home

mortal kombat x hack_10924_i68454037_il345.exe

Sony PC Companion

LLC BUDІMEKS

The application mortal kombat x hack_10924_i68454037_il345.exe by LLC BUDІMEKS has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It bundles adware offers using the Amonetize, a Pay-Per-Install (PPI) monetization and distribution download manager. The software offerings provided are based on the PC's geo-location at the time of install.
Publisher:
Sony Mobile Communications   (signed by LLC BUDІMEKS)

Product:
Sony PC Companion

Version:
2.10.275

MD5:
f76295ecd0c7c4202b9d17bf03d9e5f3

SHA-1:
b301b32e7cded4f4eb0528c772ea58988e0e0ade

SHA-256:
c4774f9ca1246a7abaa690e39fbf346aead83df2aaacc09afda52bcb8c94ef89

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/6/2024 7:33:18 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Amonetize.Bundler (M)
17.3.14.6

File size:
1.8 MB (1,905,680 bytes)

Product version:
2.10.275

Copyright:
Sony

Original file name:
stub32i.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\mortal+kombat+x+hack\mortal kombat x hack_10924_i68454037_il345.exe

Digital Signature
Signed by:
LLC BUDІMEKS

Authority:
COMODO CA Limited

Valid from:
8/26/2015 5:00:00 PM

Valid to:
8/26/2016 4:59:59 PM

Subject:
CN=LLC BUDІMEKS, O=LLC BUDІMEKS, STREET=Cvitna 34, L=Gorodockey area Galichani vilage, S=Lvovskaja, PostalCode=81523, C=UA

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00E9F1B23ADDECC133378F48EBB20F9E3D

File PE Metadata
Compilation timestamp:
10/7/2015 6:02:48 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

Entry address:
0x4339B8

Entry point:
68, 26, 49, B3, B8, E8, 3C, EA, E5, FF, 08, E5, 4A, 3C, CD, 15, 8F, DC, 0D, D5, 15, 98, D9, 39, FE, 65, 0C, 8B, 7D, F4, F7, C6, E0, 0D, 30, 17, 3B, C7, 2B, D1, 66, 85, FE, 81, FD, 4E, 7B, C5, 66, 2B, F1, 66, FF, C9, C0, F9, E4, 8B, 4D, F8, F7, C6, F8, 2D, 01, 67, 0F, B7, BC, 79, C8, 01, 00, 00, 81, FA, 00, 00, 00, 01, 0F, 83, 21, 00, 00, 00, 3B, 45, FC, 0F, 83, 3D, 25, FC, FF, 0F, B6, 08, C1, E6, 08, F6, C3, 02, C1, E2, 08, 0B, F1, 40, 89, 45, 08, 0F, 44, CB, 0F, AB, C9, 8B, CA, F8, 66, 85, F4, C1, E9, 0B...
 
[+]

Entropy:
7.9077  (probably packed)

Code size:
1.7 MB (1,811,968 bytes)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.