home

fraps 3.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from down-vsofte.ru.
MD5:
5db0d75ed403e0fe5dd46d91ae0fadc7

SHA-1:
7c3b4c5793d3d8f0b29530f5f9c73ab007294e80

SHA-256:
3078c3079859c6f22d8df21f0988a00a67ace573b1a14e6d31ae5d6ed8827ea1

Scanner detections:
6 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/27/2024 1:23:26 AM UTC  (today)

Scan engine
Detection
Engine version

AegisLab AV Signature
Troj.Gen!c
2.1.4+

McAfee
Artemis!3CFD93F5AA05
5600.6490

Rising Antivirus
PE:Malware.Generic/QRS!1.9E2D [F]
23.00.65.16212

Trend Micro House Call
TROJ_GE.7896990B
7.2.45

VIPRE Antivirus
Trojan.Win32.Generic
46730

ViRobot
Trojan.Win32.A.Zbot.1346602[h]
2014.3.20.0

File size:
4.1 MB (4,331,640 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\fraps 3.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
98304:9a5vU7zk2T+ha8pbQMYni347unTCnODNVpgbPNc+ORY3:9cvU7lTqagQvrhONVSNa6

Entry point:
50, 4B, 03, 04, 0A, 00, 00, 00, 00, 00, E9, 86, E4, 44, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 2C, 00, 00, 00, 42, 65, 65, 70, 61, 20, 46, 72, 61, 70, 73, 20, 76, 33, 2E, 35, 2E, 39, 20, 42, 75, 69, 6C, 64, 20, 31, 35, 35, 38, 36, 20, 46, 69, 6E, 61, 6C, 20, 4D, 6C, 5F, 52, 75, 73, 2F, 50, 4B, 03, 04, 14, 00, 00, 00, 08, 00, E9, 86, E4, 44, DD, DB, 9D, 2C, 28, 8C, 05, 00, DC, AC, 05, 00, 3F, 00, 00, 00, 42, 65, 65, 70, 61, 20, 46, 72, 61, 70, 73, 20, 76, 33, 2E, 35, 2E, 39, 20, 42, 75, 69, 6C, 64...
 
[+]

The file fraps 3.exe has been seen being distributed by the following URL.

http://down-vsofte.ru/Fraps v3.5.9 rus.zip

Scan fraps 3.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.