opus-client install v1.03.24.exe

The executable opus-client install v1.03.24.exe has been detected as malware by 4 anti-virus scanners. The file has been seen being downloaded from copy.com.
Version:
0.0.0.0

MD5:
85f5e9e44297a3dea53861c01157283a

SHA-1:
006211e7954642d278ed4dcc6f1b279613688874

SHA-256:
b1229eb52f6283db9845c74a0df08e2a2c47801bf2d093a6591832485e84d670

Scanner detections:
4 / 68

Status:
Malware

Analysis date:
11/26/2024 11:30:07 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

avast!
Win32:Evo-gen [Susp]
160503-1

AVG
AUTOIT/Agent.dropper
2015.0.4604

Dr.Web
Detection.Undefined
9.0.1.05190

ESET NOD32
multiple threats
7.0.302.0

File size:
1.5 MB (1,561,261 bytes)

Product version:
0.0.0.0

Original file name:
NhKJ.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\opus-client install v1.03.24.exe

File PE Metadata
Compilation timestamp:
9/8/2007 5:12:13 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
24576:h4dn5AZ+7VFysXvP8jMIGgWWbn3AL6DM/onBnYOVBWFNIOBdL6:Kn5AIDvP85Gg5NImYeBgFBdL6

Entry address:
0x5282D

Entry point:
E8, 58, B1, 00, 00, E9, 17, FE, FF, FF, B8, AB, E4, 45, 00, A3, 38, 4E, 47, 00, C7, 05, 3C, 4E, 47, 00, A7, DB, 45, 00, C7, 05, 40, 4E, 47, 00, 65, DB, 45, 00, C7, 05, 44, 4E, 47, 00, 99, DB, 45, 00, C7, 05, 48, 4E, 47, 00, 0F, DB, 45, 00, A3, 4C, 4E, 47, 00, C7, 05, 50, 4E, 47, 00, 25, E4, 45, 00, C7, 05, 54, 4E, 47, 00, 25, DB, 45, 00, C7, 05, 58, 4E, 47, 00, 8F, DA, 45, 00, C7, 05, 5C, 4E, 47, 00, 1E, DA, 45, 00, C3, E8, 9B, FF, FF, FF, E8, 90, BC, 00, 00, 83, 7C, 24, 04, 00, A3, D4, 6A, 47, 00, 74, 05...
 
[+]

Entropy:
7.3839

Code size:
399 KB (408,576 bytes)

The file opus-client install v1.03.24.exe has been seen being distributed by the following URL.

Remove opus-client install v1.03.24.exe - Powered by Reason Core Security