Free Optifine Cape®.exe

WindowsApplication1

The executable Free Optifine Cape®.exe has been detected as malware by 8 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from download2234.mediafire.com and multiple other hosts.
Product:
WindowsApplication1

Version:
1.0.0.0

MD5:
d8bbf270c0f98bb902a23c0a69d83eb4

SHA-1:
21994e7fed868c5c7a1e169eb5961679413cdaa9

SHA-256:
beaf697a5803d3981aa3b5dad2eb1756cbf67a9fa9442114d66d1a62f8d7159b

Scanner detections:
8 / 68

Status:
Malware

Analysis date:
11/23/2024 10:30:48 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Spy.Gen
7.11.207.78

Comodo Security
UnclassifiedMalware
20965

ESET NOD32
MSIL/PSW.Agent.OKH (variant)
9.11125

Fortinet FortiGate
MSIL/Agent.OFU!tr
2/24/2015

NANO AntiVirus
Trojan.Win32.Agent.dkjxvu
0.30.0.65070

Norman
Suspicious_Gen4.HJMLK
11.20150224

Qihoo 360 Security
HEUR/QVM03.0.Malware.Gen
1.0.0.1015

Sophos
Mal/Generic-S
4.98

File size:
70.7 MB (74,163,712 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2014

Original file name:
Free Optifine Cape®.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\free optifine cape®.exe

File PE Metadata
Compilation timestamp:
2/7/2014 2:20:10 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
1572864:eM0sq8IRNvu4gh5jdHZAFAdmF8/NIGei1lc+/n6jJkcuP1XF:d0h8IRjgh5It4NheoG+/6jBuPz

Entry address:
0x46AAD2E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
70.7 MB (74,092,032 bytes)

The file Free Optifine Cape®.exe has been seen being distributed by the following 4 URLs.

Remove Free Optifine Cape®.exe - Powered by Reason Core Security