home

mu1ffreqtur.exe

Cadastro de Grade de Alunos

www.microuniversity.com.br

This is a setup program which is used to install the application. The file has been seen being downloaded from dc541.4shared.com and multiple other hosts.
Publisher:
www.microuniversity.com.br

Product:
Cadastro de Grade de Alunos

Description:
Cadastro de Grade de Alunos (Módulo Turmas)

Version:
1.00.0005

MD5:
510cad61988313cc1b7ecff46bfb8ab8

SHA-1:
3d1e3d7f538d46710b568a8701e9734829ea8a7d

SHA-256:
e0c810064b05e46892afb322171468220d729c25899f04b70434acbe18121e68

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/23/2024 10:55:08 PM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Trojan.VBInject!1.64FA
23.00.65.16602

File size:
432 KB (442,368 bytes)

Product version:
1.00.0005

Original file name:
mu1ffreqtur.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\mu1ffreqtur.exe

File PE Metadata
Compilation timestamp:
11/8/2014 12:24:44 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
6144:hsx+UiqwIpYSmRlQwCEHkDYtZOlWO1I8b7CrYaLjTOvMxY0dzLFYB:hIpYS6FC5ROnp/FY

Entry address:
0x24FC

Entry point:
68, 04, 13, 41, 00, E8, F0, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 3F, 57, 44, 85, 05, 7D, 5A, 49, BF, 3C, A3, 78, 87, AC, 1E, 8A, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 42, 00, 04, 50, 82, 01, 50, 72, 6F, 6A, 65, 63, 74, 31, 00, 00, 00, 00, 6C, 5B, 42, 01, 00, 00, 00, 00, FF, CC, 31, 00, 29, 1E, D3, 03, E8, B3, 56, 3A, 4B, B6, B6, 20, F9, FF, C4, BE, 72, 20, 3E, B3, A9, 35, 24, C8, 48, A8, DE, 6A, 62, 9D, 28, AD, 15, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00...
 
[+]

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
416 KB (425,984 bytes)

The file mu1ffreqtur.exe has been seen being distributed by the following 2 URLs.

http://dc541.4shared.com/download/49S87QKMba/.../mu1ffreqtur.exe

http://dc122.4shared.com/download/49S87QKMba/.../mu1ffreqtur.exe

Scan mu1ffreqtur.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.