home

forceop.exe

Force Op By V3enix Dla xKubson606

This is a setup program which is used to install the application. The file has been seen being downloaded from download1997.mediafire.com and multiple other hosts.
Product:
Force Op By V3enix Dla xKubson606

Version:
1.0.0.0

MD5:
c9aec5d22a4e25e14370e4d41bc56471

SHA-1:
af2c477da6fdb42e6e2f9027f8f0cd6b2727e8ee

SHA-256:
eefb2b2894488ac19281cc32fbdb38e71decb956e9b754e919d6c1e30d197c72

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/23/2024 2:47:09 PM UTC  (today)

Scan engine
Detection
Engine version

Qihoo 360 Security
HEUR/QVM03.0.Malware.Gen
1.0.0.1077

File size:
42 KB (43,008 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2015

Original file name:
Force Op By V3enix Dla xKubson606.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\forceop.exe

File PE Metadata
Compilation timestamp:
6/18/2015 5:06:09 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
768:3QHPq2Mp75yaew282PRo6+krqIpto2XPA0Y6IjL:3QHyrbyaMxo6+krqIg2fg

Entry address:
0x8F0E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
28 KB (28,672 bytes)

The file forceop.exe has been seen being distributed by the following 2 URLs.

http://download1997.mediafire.com/awm630ocialg/.../ForceOP.exe

http://download1997.mediafire.com/ktba7b82jhug/.../ForceOP.exe

Scan forceop.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.