remdelf.exe

MD5:
09822f174287770ad07e66f8abc18f1c

SHA-1:
b41ea2988387213c13041a4bda0024193734d418

SHA-256:
71778b72a461292c9125f90e4dc06081318d9a0871ed395067b3957f70ecf94f

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/27/2024 10:52:30 AM UTC  (today)

Scan engine
Detection
Engine version

Comodo Security
Heur.Packed.Unknown
19225

File size:
4.5 KB (4,608 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\remdelf.exe

File PE Metadata
Compilation timestamp:
12/15/2006 1:35:05 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
6.0

CTPH (ssdeep):
96:j5d8d0AiiRngrUeKHvKGiuLDC8vmAfz6Ugitq5SAleMfJ:j5dqLRgrNACGvL9tbNgi45S0J

Entry address:
0x1848

Entry point:
55, 8B, EC, 51, 68, 34, 05, 00, 00, 68, 60, 2A, 40, 00, 6A, 05, 68, 40, 2A, 40, 00, E8, 1F, FD, FF, FF, 83, F8, 01, A3, 38, 2A, 40, 00, 77, 1E, 8D, 45, FC, 6A, 00, 50, 6A, 44, 68, FC, 10, 40, 00, 6A, F5, FF, 15, 24, 10, 40, 00, 83, 65, FC, 00, E9, 84, 00, 00, 00, 57, 68, F0, 10, 40, 00, FF, 15, 40, 10, 40, 00, 8B, F8, 85, FF, 74, 31, 56, 8B, 35, 3C, 10, 40, 00, 68, E8, 10, 40, 00, 57, FF, D6, 85, C0, 74, 05, A3, 00, 20, 40, 00, 68, D4, 10, 40, 00, 57, FF, D6, 85, C0, 5E, 74, 0C, 8D, 4D, FC, 51, 6A, 00, 6A...
 
[+]

Entropy:
5.1628

Developed / compiled with:
Microsoft Visual C++

Code size:
3.5 KB (3,584 bytes)

The file remdelf.exe has been seen being distributed by the following 3 URLs.

Scan remdelf.exe - Powered by Reason Core Security