jeux-de-need-for-speed.exe

The executable jeux-de-need-for-speed.exe has been detected as malware by 6 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from yes-abbos-did.com.
Version:
1.3.5.7

MD5:
9e49194c72d5ac29076557837e9db930

SHA-1:
d9e62d7aaec37dceb7811cc88c5d95c33732045d

SHA-256:
277050a36a2961de19c32fd22388ed02b8811ca74c71e675766b0e61575b1ef8

Scanner detections:
6 / 68

Status:
Malware

Analysis date:
12/25/2024 3:31:22 PM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:SaliCode
160518-2

Emsisoft Anti-Malware
Win32.Sality
16.07.02

ESET NOD32
Win32/Sality.NBA virus
8.0.319.0

F-Prot
W32/Sality.gen2
4.6.5.141

Microsoft Security Essentials
Threat.Undefined
1.225.227.0

Norman
Win32.Sality.3
28.05.2016 15:32:18

File size:
4.7 MB (4,948,032 bytes)

Product version:
1.3.5.7

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\jeux-de-need-for-speed.exe

File PE Metadata
Compilation timestamp:
6/7/2011 5:22:49 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
49152:5PVWWbSFq5nER6zBkdyiK8H9PrCpqKcOEstBvz84a:5rb15EDAe9PrCMKc/A1z84

Entry address:
0x3CC546

Entry point:
69, D8, DA, E6, 6E, EC, 4A, 80, DC, 4C, 86, DA, 41, 85, C6, 76, 06, F7, C6, 00, 8C, 6E, AC, 78, 04, 18, C5, 29, D0, 8A, CA, 86, E9, 50, 30, CD, 4B, 0F, B7, E9, E8, 21, 00, 00, 00, F6, C2, 26, 88, DE, C7, C3, 61, A5, E4, 10, 4A, F3, 8D, 05, A0, 4E, 00, 00, 0F, AF, D7, F7, C1, F6, A2, F1, 59, 35, 8F, 03, 00, 00, 4E, BF, 79, 6D, 12, 67, 15, F3, 23, C1, 46, 85, D6, 81, FE, 03, 2C, 00, 00, 72, 06, 69, C9, E5, AA, DF, BB, 2B, ED, 81, FA, A9, 98, 69, D1, FE, CA, 49, 33, EA, 2C, 38, F6, C3, 71, 0F, AF, C2, 86, C4...
 
[+]

Code size:
3.8 MB (3,995,648 bytes)

The file jeux-de-need-for-speed.exe has been seen being distributed by the following URL.

Remove jeux-de-need-for-speed.exe - Powered by Reason Core Security