jre1.8.0_91.exe

The executable jre1.8.0_91.exe has been detected as malware by 13 anti-virus scanners. The file has been seen being downloaded from download1325.mediafire.com.
Version:
0.0.0.0

MD5:
9f1469ae73ea6d430194937ff5fc4f9c

SHA-1:
82cbe860f35f0a8be1c46bcbaa7b9d70c6abd637

SHA-256:
4e9b09c64f962fe81c00014a721f9963d8c93743329a832323685147c6db9fa5

Scanner detections:
13 / 68

Status:
Malware

Analysis date:
12/26/2024 5:46:43 PM UTC  (today)

Scan engine
Detection
Engine version

AegisLab AV Signature
Troj.W32.Generic!c
2.1.4+

Avira AntiVirus
TR/Crypt.Xpack.gjrs
8.3.3.4

avast!
Win32:Evo-gen [Susp]
2014.9-160705

ESET NOD32
MSIL/Packed.Confuser.P suspicious (variant)
10.13748

Fortinet FortiGate
W32/Generic!tr
7/5/2016

IKARUS anti.virus
Trojan.MSIL.Injector
t3scan.2.1.6.0

K7 AntiVirus
Trojan
13.232.20121

Kaspersky
HEUR:Trojan.Win32.Generic
14.0.0.-49

McAfee
RDN/Generic.cf
5600.6347

Microsoft Security Essentials
Backdoor:MSIL/Bladabindi
1.1.12902.0

Qihoo 360 Security
HEUR/QVM03.0.0000.Malware.Gen
1.0.0.1120

Sophos
Generic PUA IC (PUA)
4.98

VIPRE Antivirus
Trojan.Win32.Generic
50592

File size:
233 KB (238,592 bytes)

Product version:
0.0.0.0

Original file name:
jre1.8.0_91.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\jre1.8.0_91.exe

File PE Metadata
Compilation timestamp:
7/3/2016 10:45:21 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
3072:zNaePwcOcYQ0kRcLui5u3My/9op9lctp8Num+Ezj6HFGoOM1+HqnP4QcDJS:zNztOcn0ZlzprPuHFrOPGcFS

Entry address:
0x30D6E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.5143

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
187.5 KB (192,000 bytes)

The file jre1.8.0_91.exe has been seen being distributed by the following URL.

Remove jre1.8.0_91.exe - Powered by Reason Core Security