metalreaper_downloader.exe

SteamerWinClient Module

Product:
SteamerWinClient Module

Version:
1, 0, 0, 1

MD5:
bf0f2d353c60a7363497a3764e9278a4

SHA-1:
afaea9cd7b59b760d2db12a99ff04a664d7fa1d9

SHA-256:
151e140a10cf992efd7e46b8137f387ca7ccba8aa63cd95fb2a323f8b8a187c8

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 6:22:16 AM UTC  (today)

File size:
3.9 MB (4,059,648 bytes)

Product version:
1, 0, 0, 2

Copyright:
Copyright 2011

Original file name:
SteamerWinClient.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\metalreaper_downloader.exe

File PE Metadata
Compilation timestamp:
5/6/2015 6:43:01 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
49152:0ZsJrNDcIj23IQdDfiywLmWQ0kyNScQAVAAXvOiNyt9JvraU5Us0mzo37tThCqkF:/NDco23duywLEy2FKoO2dhMpjxQg

Entry address:
0x9AA38

Entry point:
E8, D1, 00, 01, 00, E9, 39, FE, FF, FF, 6A, 0C, 68, 80, 82, 50, 00, E8, 62, 5F, 00, 00, 83, 65, E4, 00, 8B, 5D, 0C, 8B, C3, 8B, 7D, 10, 0F, AF, C7, 8B, 75, 08, 03, F0, 89, 75, 08, 83, 65, FC, 00, 4F, 89, 7D, 10, 78, 0C, 2B, F3, 89, 75, 08, 8B, CE, FF, 55, 14, EB, EE, 33, C0, 40, 89, 45, E4, C7, 45, FC, FE, FF, FF, FF, E8, 14, 00, 00, 00, E8, 63, 5F, 00, 00, C2, 10, 00, 8B, 7D, 10, 8B, 5D, 0C, 8B, 75, 08, 8B, 45, E4, 85, C0, 75, 0B, FF, 75, 14, 57, 53, 56, E8, 1A, 00, 00, 00, C3, 55, 8B, EC, 8B, 45, 08, 8B...
 
[+]

Entropy:
5.5750

Code size:
861 KB (881,664 bytes)

The file metalreaper_downloader.exe has been seen being distributed by the following URL.

Scan metalreaper_downloader.exe - Powered by Reason Core Security