guru_geethaya.exe

Smart PIPL, TOV

The executable guru_geethaya.exe has been detected as malware by 1 anti-virus scanner.
Publisher:
Software Bundle Company  (signed by Smart PIPL, TOV)

Description:
Software Bundle

Version:
1.0.0.0

MD5:
862acab9d5ca415fffd6b04ebf9f8587

SHA-1:
960d9ffb7075792ad1854ef8ea67f4e86d6b2b43

SHA-256:
13efb7e5488e8818b4654505c98003a2fb4353a350c78e7be9686cadb8dfd4d5

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
12/26/2024 4:22:41 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.3.7.10

File size:
5.2 MB (5,456,576 bytes)

Product version:
1.0.0.0

Copyright:
Copiright

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\guru_geethaya.exe

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
6/6/2016 5:30:00 AM

Valid to:
6/7/2017 5:29:59 AM

Subject:
CN="Smart PIPL, TOV", OU=IT, O="Smart PIPL, TOV", STREET="vul. Zolotoustivska, 30", L=Kiev, S=Kiev, PostalCode=01054, C=UA

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
1243D2ADF364B385F5C732473188AB15

File PE Metadata
Compilation timestamp:
6/20/1992 3:52:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

Entry address:
0x1B4750

Entry point:
55, 8B, EC, 83, C4, F0, 53, 56, 57, B8, C0, 3C, 5B, 00, E8, 5D, 31, E5, FF, 33, C0, 55, 68, 69, 4C, 5B, 00, 64, FF, 30, 64, 89, 20, DD, 05, C4, 1A, 5D, 00, DC, 05, C4, 1A, 5D, 00, DF, 2D, B4, 1A, 5D, 00, DE, E9, DD, 1D, C4, 1A, 5D, 00, 9B, 8B, 05, B4, 1A, 5D, 00, 8B, 15, B8, 1A, 5D, 00, 03, 05, B4, 1A, 5D, 00, 13, 15, B8, 1A, 5D, 00, 71, 05, E8, B5, F7, E4, FF, 89, 05, B4, 1A, 5D, 00, 89, 15, B8, 1A, 5D, 00, 8B, 05, AC, 1A, 5D, 00, 8B, 15, B0, 1A, 5D, 00, 03, 05, AC, 1A, 5D, 00, 13, 15, B0, 1A, 5D, 00, 71...
 
[+]

Entropy:
7.4701

Developed / compiled with:
Microsoft Visual C++

Code size:
1.7 MB (1,785,344 bytes)

Remove guru_geethaya.exe - Powered by Reason Core Security