home

juiced 2 trainer.exe

The executable juiced 2 trainer.exe has been detected as malware by 13 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from s10568.chomikuj.pl.
MD5:
c41831fa34e07f6999a064da60b74f0b

SHA-1:
ea6573552998718cd9d5ef87de68a33b4ac52dc9

SHA-256:
1f3a5b477b6c2647490f90b60ae56dda2865d77574262f56dd68fcd22479fbca

Scanner detections:
13 / 68

Status:
Malware

Analysis date:
11/24/2024 8:24:12 AM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
Trojan.GameHack
7.1.1

Avira AntiVirus
TR/Drop.Gagegal.llo
7.11.169.140

Baidu Antivirus
Trojan.Win32.GameHack
4.0.3.16412

Bkav FE
W32.HfsAutoB
1.3.0.4959

ESET NOD32
Win32/GameHack (variant)
10.10321

Fortinet FortiGate
W32/Buzus.GO!tr
4/12/2016

F-Prot
W32/GameHack.E4.gen
v6.4.7.1.166

IKARUS anti.virus
Trojan-Dropper.Gagegal
t3scan.1.7.5.0

McAfee
RDN/Generic PUP.x!bcx
5600.6431

Sophos
Generic PUA OK
4.98

Trend Micro House Call
TROJ_GEN.R0CBC0PBB14
7.2.103

Trend Micro
TROJ_GEN.R0CBC0PBB14
10.465.12

VIPRE Antivirus
Trojan.Win32.Generic
32582

File size:
171.5 KB (175,616 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
12/10/2007 8:44:11 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.50

CTPH (ssdeep):
3072:9li+K/xc4VAFuqlgj5MCcFKhbw0KV7+n8Q8jtAoO4SqR0OYXL:9cxkFuqlgj5MvMhbwfIz8kDr7XL

Entry address:
0x1000

Entry point:
68, B8, 01, 00, 00, 68, 00, 00, 00, 00, 68, 10, C7, 42, 00, E8, 40, 40, 00, 00, 83, C4, 0C, 68, 00, 00, 00, 00, E8, 39, 40, 00, 00, A3, 14, C7, 42, 00, 68, 00, 00, 00, 00, 68, 00, 10, 00, 00, 68, 00, 00, 00, 00, E8, 26, 40, 00, 00, A3, 10, C7, 42, 00, E8, B4, 12, 01, 00, E8, F2, 0A, 01, 00, E8, 48, F4, 00, 00, E8, 54, EB, 00, 00, E8, EC, EA, 00, 00, E8, DA, E3, 00, 00, E8, 40, 5A, 00, 00, E8, 29, 59, 00, 00, E8, F4, 52, 00, 00, E8, 8F, 51, 00, 00, E8, 09, 47, 00, 00, E8, F5, 12, 01, 00, E8, 60, 48, 00, 00...
 
[+]

Packer / compiler:
PKLITE32, 0x1.1

Code size:
71.5 KB (73,216 bytes)

The file juiced 2 trainer.exe has been seen being distributed by the following URL.

http://s10568.chomikuj.pl/File.aspx?e=WPobJRyQHUXTChvNNVhkCOS7AX9LKEG78cH0WyidKUOMRoBAmvmUEenGEPRyC4crpOeWhpPSOLf-cC-p1QnOBxUQjQ3J7PPIrqvGbdQoNMwdiFxfEFOD_J1gdYAv2PimzOI_9Y3BMmvwVoOIUJupJw&pv=2

Remove juiced 2 trainer.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.