pwnZ0ibIMAv9Ca14R3pwdZo6dPjGV2TSWDKxI=

http://regedanzter.com/.../facebookpro.exe

&onid=12941&oid=3001-12941_4-75110467&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=internet/social-networking&topicbrcrm=&pid=13909876&mfgid=6279100&merid=6279100&ctype=dm&cval=SPIGOTWIN&devicetype=desktop&pguid=5f9903e60941097ac58c390d&viewguid=Xn-n1N2G61SLKhweAS7Wr3dt0XnnJRmTL3dG&destUrl=http://software-files-a.cnet.com/s/software/13/90/98/.../FaceBookPro.exe

http://software-files-a.cnet.com/s/software/13/90/98/.../FaceBookPro.exe

Scan facebook_pro.exe.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.