hack para point blank.exe

The executable hack para point blank.exe has been detected as malware by 31 anti-virus scanners. This is a setup program which is used to install the application. This backdoor trojan may be used to conduct distributed denial of service attacks, or used to install additional trojans or other forms of malicious software as well as can steal your sensitive information. The file has been seen being downloaded from download1246.mediafire.com.
MD5:
2e61bf7589bb99dded3a874d7778e14f

SHA-1:
e77efc0722fe7a213473b483bfad18a8a11e3f71

SHA-256:
01215e351eceb57869267c449cee2926404d18b458fc88f79c6b876a72a3feef

Scanner detections:
31 / 68

Status:
Malware

Analysis date:
12/25/2024 4:13:38 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Generic.MSIL.Bladabindi.564BC2C8
223

Avira AntiVirus
TR/ATRAPS.Gen
8.3.3.4

Arcabit
Trojan.Generic.D10895DF
1.0.0.741

avast!
MSIL:Agent-BXF [Trj]
2014.9-160626

AVG
BackDoor.MSIL.L
2017.0.2701

Baidu Antivirus
Win32.Trojan.WisdomEyes.151026.9950
4.0.3.16626

Bitdefender
Generic.MSIL.Bladabindi.564BC2C8
1.0.20.890

Clam AntiVirus
Win.Trojan.B-468
0.98/21511

Comodo Security
TrojWare.MSIL.Bladabindi.KX
25324

Dr.Web
BackDoor.Bladabindi.4143
9.0.1.0178

Emsisoft Anti-Malware
Generic.MSIL.Bladabindi.564BC2C8
8.16.06.26.06

ESET NOD32
MSIL/Bladabindi.AS (variant)
10.13701

Fortinet FortiGate
W32/Disfa.AS!tr
6/26/2016

F-Prot
W32/MSIL_Bladabindi.J.gen
v6.4.7.1.166

F-Secure
Generic.MSIL.Bladabindi.564BC2C8
11.2016-26-06_1

G Data
Generic.MSIL.Bladabindi.564BC2C8
16.6.25

IKARUS anti.virus
Trojan.Msil
t3scan.2.1.6.0

K7 AntiVirus
Trojan
13.231.20042

Kaspersky
Trojan.MSIL.Disfa
14.0.0.-1

Malwarebytes
Trojan.Agent.MSIL
v2016.06.26.06

McAfee
Artemis!2E61BF7589BB
5600.6357

Microsoft Security Essentials
Backdoor:MSIL/Bladabindi.AJ
1.1.12805.0

MicroWorld eScan
Generic.MSIL.Bladabindi.564BC2C8
17.0.0.534

NANO AntiVirus
Trojan.Win32.DownLoader10.dbxzfj
1.0.38.8984

nProtect
Generic.MSIL.Bladabindi.564BC2C8
16.06.24.01

Panda Antivirus
Trj/CI.A
16.06.26.06

Qihoo 360 Security
HEUR/QVM41.1.0000.Malware.Gen
1.0.0.1120

Sophos
Mal/Bbindi-C
4.98

Trend Micro
TROJ_GEN.R00JC0DFM16
10.465.26

Vba32 AntiVirus
Trojan.MSIL.Disfa
3.12.26.4

VIPRE Antivirus
Trojan.Win32.Generic.pak!cobra
50358

File size:
1.4 MB (1,430,759 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\hack para point blank.exe

File PE Metadata
Compilation timestamp:
1/3/2016 7:34:21 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:oYrjmhBHH+E5kq0KlHrfH2riR0qltOwdNvEdXmKbN8PK:dmHRkqLrfWmRNtPdNG2KbN8i

Entry address:
0x1E35B

Entry point:
E8, 85, 63, 00, 00, E9, 78, FE, FF, FF, 8B, FF, 55, 8B, EC, 56, 8D, 45, 08, 50, 8B, F1, E8, 82, FC, FF, FF, C7, 06, F4, C4, 42, 00, 8B, C6, 5E, 5D, C2, 04, 00, C7, 01, F4, C4, 42, 00, E9, 37, FD, FF, FF, 8B, FF, 55, 8B, EC, 56, 8B, F1, C7, 06, F4, C4, 42, 00, E8, 24, FD, FF, FF, F6, 45, 08, 01, 74, 07, 56, E8, 92, CA, FF, FF, 59, 8B, C6, 5E, 5D, C2, 04, 00, 8B, FF, 55, 8B, EC, 56, 57, 8B, 7D, 08, 8B, 47, 04, 85, C0, 74, 47, 8D, 50, 08, 80, 3A, 00, 74, 3F, 8B, 75, 0C, 8B, 4E, 04, 3B, C1, 74, 14, 83, C1, 08...
 
[+]

Code size:
165 KB (168,960 bytes)

The file hack para point blank.exe has been seen being distributed by the following URL.

Remove hack para point blank.exe - Powered by Reason Core Security