home

geturl1.exe

Version:
1.0.0.0

MD5:
e46556c1cccc339f072ea80ef3bb777a

SHA-1:
52711a662794e7c37bf77a8969bbc635fd6b018e

SHA-256:
50c78aa51eb9e4f4335813fb156ee20a84157825a75b4ffdb1dadaef3ab10224

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/5/2024 1:56:06 PM UTC  (today)

File size:
5.2 MB (5,433,344 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Language:
Turkish (Turkey)

Common path:
C:\Program Files\tebeos2010\geturl1.exe

File PE Metadata
Compilation timestamp:
11/3/2015 11:18:59 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:6k5MQSN8x17qEBtqxGS0jbr3GFVtxh5+nWjNaHgHVvWlp8AGCOQO9/bIF9OUQ:6rzgqAfv6txhDj0HEV+Zzy

Entry address:
0x486C64

Entry point:
55, 8B, EC, 83, C4, F0, B8, E0, 7D, 87, 00, E8, E4, 53, B8, FF, A1, C0, 1D, 89, 00, 8B, 00, E8, E4, F5, C4, FF, 8B, 0D, 40, 22, 89, 00, A1, C0, 1D, 89, 00, 8B, 00, 8B, 15, 04, 56, 87, 00, E8, E4, F5, C4, FF, A1, C0, 1D, 89, 00, 8B, 00, E8, 28, F7, C4, FF, E8, DF, FF, B7, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.5827

Developed / compiled with:
Microsoft Visual C++

Code size:
4.5 MB (4,739,584 bytes)

The file geturl1.exe has been seen being distributed by the following URL.

http://eos.teb.org.tr/teb/.../GETURL1.EXE

Scan geturl1.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.