home

Minecraft Force OP.exe

Minecraft Force OP

Purp Enterprise™

The executable Minecraft Force OP.exe has been detected as malware by 3 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from s5889.chomikuj.pl.
Publisher:
Purp Enterprise™

Product:
Minecraft Force OP

Version:
2.1.0.0

MD5:
0226132d0dbfd8eba6b593472173cbd6

SHA-1:
6671af3bc6b76f43218dc65c63c45cd523303ff0

SHA-256:
c65f78d7d2f8cf3cbfb6fcbf36e725f1f4873e67574569ac312b3d10822b2581

Scanner detections:
3 / 68

Status:
Malware

Analysis date:
12/26/2024 12:20:56 PM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
MSIL/PSW.OnLineGames.OG trojan
7.0.302.0

MicroWorld eScan
Gen:Variant.Strictor.53561
17.0.0.195

Norman
Obfuscated.gen!r
11.20160305

File size:
1.7 MB (1,764,352 bytes)

Product version:
2.1.0.0

Copyright:
Copyright © 2012

Trademarks:
Purp Enterprise™

Original file name:
Minecraft Force OP.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\minecraft force op.exe

File PE Metadata
Compilation timestamp:
2/2/2013 2:40:46 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
12288:uHtPwP2UD9YHF6OLAH64llkE+ixY+/XUUUBUu1EsJcizfheMLAH64l:uHt0DWl6j64vvfxp/XhSElV64

Entry address:
0x15591E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
1.3 MB (1,391,104 bytes)

The file Minecraft Force OP.exe has been seen being distributed by the following URL.

http://s5889.chomikuj.pl/File.aspx?e=KI3mT_FLSJMK9fgaK5V2sRkBkLvDxxuGl_RWjv48k1M9NCc56klC6I3Q9zft_0KfObWaVq8UOBJ-oyf8UaWu6n5pqddBY_H8-Cn7k_DsmrnbJ4RSfkjmAM63y8sG1sX-8CfvZZgT-RZGK1QNf_ZhOA&pv=2

Remove Minecraft Force OP.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.