» mp4+to+amr+converter+free+download_10924_i52017742_il345.exe
Overview
Analysis
File Details

mp4+to+amr+converter+free+download_10924_i52017742_il345.exe

Runner Utility

LLC Arctic West

The executable mp4+to+amr+converter+free+download_10924_i52017742_il345.exe has been detected as malware by 1 anti-virus scanner.

File name:

Publisher:

Dummy, Ltd. (signed by LLC Arctic West)

Product:

Runner Utility

Version:

1.0.0.151

MD5:

38b2470ecdf5a665ccc76fd93e6e9643

SHA-1:

45341fa344643710c50b296b237eeb0d78135ee6

SHA-256:

d1325e6a7a40b88048631f4e12dbdfd095d9ed80f479cb4c3fe3e83d8c8fc5dd

Scanner detections:

1 / 68

Status:

Malware

Analysis date:

11/15/2024 4:26:32 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP (M)

17.1.16.17

File size:

2 MB (2,046,464 bytes)

Product version:

1.0.0.151

Original file name:

runner.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\mp4+to+amr+converter+free+download_10924_i52017742_il345.exe

Digital Signature

Signed by:

LLC Arctic West

Authority:

COMODO CA Limited

Valid from:

8/25/2015 5:30:00 AM

Valid to:

8/25/2016 5:29:59 AM

Subject:

CN=LLC Arctic West, O=LLC Arctic West, STREET=Lviv highway 1, L=Mikolaiv, S=Lvovskaja, PostalCode=81600, C=UA

Issuer:

CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

416057CF015B4832DC973BA203AAB312

File PE Metadata

Compilation timestamp:

8/30/2015 12:33:08 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

12.0

Entry address:

0x41E3AD

Entry point:

68, 83, 13, 1A, 34, E8, 27, EF, E1, FF, BC, AC, 6D, 48, C9, B4, ED, 6A, 48, DA, 20, 4F, 93, B7, 59, F4, AB, 92, B7, FA, 32, FD, 6D, 48, 83, 05, DC, 6A, 48, E5, 4D, 47, 93, B7, C0, 49, 11, 95, B7, C3, 0C, 9D, 6C, 48, 77, 32, 97, 6A, 48, 1C, 4C, 66, 93, B7, A1, 0A, 40, 6D, 48, E2, 0F, 3C, 6A, 48, 1F, C5, 04, 93, B7, F0, 5F, 24, 95, B7, 96, 07, 95, B7, 2C, D6, 3C, 6C, 48, 9F, 1F, 02, 6A, 48, C3, 54, C5, 6D, 48, 15, 44, CA, 92, B7, DD, D7, EB, 6C, 48, 72, 3F, 6A, 48, A6, 71, 3E, 90, B7, B5, E8, 95, B7, 0F, A1... 
[+]

Entropy:

7.9803 (probably packed)

Code size:

1.9 MB (2,035,200 bytes)

Remove mp4+to+amr+converter+free+download_10924_i52017742_il345.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.