home

icheat v30 (64 bit)--[zaka4ano.ru].exe

MD5:
52256bfe3ce92d84e66a10dd7bd6dc9f

SHA-1:
ccf022e5c824cfc330435c0a755c8e0cfb24f740

SHA-256:
87cc3b0a212a8e85020a7f3834cdc7f5c48c86cc287050f77e7bb56a278cfb66

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 7:58:23 AM UTC  (today)

File size:
596.4 KB (610,718 bytes)

File type:
Executable application (Win16 EXE)

Common path:
C:\users\{user}\downloads\icheat v30 (64 bit)--[zaka4ano.ru].exe

File PE Metadata
OS bitness:
Win16

Linker version:
25.0

CTPH (ssdeep):
12288:iJ01ZfBkNfG7Sj0WrgOLoYa5IO1Dtu3Mi58RsYhGCTMf:iJkfz9yoYa+GDtcMiUhn4

Entry address:
0x833

Entry point:
00, 8B, 45, F0, 50, E8, EA, B0, 06, 00, 85, C0, 75, 17, 66, C7, 05, 90, F0, 46, 00, 39, 0C, 89, 05, 62, F0, 46, 00, 01, F2, 89, 0D, 8B, F0, 46, 00, C6, 05, 46, F0, 46, 00, 9D, 89, 1D, 94, F0, 46, 00, 80, 3D, AB, F0, 46, 00, 00, 7E, 17, C6, 05, 1C, F0, 46, 00, D7, 89, C1, 89, 15, 3E, F0, 46, 00, 89, 35, 10, F0, 46, 00, EB, 1C, 89, 3D, F6, F0, 46, 00, 21, 0D, 28, F0, 46, 00, 66, C7, 05, 6B, F0, 46, 00, DE, 2F, C6, 05, A3, F0, 46, 00, 6C, 66, C7, 05, 08, F1, 46, 00, C0, 62, 89, 3D, 39, F0, 46, 00, C7, 45, EC...
 
[+]

Entropy:
6.2347

Code size:
1.7 KB (1,760 bytes)

The file icheat v30 (64 bit)--[zaka4ano.ru].exe has been seen being distributed by the following 4 URLs.

http://zaka4ano.ru/temp/.../

http://zaka4ano.ru/temp/.../

http://zaka4ano.ru/temp/.../

http://zaka4ano.ru/temp/.../

Scan icheat v30 (64 bit)--[zaka4ano.ru].exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.