hktv_1.9_ver.exe

HKTV 1.9Ver

HK item

Publisher:
HK item

Product:
HKTV 1.9Ver

Version:
1.09

MD5:
78e5ac152fb7800dd69530d46c5a0371

SHA-1:
caa50fb9c737b67ffaf120b9226509022a40a0d3

SHA-256:
5c4aa756098e936e7d5cc105ddd0448b6ea5c569b4f940e1ccc053a45c21c978

Scanner detections:
3 / 68

Status:
Clean  (3 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
12/26/2024 11:14:49 AM UTC  (today)

Scan engine
Detection
Engine version

Comodo Security
UnclassifiedMalware
22154

IKARUS anti.virus
HackTool.Win32.VB
t3scan.1.8.9.0

Sophos
Mal/Generic-S
4.98

File size:
588 KB (602,112 bytes)

Product version:
1.09

Copyright:
각 방송사 , HK ITEM

Trademarks:
HKTV

Original file name:
R.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\hktv_1.9_ver.exe

File PE Metadata
Compilation timestamp:
6/12/2010 6:42:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:/R5+c7IpcwU9yQw64SR5ddr0fdrv15dSGlClnBLqK3j+ejCx5dNbOfNbfhudC21+:55JIpanw64SR5ddr0fdrv15dSGlClnBR

Entry address:
0x20A4

Entry point:
68, 14, 92, 41, 00, E8, EE, FF, FF, FF, 00, 00, 48, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 34, 0A, 3D, FF, DC, 65, E3, 4A, BE, 76, 4E, FD, DC, FF, F0, 40, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 0B, 00, 41, 00, 82, 00, 50, 72, 6F, 6A, 65, 63, 74, 31, 00, 00, 1E, 00, 0F, 00, 71, 00, 00, 00, 07, 00, 74, 00, 34, 00, 00, 00, 00, 00, 90, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 06, 00, 00, 00, 99, 4D, 8D, 1E, AC, F2, 74, 41, 87, 8C, 9C, FA, EA, 07, 61, F1, 01, 00, 00, 00, A0, 00, 00, 00...
 
[+]

Entropy:
5.8764

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
552 KB (565,248 bytes)

The file hktv_1.9_ver.exe has been seen being distributed by the following 2 URLs.

http://cfile245.uf.daum.net/.../16225B204CEB68FB11EE45

Scan hktv_1.9_ver.exe - Powered by Reason Core Security