home

netflixaccountchecker-64.exe

The executable netflixaccountchecker-64.exe has been detected as malware by 10 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from fs03n2.sendspace.com and multiple other hosts.
MD5:
a770751bed179f172c665bd5a83c0b0c

SHA-1:
aac1d504bb67b5f499534f96e5f78611a5baee1f

SHA-256:
f321a082b7b9eef222fd32187588980052ac18fa5320e41c9034996e725f40cf

Scanner detections:
10 / 68

Status:
Malware

Analysis date:
11/5/2024 9:39:58 AM UTC  (today)

Scan engine
Detection
Engine version

AVG
Generic12_c
2016.0.3088

Baidu Antivirus
Hacktool.Win32.Autoit
4.0.3.1565

Comodo Security
UnclassifiedMalware
22250

ESET NOD32
Win32/HackTool.Autoit
9.11694

K7 AntiVirus
Hacktool
13.204.16048

Kaspersky
HackTool.Win32.FlixChecker
14.0.0.1935

McAfee
Artemis!A770751BED17
5600.6744

Panda Antivirus
Generic Suspicious
15.06.05.01

Quick Heal
HackTool.FlixChecker.g6 (Not a Virus)
6.15.14.00

VIPRE Antivirus
Trojan.Win32.Generic
40600

File size:
1 MB (1,072,640 bytes)

File type:
Executable application (Win64 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\hacker\carder\netflixaccountchecker-64.exe

File PE Metadata
Compilation timestamp:
6/28/2014 2:49:22 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
24576:GGphMuzBMCx3Kta4ATJAH1mfpugR/md1bV5aanhjpvVrgku6O:tZzO43KtaISugRed1bVkah9tr7

Entry address:
0x2C9D4

Entry point:
48, 83, EC, 28, E8, CF, AF, 00, 00, 48, 83, C4, 28, E9, 36, FE, FF, FF, CC, CC, 40, 53, 48, 83, EC, 10, 41, B9, 02, 00, 00, 00, 33, C9, 45, 8D, 51, FF, 44, 89, 0D, 33, 6A, 0A, 00, 41, 8B, C2, 44, 89, 15, 25, 6A, 0A, 00, 0F, A2, 89, 04, 24, 89, 5C, 24, 04, 89, 54, 24, 0C, 0F, BA, E1, 14, 73, 2B, 44, 89, 0D, 0B, 6A, 0A, 00, C7, 05, 05, 6A, 0A, 00, 06, 00, 00, 00, 0F, BA, E1, 1C, 73, 14, C7, 05, F1, 69, 0A, 00, 03, 00, 00, 00, C7, 05, EB, 69, 0A, 00, 0E, 00, 00, 00, 44, 8B, 05, C0, CF, 0A, 00, 33, C9, B8, 07...
 
[+]

Code size:
656.5 KB (672,256 bytes)

The file netflixaccountchecker-64.exe has been seen being distributed by the following 3 URLs.

https://fs03n2.sendspace.com/dl/c373c87817d1994ec2724d6698da2c57/577aacb322499265/.../NetflixAccountChecker-64.exe

https://fs03n5.sendspace.com/dl/902d7fe711cf083417c79c8fe445ea2c/5716b0c407f13edb/.../NetflixAccountChecker-64.exe

http://download1097.mediafire.com/k1xij1p1bizg/.../NetflixAccountChecker-64.exe

Remove netflixaccountchecker-64.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.