orel-i-reshka-ost-daryl-griffith-grand-finale-a get-tune net.exe

Proxomitron

SBIS

The application orel-i-reshka-ost-daryl-griffith-grand-finale-a get-tune net.exe by SBIS has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. It is also typically executed from the user's temporary directory.
Publisher:
Groom-A-Zebu (tm)   (signed by SBIS)

Product:
Proxomitron

Description:
The Proxomitron

Version:
4, 5, 0, 4

MD5:
0a7cafc46281fca6866fd2c8f0b85dbc

SHA-1:
3c9df90d1cd25906dfab7b92a9938b4ae8e241af

SHA-256:
44672114ea0c1565a7c0810d5fd92914a14a70dbb3d89d5665fd9effacae928d

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
12/26/2024 8:10:10 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.2.16.4

File size:
585.4 KB (599,480 bytes)

Product version:
Naoko-4.5 2003-6-1

Copyright:
Copyright © 1999 - 2003 By Scott R. Lemmon

Trademarks:
Proxomitron, The, and the letters A-Z

Original file name:
Proxomitron.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\orel-i-reshka-ost-daryl-griffith-grand-finale-a get-tune net.exe

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
5/3/2015 6:00:00 AM

Valid to:
5/3/2016 5:59:59 AM

Subject:
CN=SBIS, O=SBIS, STREET="PR-T MOSKOVSKIJ, 12", L=YAROSLAVL, S=YAROSLAVL REGION, PostalCode=150001, C=RU

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
009CA0BE54A9516364680AD45D6408C6A2

File PE Metadata
Compilation timestamp:
6/20/1992 4:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

Entry address:
0x82AFF

Entry point:
9C, 60, C7, 44, 24, 20, F6, 4C, 4E, 9B, C6, 44, 24, 0C, 33, 66, 89, 4C, 24, 0C, C7, 44, 24, 1C, 0E, CE, 58, 55, 66, 89, 24, 24, 60, 88, 2C, 24, 8D, 64, 24, 3C, E9, C4, 3B, 00, 00, 8D, 64, 24, 24, E9, 1F, 43, FF, FF, 00, 00, 53, 65, 74, 50, 72, 6F, 63, 65, 73, 73, 57, 69, 6E, 64, 6F, 77, 53, 74, 61, 74, 69, 6F, 6E, 00, 65, AD, 45, BC, 6D, B8, C8, AC, 0E, 7A, 0A, A5, 2A, E1, 78, 00, F6, 09, FE, 9C, B1, 4F, 66, F5, 8B, 30, D7, 60, 8A, 21, BE, 54, EB, 21, 4B, 4A, 63, 00, 8F, 42, CD, C4, AD, 30, B2, F7, 5E, 18...
 
[+]

Code size:
404.5 KB (414,208 bytes)