inventory a+.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from download1935.mediafire.com and multiple other hosts.
Version:
1, 0, 48, 03

MD5:
8066bd96f977ae14b3c3dc69c1f944c9

SHA-1:
e707c7d2af20a4801913876c0f946d967746d58d

SHA-256:
6533a06c9ba697a0b8b3091a8bdbc8ed274a7bf04bdb53360f4b5cffc3bab582

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/23/2024 10:16:54 AM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Spyware.KeyLogger!1.9F7B
23.00.65.14807

File size:
202.7 KB (207,547 bytes)

Product version:
1, 0, 48, 03

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\inventory a+.exe

File PE Metadata
Compilation timestamp:
5/3/2009 10:28:33 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
6144:mCbitvA8lUcv6Jvr03OWAgCC7RSKDkoShX:mC+tvA8pv6e3OSCCFSKDkoSB

Entry address:
0x71ED0

Entry point:
60, BE, 00, 20, 44, 00, 8D, BE, 00, F0, FB, FF, 57, 89, E5, 8D, 9C, 24, 80, C1, FF, FF, 31, C0, 50, 39, DC, 75, FB, 46, 46, 53, 68, A7, F8, 06, 00, 57, 83, C3, 04, 53, 68, BF, FE, 02, 00, 56, 83, C3, 04, 53, 50, C7, 03, 03, 00, 02, 00, 90, 90, 90, 90, 90, 55, 57, 56, 53, 83, EC, 7C, 8B, 94, 24, 90, 00, 00, 00, C7, 44, 24, 74, 00, 00, 00, 00, C6, 44, 24, 73, 00, 8B, AC, 24, 9C, 00, 00, 00, 8D, 42, 04, 89, 44, 24, 78, B8, 01, 00, 00, 00, 0F, B6, 4A, 02, 89, C3, D3, E3, 89, D9, 49, 89, 4C, 24, 6C, 0F, B6, 4A...
 
[+]

Entropy:
7.9653  (probably packed)

Code size:
196 KB (200,704 bytes)

The file inventory a+.exe has been seen being distributed by the following 46 URLs.

http://download1935.mediafire.com/2x6ole6uzcsg/.../Inventory A .exe

http://download789.mediafire.com/dav51fyhulog/.../Inventory A .exe

http://download789.mediafire.com/29xp986bpqzg/.../Inventory A .exe

http://download2044.mediafire.com/p7z8q87478vg/.../Inventory A .exe

http://download2044.mediafire.com/izl2g0s74leg/.../Inventory A .exe

http://download2044.mediafire.com/q3sfk2es6lhg/.../Inventory A .exe

http://download1244.mediafire.com/p2sg41svj9mg/.../Inventory A .exe

http://download732.mediafire.com/uz772eonb8zg/.../Inventory A .exe

http://download797.mediafire.com/57b47bzwatrg/.../Inventory A .exe

https://nhmfdq.bay.livefilestore.com/.../Inventory A .exe

http://download995.mediafire.com/9tqw5j66ppjg/.../Inventory A .exe

http://download732.mediafire.com/mm3aff9zvmig/.../Inventory A .exe

http://download789.mediafire.com/ufq5h83l87gg/.../Inventory A .exe

http://download789.mediafire.com/s0zjcdnjsmgg/.../Inventory A .exe

http://download1512.mediafire.com/slg1krmb12fg/.../Inventory A .exe

http://download732.mediafire.com/qnuq9qj1b1lg/.../Inventory A .exe

http://download789.mediafire.com/e371hfncajlg/.../Inventory A .exe

http://download797.mediafire.com/van9gdic6odg/.../Inventory A .exe

http://download1512.mediafire.com/c5ozw8388bug/.../Inventory A .exe

http://download797.mediafire.com/m7hv6thfbezg/.../Inventory A .exe

http://download732.mediafire.com/u3b61vy5aopg/.../Inventory A .exe

http://download732.mediafire.com/o9rtm481f4hg/.../Inventory A .exe

http://download789.mediafire.com/tk5cd7il4owg/.../Inventory A .exe

http://download789.mediafire.com/13g9h9elrg0g/.../Inventory A .exe

http://download789.mediafire.com/grb567xrmv7g/.../Inventory A .exe

http://download789.mediafire.com/n483q0d6uzcg/.../Inventory A .exe

http://download789.mediafire.com/uzikhrb2b6jg/.../Inventory A .exe

http://download789.mediafire.com/h32bkf98xpng/.../Inventory A .exe

http://download789.mediafire.com/sp1jd0w45d4g/.../Inventory A .exe

http://download1007.mediafire.com/af6zubjrkjjg/.../Inventory A .exe

Latest 30 of 46 download URLs

Scan inventory a+.exe - Powered by Reason Core Security