home

grapes-32-bits.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from cdn.baixakicontent.com.
MD5:
565260d34c193ca260a458e82d3099a6

SHA-1:
93d89f5f8cddf320e1da14f21824c0dc7b079256

SHA-256:
0f2a5e52fd1555a37bb12db5d25592de6aec055185e2786b7086fb3e07e2db11

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 12:05:29 PM UTC  (today)

File size:
874.8 KB (895,774 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\grapes-32-bits.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
24576:hhm3y3NyXZoQEcbh63WYoGNog5ET1AFVpI3w2iJTR:hh+C8XOhcbh63WjGNJu6FYniJR

Entry point:
78, DA, 63, 60, 18, 05, 43, 18, FC, FB, FF, FF, 1D, 10, 33, 02, 99, FF, FD, 49, D7, 1E, BA, 0A, 00, F5, 74, 09, 35, 78, DA, 73, 75, F3, 54, 08, 70, 0C, 0A, 61, 60, 60, 64, 88, 61, 60, 60, 38, 38, 57, 8B, 15, 48, 01, 79, 10, F0, DF, 1F, 42, 2B, 41, F9, F7, A0, FC, 3A, C9, 22, 86, DF, 26, 17, FD, 5B, 1A, F7, D5, 69, DA, FB, 6E, 60, 82, CA, 37, 40, 71, EB, CF, DE, 97, 0C, A3, 60, D0, 03, 00, AA, 8E, 11, A8, 78, DA, ED, C5, 31, 0A, 41, 01, 00, 06, E0, DF, 11, DE, 0D, 8C, 32, 39, 81, 42, 64, 33, BC, 13, BC, 7A...
 
[+]

The file grapes-32-bits.exe has been seen being distributed by the following URL.

http://cdn.baixakicontent.com/?x=xFDe5Khh/0Y a2dVKweROE9hIWgcBPS0mIMyCOY62s8=&key=LGKBAEaII7ElpanGym/vKhUApFoO 5YbuY6zqumqm5CpwSCGoAYQ2UmHQpc1iIdIaMxE kkURZ9vhwr19U4EQRAc25w3hk9Zhqn5X3S0Jf2YwSR7dR0pq DTtUUQf ODBXke48FeuhYwjQv9q0dj6f9ZF0YJByCtHE/G6iCQpQCCcBXDvr7q6 XYDKRqGH LnAtxi Xq6uFDZjQx9ZrpI66A0FWcF450LzHOBYm5ty9XY5UjC8Tkv53zZ2twKpR2GDwU5GFslc J78o23BIiRJ1Lv7o TeInyMLWLGxUFdHP8IwAN746nD84thnRrz6XBj29FXni kalCJRoAfgDSQ==&data=YtMLS/1h1aFqQ8/Zthy4fSoK3dufjDaR22ADfuS pQH8sHfGa7THnNN2Y7TZCbnamaJLQjkvEBeYQ3HBdLaWcL4TNhAVmMcpLU24ip/To669jaC5AwtHEaZ9antQDU biO3e6OMjnKajE7Z4Xeo7DCD2Mq0xEcpUphSxFQ/keaeLwimiaQK/bGrwlUIluxHEb/XRHuUAUBU6I8DMj2hpZ9mHlTITP36s0CMFpqhwVIAVxowOUZQ4pTwo0RfzRFLRDNcYgmchRFzmkKgrH3lV3Y0gWDWr5ogZdXFxoS5lpdE584MuAxQVRJqaXLHMBEIlB7hQ9UQzRTeUS TlEspDEuHJYxbZqYZFhZWVHTXidclmW2Zt1CeiT6nf35hYXl/KSEIXQBXSy62Q8sCfRRopRg6oNuS 8yoyO5bxabMDxEm5FyTH69gG67vmjVhhjrxX/.../bzdJwaZJpuhuGRaMHFbGWKG4QCoAsXzVfAXFOTwvN0YcWTx6BW2Cbq61W9Plm6fQmGrLC4Q46JN14VQpzoCOyCTkdcF6zjTDt4gRkxX

Scan grapes-32-bits.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.