home

ML.exe

ML

Product:
ML

Version:
1.0.0.24

MD5:
7240adb8d888fce1b30ba0b5e67598e6

SHA-1:
edcc572e4d6aa9e5739c33d4ae10a996627c79ae

SHA-256:
6824f9ec5854756b1eba8f4296a4b139717f41297fd4d0f2f604b7fac5fbd6d2

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/23/2024 8:25:55 AM UTC  (today)

Scan engine
Detection
Engine version

Baidu Antivirus
Hacktool.Win32.GameHack
4.0.3.151122

ESET NOD32
Win32/GameHack.SE potentially unsafe (variant)
9.12469

File size:
1.1 MB (1,141,760 bytes)

Product version:
1.0.0.24

Copyright:
Copyright © 2013

Original file name:
ML.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\ml.exe

File PE Metadata
Compilation timestamp:
8/28/2014 5:22:26 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
24576:Pt5GscU3tyPL+XSSbPFEItVclStEOwRjkV:PtFtU+XSSGQVccAA

Entry address:
0xFF089

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.9302

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
1012.5 KB (1,036,800 bytes)

The file ML.exe has been seen being distributed by the following 2 URLs.

http://download2157.mediafire.com/07qdfqaifbsg/.../Lion ali ML V1.0.0.2.4.exe

http://download2157.mediafire.com/r5rtp20zaisg/.../Lion ali ML V1.0.0.2.4.exe

Scan ML.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.