home

na kontru siti.exe

Winamp

PROFI-SOFT

The executable na kontru siti.exe has been detected as malware by 1 anti-virus scanner.
Publisher:
Nullsoft  (signed by PROFI-SOFT)

Product:
Winamp

Description:
Nullsoft

Version:
5.02

MD5:
a0dc7a525eec2170ac032d7c3abbee51

SHA-1:
b3ddd7ab4b24d0a33038ab791edba0d9855b0f9d

SHA-256:
992bc2c94eff70e6e2f1f3ab452277bb28be134dcb88ca8a2563275dc8f07194

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
11/30/2024 10:06:52 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.3.14.8

File size:
1.3 MB (1,381,384 bytes)

Product version:
5.02

Copyright:
Copyright © 1997-2004, Nullsoft, Inc.

Trademarks:
Nullsoft and Winamp are trademarks of Nullsoft, Inc.

Original file name:
Winamp.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\na kontru siti.exe

Digital Signature
Signed by:
PROFI-SOFT

Authority:
COMODO CA Limited

Valid from:
9/4/2015 3:00:00 AM

Valid to:
9/4/2016 2:59:59 AM

Subject:
CN="""PROFI-SOFT"", OOO", O="""PROFI-SOFT"", OOO", STREET="Prospekt Piskarevsky, 10", L=Saint-Petersburg, S=Saint-Petersburg, PostalCode=195221, C=RU

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
008B0D4FAA82D8B1952898AE54373F0012

File PE Metadata
Compilation timestamp:
10/13/2015 2:53:48 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
5.0

Entry address:
0x8A190

Entry point:
52, 51, 89, FF, 75, 02, 37, 90, 01, FE, E8, A1, 70, F7, FF, 4E, 90, 58, 59, EB, 08, 90, 12, 77, 04, FC, 90, FC, 90, 68, 08, A2, 48, 00, E9, 7B, C7, 00, 00, E8, 6C, DD, FF, FF, E8, F3, D7, FF, FF, C7, 05, 41, F0, 48, 00, 12, 06, 01, 00, F8, C1, DA, 33, D2, C2, C6, 05, AA, F0, 48, 00, 7A, 0F, B7, D0, 8D, 15, 55, F0, 48, 00, 01, 72, 1C, E9, CA, DF, FF, FF, 50, 9F, F6, D0, A1, 88, 30, 49, 00, E9, 85, E1, FF, FF, F9, 03, 45, F0, E9, 4C, DD, 00, 00, 15, 11, E8, 01, 6E, F7, FF, C3, 50, 0F, C8, E9, F8, 08, 00, 00...
 
[+]

Code size:
573 KB (586,752 bytes)

Remove na kontru siti.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.