home

minecraft 1.7.10.exe

TeamExtreme

The executable minecraft 1.7.10.exe, “Minecraft 1.7.10 Installation ” has been detected as malware by 29 anti-virus scanners. This is a setup and installation application, however the file is not signed with an authenticode signature from a trusted source. This backdoor trojan may be used to conduct distributed denial of service attacks, or used to install additional trojans or other forms of malicious software as well as can steal your sensitive information. The file has been seen being downloaded from s8270.chomikuj.pl and multiple other hosts.
Publisher:
TeamExtreme

Description:
Minecraft 1.7.10 Installation

Version:
1.7.10

MD5:
5af7afa7a3dbc7bcd6c02bf60ddb2c05

SHA-1:
2bfa69971d73d5f896d363ca8b97f64f058318ec

SHA-256:
253f0a54ec97765732e29c5ae819473d960be6d1d4215e3585d9d76fefde62d4

Scanner detections:
29 / 68

Status:
Malware

Analysis date:
11/5/2024 8:21:57 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.Generic.KDZ.1629
860

Agnitum Outpost
Trojan.Agent
7.1.1

Avira AntiVirus
TR/Agent.44544218
7.11.149.24

avast!
MSIL:Agent-ANE [Trj]
2014.9-140928

AVG
MSIL
2015.0.3338

Baidu Antivirus
Trojan.MSIL.Disfa
4.0.3.14928

Bitdefender
Trojan.Generic.KDZ.1629
1.0.20.1355

Comodo Security
UnclassifiedMalware
18258

Dr.Web
Win32.HLLW.Autoruner.25074
9.0.1.0271

Emsisoft Anti-Malware
Trojan.Generic.KDZ.1629
8.14.09.28.06

ESET NOD32
MSIL/Bladabindi (variant)
8.9786

Fortinet FortiGate
W32/Generic!tr
9/28/2014

F-Secure
Trojan.Generic.KDZ.1629
11.2014-28-09_1

G Data
Trojan.Generic.KDZ.1629
14.9.24

IKARUS anti.virus
Backdoor.MSIL
t3scan.1.6.1.0

K7 AntiVirus
Backdoor
13.177.12041

Kaspersky
Trojan.MSIL.Disfa
14.0.0.3184

McAfee
Artemis!47F29905D55A
5600.6994

Microsoft Security Essentials
Backdoor:MSIL/Bladabindi.AA
1.10502

MicroWorld eScan
Trojan.Generic.KDZ.1629
15.0.0.813

NANO AntiVirus
Trojan.Win32.Autoruner.cizsuu
0.28.0.59608

Norman
Troj_Generic.QNRBH
11.20140928

nProtect
Trojan.Generic.KDZ.1629
14.05.11.01

Qihoo 360 Security
Win32/Trojan.28f
1.0.0.1015

Quick Heal
Backdoor.Bladabindi.A3
9.14.14.00

Reason Heuristics
Threat.Win.Reputation.IMP
14.9.28.6

Sophos
Mal/Generic-S
4.98

Vba32 AntiVirus
Trojan.MSIL.Disfa
3.12.26.0

VIPRE Antivirus
Trojan.Win32.Generic
29118

File size:
155.5 MB (163,036,984 bytes)

Copyright:
TeamExtreme

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\minecraft 1.7.10\minecraft 1.7.10.exe

File PE Metadata
Compilation timestamp:
6/20/1992 1:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
3145728:kox1f2lw++weduCcnXBB7kgZyw7W4EiEukwbbSEpLC9tKLOt/KsRnZYqubOhbPv:koXg7KuCWJkgD7ezLAfCHKCtSsnYquG

Entry address:
0x19B64

Entry point:
55, 8B, EC, 83, C4, F0, B8, 9C, 9A, 41, 00, E8, B8, AB, FE, FF, B8, C4, 9B, 41, 00, E8, 5A, DC, FE, FF, 8B, 15, C8, A6, 41, 00, 89, 02, 8B, 15, C8, A6, 41, 00, 8B, 12, A1, CC, A6, 41, 00, E8, 48, D5, FF, FF, 8B, 15, C8, A6, 41, 00, 8B, 12, A1, 6C, A6, 41, 00, E8, 02, 71, FF, FF, A1, C8, A6, 41, 00, E8, 14, 18, FF, FF, E8, D7, 99, FE, FF, 00, 00, 00, FF, FF, FF, FF, 01, 00, 00, 00, 2A, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
99 KB (101,376 bytes)

