fsecure_t250234635337652t_.exe

Facebook Malware Scanner

Facebook, Inc.

This is a setup program which is used to install the application. The file has been seen being downloaded from scontent-waw1-1.xx.fbcdn.net and multiple other hosts.
Publisher:
Facebook Inc.  (signed by Facebook, Inc.)

Product:
Facebook Malware Scanner

Version:
0.06

MD5:
92d6844de3a363135efdd460e5fe3e51

SHA-1:
9c994e74d0ac5689d2d7d217e8155111f79e6483

SHA-256:
fe5ecf83b4a3db44631cf4fcbd127a5cc5d7d94e7c050f188885e6931b0c581a

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 3:59:50 PM UTC  (today)

File size:
3.5 MB (3,618,856 bytes)

Product version:
0.06

Copyright:
2004-present Facebook. All Rights Reserved.

File type:
Executable application (Win64 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\fsecure_t250234635337652t_.exe

Digital Signature
Signed by:

Authority:
DigiCert Inc

Valid from:
5/12/2016 7:00:00 PM

Valid to:
5/26/2017 7:00:00 AM

Subject:
CN="Facebook, Inc.", O="Facebook, Inc.", L=Menlo Park, S=CA, C=US, PostalCode=94025, STREET=1601 Willow Rd., SERIALNUMBER=3835815, OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, OID.2.5.4.15=Private Organization

Issuer:
CN=DigiCert EV Code Signing CA (SHA2), OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
035BCAAA1D49BB2F4B788F8C9D8CB7EE

File PE Metadata
Compilation timestamp:
5/13/2016 12:21:39 AM

OS version:
4.0

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
3.0

CTPH (ssdeep):
49152:bzngjH2FgaReggfgQhv/r4XHrRmR457DBgyuxInlSTDtV18qhTuqVa3YrfEbBJ+K:iDFt26rPG

Entry address:
0x21F40

Entry point:
48, 8D, 74, 24, 08, 48, 8B, 3C, 24, B8, 50, 1F, 42, 00, FF, E0, B8, B0, 13, 42, 00, FF, E0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 51, 48, 8B, 01, 48, 8B, 71, 10, 48, 8B, 49, 08, 65, 48, 8B, 3C, 25, 30, 00, 00, 00, C7, 47, 68, 00, 00, 00, 00, 48, 81, EC, 80, 00, 00, 00, 83, F9, 04, 7E, 11, 83, F9, 10, 7E, 02, CD, 03, 48, 89, E7, FC, F3, 48, A5, 48, 89, E6, 48, 8B, 0E, 48, 8B, 56, 08, 4C, 8B, 46, 10, 4C, 8B, 4E, 18, FF, D0, 48, 81, C4, 80, 00, 00, 00, 59, 48, 89, 41, 18, 65, 48, 8B, 3C, 25, 30, 00, 00, 00, 8B...
 
[+]

Code size:
3.3 MB (3,430,400 bytes)

The file fsecure_t250234635337652t_.exe has been discovered within the following program.

WinRAR 5.30 (64-bit)  by win.rar GmbH
10% remove it
 
Powered by Should I Remove It?

The file fsecure_t250234635337652t_.exe has been seen being distributed by the following 50 URLs.

https://scontent-waw1-1.xx.fbcdn.net/t39.2507-6/.../ESET_T1369748466399230T_.exe

https://scontent-mia1-2.xx.fbcdn.net/t39.2507-6/.../Trendmicro_T10210811845470874T_.exe

https://scontent-amt2-1.xx.fbcdn.net/t39.2507-6/.../Kaspersky_T1372163772812498T_.exe

https://scontent.fgig1-3.fna.fbcdn.net/t39.2507-6/.../Kaspersky_T891415054323404T_.exe

https://scontent-waw1-1.xx.fbcdn.net/t39.2507-6/.../Kaspersky_T1145322598886716T_.exe

https://fbcdn-dragon-a.akamaihd.net/hphotos-ak-xfa1/t39.2507-6/.../ESET_T1823432594557325T_.exe

https://scontent-waw1-1.xx.fbcdn.net/t39.2507-6/.../Trendmicro_T1795316300681674T_.exe

https://scontent-yyz1-1.xx.fbcdn.net/t39.2507-6/.../Fsecure_T10154457988040782T_.exe

https://z-n.ak.fbcdn.net/dragon.ak/hphotos-ak-xtp1/t39.2507-6/.../Fsecure_T1146301498724528T_.exe

https://scontent-cdg2-1.xx.fbcdn.net/t39.2507-6/.../Fsecure_T10153534388368204T_.exe

https://scontent-mia1-2.xx.fbcdn.net/t39.2507-6/.../ESET_T850637015037635T_.exe

https://scontent-fra3-1.xx.fbcdn.net/t39.2507-6/.../Trendmicro_T270070430036902T_.exe

https://scontent-mxp1-1.xx.fbcdn.net/t39.2507-6/.../Trendmicro_T809369015869431T_.exe

https://scontent-gru2-1.xx.fbcdn.net/t39.2507-6/.../ESET_T1763135710633964T_.exe

https://fbcdn-dragon-a.akamaihd.net/hphotos-ak-xfa1/t39.2507-6/.../Fsecure_T10210041431127615T_.exe

https://scontent.xx.fbcdn.net/t39.2507-6/.../ESET_T521315001403635T_.exe

https://scontent.fgig3-1.fna.fbcdn.net/t39.2507-6/.../ESET_T10204840096200470T_.exe

https://scontent.flis2-1.fna.fbcdn.net/t39.2507-6/.../Kaspersky_T1762330034013266T_.exe

https://scontent-cdg2-1.xx.fbcdn.net/t39.2507-6/.../Trendmicro_T1261523710559718T_.exe

https://scontent-waw1-1.xx.fbcdn.net/t39.2507-6/.../Trendmicro_T1137263896349930T_.exe

https://scontent.felp1-1.fna.fbcdn.net/t39.2507-6/.../Fsecure_T1181929091829144T_.exe

https://scontent-waw1-1.xx.fbcdn.net/t39.2507-6/.../ESET_T1787516311487034T_.exe

https://scontent-waw1-1.xx.fbcdn.net/t39.2507-6/.../ESET_T1172782426138965T_.exe

https://scontent-cdg2-1.xx.fbcdn.net/t39.2507-6/.../ESET_T1002056319910980T_.exe

https://scontent-frt3-1.xx.fbcdn.net/t39.2507-6/.../ESET_T1627694510862338T_.exe

https://fbcdn-dragon-a.akamaihd.net/hphotos-ak-xfa1/t39.2507-6/.../Kaspersky_T177744862632359T_.exe

https://scontent.felp1-1.fna.fbcdn.net/t39.2507-6/.../Fsecure_T10154057232663429T_.exe

https://scontent-bru2-1.xx.fbcdn.net/t39.2507-6/.../Fsecure_T1772169433023588T_.exe

https://scontent.fhfa1-1.fna.fbcdn.net/t39.2507-6/.../ESET_T1297300450299971T_.exe

https://scontent.fmnl4-2.fna.fbcdn.net/t39.2507-6/.../ESET_T1195395470483425T_.exe

Latest 30 of 16,148 download URLs

Scan fsecure_t250234635337652t_.exe - Powered by Reason Core Security