home

gerador de morangos.exe

explorer.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from fs13n1.sendspace.com.
Product:
explorer.exe

Version:
1.0.0.0

MD5:
3f6be08a927d484f2c363830ce71bf10

SHA-1:
57b20108530e6e43ff3610b579e79dc4a408cb05

SHA-256:
daa319870e38dea916ed12adc8ef2780675c0aafa1526c2da56d6ba66caa8e5d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/8/2024 8:59:31 PM UTC  (today)

File size:
412.4 KB (422,276 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2016

Original file name:
explorer.exe.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\gerador de morangos.exe

File PE Metadata
Compilation timestamp:
6/3/2016 11:33:12 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:4OcNhad/JCB6yrQBenEjkwMyYAuGXguAnVT3JInioHqLa4bbJJN2/6weNDLN:4OoR8hjkwvYAuGXgLR3JIifPJUu

Entry address:
0x269CE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, E8, 3D, 52, 57, 00, 00, 00, 00, 02, 00, 00, 00, 9B, 00, 00, 00, 1C, 80, 02, 00, 1C, 4E, 02, 00, 52, 53, 44, 53, 9C, 17, 51, 25, AF, 07, 7E, 47, B1, CA, AB, 16, D5, 67, 84, CE, 01, 00, 00, 00, 43, 3A, 5C, 44, 6F, 63, 75, 6D, 65, 6E, 74, 73, 20, 61, 6E, 64, 20, 53, 65, 74, 74, 69, 6E, 67, 73, 5C...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
146.5 KB (150,016 bytes)

The file gerador de morangos.exe has been seen being distributed by the following URL.

https://fs13n1.sendspace.com/dl/d13c804ce874ec822819d86d6dc64397/575e0e9d5a0ddf8e/.../Gerador de Morangos.exe

Scan gerador de morangos.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.