The file minecraft 1.7.10.exe has been seen being distributed by the following 21 URLs.

https://s8270.chomikuj.pl/File.aspx?e=JJJ-YWEJOjiiffdMAeWdtRAyYB1AkLQzPX-FH8wERurCtnxO1iVI2b2neOzIqU0G4yQvJKcf4GSYUnrbh0A9M7bupFyF4hOM0aUYSSUOxkhJj-GNWER2jasMPgwRcXMgArwrM5G1PLLqX8QSXfMa9Q&pv=2

http://s8270.chomikuj.pl/File.aspx?e=JJJ-YWEJOjiiffdMAeWdtRAyYB1AkLQzPX-FH8wERuqveQ9SxmXhHR-0Rd03Qv7qlFVCLAzj21OVNPsAqgIMwFyowp-FppJn56mdSc9fHQZR36X0EYS4wcA4eG5xSjGGzx12u4caEyuCVjyoFJYsLg&pv=2

http://s6267.chomikuj.pl/File.aspx?e=JJJ-YWEJOjiiffdMAeWdtdFd_vXLoY1juoOUf3ooJpyIihecgX05SMvOzj9cGw3YzTjXTyS-qtBurETjmkud-nXmBVe9khh-7P4Uyf6tDzPPDrgWQJ1zANlOw8mLsJM4rRkzQcHK-OOL0NLJjf04FQ&pv=2

http://172.16.50.5/FTP-1/GAMES/PC Games/.../Minecraft 1.7.10.exe

http://dc611.4shared.com/download/.../Minecraft_1710.exe

http://mmosgame.com/.../Minecraft 1.7.10.exe

http://s8270.chomikuj.pl/File.aspx?e=JJJ-YWEJOjiiffdMAeWdtRAyYB1AkLQzPX-FH8wERur7aaSMcr2AAse20tcSEqp_C737PXj_dMVEYTEwbK_JWI-rQxQQfv5K2HGwtwuzqUGz1YaCCNyyLA6ddAhjaYU_RrwJgDY8Ntr6gr6O2KyZPQ&pv=2

http://download2169.mediafire.com/89ubzgmocrtg/.../Minecraft 1.7.10.exe

http://dc234.4shared.com/download/.../Minecraft_1710.exe

http://download1124.mediafire.com/mobckak5629g/.../Minecraft 1.7.10.exe

http://s8270.chomikuj.pl/File.aspx?e=JJJ-YWEJOjiiffdMAeWdtU_cggbv5w98A4QffrJ3ZwsuZGw8_Y5biTDvh0IVdf_LchHMsWEulFMjd1bJsgxWQpN8wxd4AsccMDUp7oNzLYqzckUdUEDvbu0PxQu6ptAxmm3ylHgrR74fhbwdSUFD4g&pv=2

http://192.241.140.173/vuong/minecraft/.../Minecraft 1.7.10.exe

http://dc234.4shared.com/download/.../Minecraft_1710_-_Launcher_Team.exe

http://s6267.chomikuj.pl/File.aspx?e=JJJ-YWEJOjiiffdMAeWdtRAyYB1AkLQzPX-FH8wERupE_XTkiSNzrF2oObbXexKD6XV8vEETlJIyb-Vmo5IDYR3cKO1yAbpulYe2a31IBZeBM1fYQV-gZ18b962gY4G6q9mNIh2PKHfd2WsQb9q8pg&pv=2

http://dc302.4shared.com/download/.../Minecraft_1710.exe

http://filedropper.com/.../filedownload.php?id=minecraft1710

http://www.nextwap.net/file/.../minecraft_1710_-_launcher_team.html

http://dc394.4shared.com/download/.../Minecraft_1710.exe

http://www.filedropper.com/.../filedownload.php?id=minecraft1710

http://dc302.4shared.com/download/.../Minecraft_1710_-_Launcher_Team.exe

http://s6267.chomikuj.pl/File.aspx?e=JJJ-YWEJOjiiffdMAeWdtcuUPP7x3RKt5Y6_1eR7SqAp7M0qtSGhd5xGpuS53YAYSTd7WW9b8Xv8O5UnKsPjfsCb49tNQ3Jk3wvZXpsgLRurjqj8N9VBv2J3sTRUI5BUjiQ2FTLFqDHZlpuz6oYlrQ&pv=2

Remove minecraft 1.7.10.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.