home

minecraft-forge.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from app.enuiq87.com and multiple other hosts.
MD5:
dbe900d9950de27998c66f198634c845

SHA-1:
228c0999c5a224d8290e29823c4dd31b5679866b

SHA-256:
b52b2f0cf5b2dedc06185c500c215ab9e7426f7342d8a4f2fe4f2dd0d7f6fadd

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
2/27/2025 7:38:55 AM UTC  (today)

Scan engine
Detection
Engine version

Qihoo 360 Security
virus.exp.20121723
1.0.0.1015

File size:
1.9 MB (2,014,600 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\minecraft-forge.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
49152:Rc94BBL99wndmzx57g48KOYSzq0UBsl6VmQh:R44B5fD0UO1qhBBk2

Entry point:
50, 4B, 03, 04, 14, 00, 00, 00, 08, 00, E7, BB, B7, 42, F4, B9, 98, 2D, 4B, 11, 00, 00, 27, 21, 00, 00, 2E, 00, 00, 00, 6E, 65, 74, 2F, 6D, 69, 6E, 65, 63, 72, 61, 66, 74, 66, 6F, 72, 67, 65, 2F, 6F, 72, 65, 64, 69, 63, 74, 2F, 4F, 72, 65, 44, 69, 63, 74, 69, 6F, 6E, 61, 72, 79, 2E, 63, 6C, 61, 73, 73, 8D, 59, 0B, 78, 54, D5, B5, FE, D7, 99, C7, 39, 33, 39, 81, 38, 92, C0, 20, 4A, 10, 94, 90, 10, 82, 88, 28, 49, 14, 43, 08, 31, 32, 04, 64, 90, 18, B0, E2, 49, 72, 48, 06, E6, 11, 27, 93, 40, D0, FA, 44, 6D...
 
[+]

Entropy:
7.9760  (probably packed)

The file minecraft-forge.exe has been seen being distributed by the following 2 URLs.

http://app.enuiq87.com/clr/.../minecraft-forge.exe

http://butters.mxp508.com/clr/.../minecraft-forge.exe

Scan minecraft-forge.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.