new ruler snoker pool live tour....................................................................

IQcFYEc

wLVEEqq

The file new ruler snoker pool live tour.................................................................... has been detected as malware by 27 anti-virus scanners. The file has been seen being downloaded from www.speedyshare.com.
Publisher:
wLVEEqq

Product:
IQcFYEc

Description:
utKzDuT

Version:
1.3.6.6

MD5:
55e203e40324a7268654685aeeab7c03

SHA-1:
90cfa5b30a21ff9b4889f9c5b8d88bb86a94bea1

SHA-256:
e41d238bd454114c686d3b984b1224b965edb76123bdfdb69f4289a3ccb642d0

Scanner detections:
27 / 68

Status:
Malware

Analysis date:
11/23/2024 7:45:20 AM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
Trojan.DR.FrauDrop
7.1.1

AhnLab V3 Security
Trojan/Win32.Agent
2015.11.19

Avira AntiVirus
TR/AD.Rialega.Y.619
8.3.2.2

Arcabit
Trojan.Barys.D1CA9
1.0.0.597

avast!
MSIL:GenMalicious-H [Trj]
2014.9-160801

AVG
MSIL9
2017.0.2664

Baidu Antivirus
Trojan.Win32.Dropper
4.0.3.1681

Bitdefender
Gen:Variant.Barys.7337
1.0.20.1070

Clam AntiVirus
Win.Trojan.Bladbindi
0.98/21511

Comodo Security
TrojWare.MSIL.Kryptik.ES
23615

Emsisoft Anti-Malware
Gen:Variant.Barys.7337
8.16.08.01.07

ESET NOD32
MSIL/Injector.CFN (variant)
10.12587

Fortinet FortiGate
MSIL/Kryptik.JQ!tr
8/1/2016

G Data
Gen:Variant.Barys.7337
16.8.25

IKARUS anti.virus
Trojan.MSIL.Injector
t3scan.1.9.5.0

K7 AntiVirus
Trojan
13.212.17900

Kaspersky
Trojan-Dropper.Win32.FrauDrop
14.0.0.-184

Malwarebytes
Trojan.Dropper.MSIL
v2016.08.01.07

McAfee
RDN/Generic Dropper
5600.6320

Microsoft Security Essentials
Backdoor:MSIL/Bladabindi!rfn
1.1.12300.0

MicroWorld eScan
Gen:Variant.Barys.7337
17.0.0.642

Panda Antivirus
Trj/GdSda.A
16.08.01.07

Qihoo 360 Security
Win32/Trojan.Dropper.d04
1.0.0.1077

Sophos
Mal/Generic-S
4.98

SUPERAntiSpyware
Trojan.Agent/Gen-Falcomp
8985

Trend Micro
TROJ_GEN.R021C0DKG15
10.465.01

VIPRE Antivirus
Trojan.Win32.Generic
45282

File size:
568 KB (581,632 bytes)

Product version:
1.3.6.6

Copyright:
2012 tGtrlEB

Original file name:
New Ruler Snoker Pool Live tour 2017.exe

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\new ruler snoker pool live tour............................................................................2017.exe

File PE Metadata
Compilation timestamp:
11/13/2015 10:48:12 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
12288:Uk591EG8tCvoB92Zouch+OsPGdDJd+7hrFJLq:UuXCc

Entry address:
0x8C59A

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.5379

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
556 KB (569,344 bytes)

The file new ruler snoker pool live tour.................................................................... has been seen being distributed by the following URL.