filehost_counter-strike go pro.exe

The executable filehost_counter-strike go pro.exe has been detected as malware by 1 anti-virus scanner. This is a setup program which is used to install the application. The file has been seen being downloaded from prdownload.berlios.de and multiple other hosts.
MD5:
78c0a459dc2b40629b7adbf494362fed

SHA-1:
eb9051d3078b87cdc013e32f8d8fb0843c38c4b0

SHA-256:
5a1b015bd473bb05876a1e9d5910d60223727692dd005c933a49c6f251b91380

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
11/5/2024 9:53:23 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
(M)
16.6.5.10

File size:
351 Bytes

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\filehost_counter-strike go pro.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
6:qzxBq6jHzvPzeYZWGrFmcVAqJmW/Ci5XMJN3tyjXuB965qaLAHMJxU3tZ5poKz:kx9HTPz59gklJmWn1MJN3tyjXP5rIMJE

Entry point:
3C, 68, 74, 6D, 6C, 3E, 3C, 68, 65, 61, 64, 3E, 3C, 73, 74, 79, 6C, 65, 20, 74, 79, 70, 65, 3D, 22, 74, 65, 78, 74, 2F, 63, 73, 73, 22, 3E, 2A, 7B, 6D, 61, 72, 67, 69, 6E, 3A, 30, 70, 78, 3B, 70, 61, 64, 64, 69, 6E, 67, 3A, 30, 70, 78, 3B, 62, 61, 63, 6B, 67, 72, 6F, 75, 6E, 64, 3A, 23, 66, 66, 66, 3B, 7D, 3C, 2F, 73, 74, 79, 6C, 65, 3E, 3C, 74, 69, 74, 6C, 65, 3E, 44, 4E, 53, 20, 45, 52, 52, 4F, 52, 3C, 2F, 74, 69, 74, 6C, 65, 3E, 3C, 73, 63, 72, 69, 70, 74, 20, 6C, 61, 6E, 67, 75, 61, 67, 65, 3D, 22, 4A...
 
[+]

The file filehost_counter-strike go pro.exe has been seen being distributed by the following 24 URLs.

http://prdownload.berlios.de/.../codeblocks-13.12mingw-setup.exe

http://files/Google/Chrome/.../chrome.exe

Remove filehost_counter-strike go pro.exe - Powered by Reason Core Security