» Mój Biegun Downloader.exe
Overview
Analysis
File Details
Downloads (1)

Mój Biegun Downloader.exe

Setup

The executable Mój Biegun Downloader.exe has been detected as malware by 19 anti-virus scanners. This is a self-extracting archive and installer, however the file is not signed with an authenticode signature from a trusted source. The file has been seen being downloaded from przeklej.net.

File name:

Product:

Setup

Version:

0.0.8.1

MD5:

c0c012385a5837566ff71790fa2b8aed

SHA-1:

a57d3112d88d56aa237d3ef886d612e880946493

SHA-256:

e56bfab2297464a46170b220e796c32816c541ca6eb23d7a7f52c92199d8bdcc

Scanner detections:

19 / 68

Status:

Malware

Analysis date:

11/28/2024 7:37:32 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Kazy.275610

330

Avira AntiVirus

TR/Kazy.275610.4

7.11.212.246

AVG

MSIL

2017.0.2808

Baidu Antivirus

Trojan.MSIL.Surveyer

4.0.3.16310

Bitdefender

Gen:Variant.Kazy.275610

1.0.20.350

Comodo Security

UnclassifiedMalware

21245

Emsisoft Anti-Malware

Gen:Variant.Kazy.275610

8.16.03.10.07

ESET NOD32

MSIL/Surveyer (variant)

10.11249

Fortinet FortiGate

MSIL/Surveyer.G

3/10/2016

F-Secure

Gen:Variant.Kazy.275610

11.2016-10-03_5

G Data

Gen:Variant.Kazy.275610

16.3.25

IKARUS anti.virus

Win32.SuspectCrc

t3scan.1.8.6.0

K7 AntiVirus

Trojan

13.1915118

McAfee

Artemis!C0C012385A58

5600.6464

MicroWorld eScan

Gen:Variant.Kazy.275610

17.0.0.210

Norman

Suspicious_Gen4.FKDQO

11.20160310

Qihoo 360 Security

Win32/Trojan.d63

1.0.0.1015

Sophos

Mal/Generic-S

4.98

VIPRE Antivirus

Trojan.Win32.Generic

38004

File size:

461.5 KB (472,576 bytes)

Product version:

0.0.8.1

Original file name:

Mój Biegun Downloader.exe

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\mój biegun downloader.exe

File PE Metadata

Compilation timestamp:

10/26/2013 3:01:16 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

.NET CLR dependent:

Yes

CTPH (ssdeep):

12288:tTvTUUQU3qjmvO6+IaLJUR4Irt+cUzBMSsUmav63lUbU:tT7YcqtxhLJtI5+c8cUfv61M

Entry address:

0x70DFE

Entry point:

FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C# / Basic .NET

Code size:

444 KB (454,656 bytes)

The file Mój Biegun Downloader.exe has been seen being distributed by the following URL.

http://przeklej.net/.../79806625543022553465975790303317743999bf3f7c067676905aeec.html

Remove Mój Biegun Downloader.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.