home

GreekWiFi.exe

GreekWiFi

X-Lame TM

This is a setup program which is used to install the application. The file has been seen being downloaded from download1312.mediafire.com and multiple other hosts.
Publisher:
X-Lame TM

Product:
GreekWiFi

Description:
GreekWiFi - Security testing tool for WiFi routers provided by Greek ISPs

Version:
3.00.0153

MD5:
f170472a1bfb916087930ad6c0415057

SHA-1:
3930798c86cf6df081d5d06d21d3782dca128713

SHA-256:
4b429f46a993a38b2ca76dfd7967506966eff88178309cf57ccd0a5097d7049b

Scanner detections:
3 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/24/2024 2:41:50 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/XtremeRAT.A.2
7.11.142.154

Bkav FE
W32.Cloddb3.Trojan
1.3.0.4959

McAfee
Artemis!F170472A1BFB
5600.7159

File size:
2.1 MB (2,207,744 bytes)

Product version:
3.00.0153

Original file name:
GreekWiFi.exe

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
6/19/2012 5:33:48 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
49152:j0jQUIZOYAYgLl1ATRt8yj7Rb59jZ6V2NtjFKsOh+Im+X/ml1iL+vuCZ2dQYH/CZ:QjQUIZOYH

Entry address:
0x2E60

Entry point:
68, 24, 32, 40, 00, E8, F0, FF, FF, FF, 00, 00, 48, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 30, DB, A2, CC, 13, 46, EA, 4B, BC, 2A, E9, 59, D5, 84, 49, B2, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 65, 6E, 74, 56, 65, 72, 47, 72, 65, 65, 6B, 57, 69, 46, 69, 00, 53, 75, 70, 70, 6F, 72, 00, 46, 69, 6C, 65, 73, 3D, 30, C0, 00, 00, 00, 90, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 0A, 00, 00, 00, B6, AA, 25, C3, 96, 21, EC, 43, BA, 70, 74, 47, 31, 3D, CE, B4, 01, 00, 00, 00, A0, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
292 KB (299,008 bytes)

The file GreekWiFi.exe has been seen being distributed by the following 4 URLs.

http://download1312.mediafire.com/3alcsey6yh8g/.../Greek WPA Finder.exe

http://download1575.mediafire.com/x1bbmhhjqxvg/.../Greek WPA Finder.exe

http://download1022.mediafire.com/wg1iegcdhlrg/.../Greek WPA Finder.exe

http://download1575.mediafire.com/bgstdghmqesg/.../Greek WPA Finder.exe

Scan GreekWiFi.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.