» MCForceOP v.2.5.exe
Overview
Analysis
File Details
Downloads (1)

MCForceOP v.2.5.exe

The executable MCForceOP v.2.5.exe has been detected as malware by 10 anti-virus scanners. The file has been seen being downloaded from fra-7m17-stor06.uploaded.net.

File name:

MCForceOP v.2.5.exe

Version:

0.0.0.0

MD5:

c0d9d921004837712ff02e6d1cb49265

SHA-1:

906570033f466736e81ab5d543b1c73b6620ca0a

SHA-256:

de0923a989bd809bdf2ef25b6073c08ccc4526c18a38be382d40af16d49976d8

Scanner detections:

10 / 68

Status:

Malware

Analysis date:

11/15/2024 8:40:31 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.MSILKrypt.11

890

Avira AntiVirus

TR/ATRAPS.Gen

7.11.123.4

Bitdefender

Gen:Variant.MSILKrypt.11

1.0.20.1200

Emsisoft Anti-Malware

Gen:Variant.MSILKrypt.11

8.14.08.28.09

ESET NOD32

MSIL/TrojanDropper.Agent.KO (variant)

8.9238

Fortinet FortiGate

MSIL/Dropper.WT!tr

8/28/2014

G Data

Gen:Variant.MSILKrypt.11

14.8.22

IKARUS anti.virus

Trojan-Dropper.MSIL

t3scan.2.2.29

MicroWorld eScan

Gen:Variant.MSILKrypt.11

15.0.0.720

Rising Antivirus

PE:Trojan.FakeIcon!1.64A5

23.00.65.14826

File size:

11.2 MB (11,788,288 bytes)

Product version:

0.0.0.0

Original file name:

MCForceOP v.2.5.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\mcforceop v.2.5.exe

File PE Metadata

Compilation timestamp:

1/1/2014 8:57:19 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows Console

Linker version:

8.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

49152:I51+CgY9bsJoYRtuRkBEMEX13hU0Q7LBAZQ90dbOVMD1cf7HYefUiNCEdquZoL4V:

Entry address:

0xB3C4FE

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Entropy:

3.8510

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

11.2 MB (11,776,000 bytes)

The file MCForceOP v.2.5.exe has been seen being distributed by the following URL.

http://fra-7m17-stor06.uploaded.net/.../76741156-d688-4dca-b4d8-7ec44809435c

Remove MCForceOP v.2.5.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.