» r'n'r_keygen.exe
Overview
Analysis
File Details
Programs (1)
Downloads (1)

r'n'r_keygen.exe

TRiViUM

The application r'n'r_keygen.exe, “Rig'n'Roll Key Generator” has been detected as a potentially unwanted program by 22 anti-malware scanners. This is a setup program which is used to install the application. This file is typically installed with the program RigNRoll (Remove Only) by 1C Company. The file has been seen being downloaded from www8.zippyshare.com.

File name:

r'n'r_keygen.exe

Publisher:

TRiViUM

Description:

Rig'n'Roll Key Generator

Version:

1.00.000.000

MD5:

c86049426762e0934cf1b7e117b90017

SHA-1:

1c83d4e51fcfb883731f104964e1889d372b0d03

SHA-256:

2de8a6a60134c7f2b6b632b3c9097c60d043f9a772a98761cc734fd9cefae0e2

Scanner detections:

22 / 68

Status:

Potentially unwanted

Analysis date:

11/24/2024 6:02:58 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Kazy.2527

475

Agnitum Outpost

Trojan.Gendal

7.1.1

AhnLab V3 Security

Trojan/Win32.Agent

2015.07.19

Avira AntiVirus

TR/Gendal.KD.57212

8.3.1.6

Arcabit

Trojan.Kazy.D9DF

1.0.0.425

AVG

Win32/Blacked

2016.0.2953

Bitdefender

Gen:Variant.Kazy.2527

1.0.20.1450

Bkav FE

HW32.Packed

1.3.0.6979

Emsisoft Anti-Malware

Gen:Variant.Kazy.2527

8.15.10.17.07

Fortinet FortiGate

W32/SPNR.04CL11!tr

10/17/2015

F-Prot

W32/MalwareF.LJJI

v6.4.7.1.166

F-Secure

Gen:Variant.Kazy.2527

11.2015-17-10_7

G Data

Gen:Variant.Kazy.2527

15.10.25

IKARUS anti.virus

Trojan.Gendal

t3scan.1.9.5.0

Malwarebytes

RiskWare.Tool.CK

v2015.10.17.07

McAfee

Artemis!C86049426762

5600.6609

MicroWorld eScan

Gen:Variant.Kazy.2527

16.0.0.870

nProtect

Trojan/W32.Agent.768512.W

15.07.17.01

Panda Antivirus

Generic Malware

15.10.17.07

Quick Heal

(Suspicious) - DNAScan

10.15.14.00

Rising Antivirus

PE:Trojan.Win32.Generic.1270A681!309372545

23.00.65.151015

VIPRE Antivirus

Trojan.Win32.Generic

42124

File size:

750.5 KB (768,512 bytes)

Product version:

1.00

Original file name:

SFKeyGen.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\äàëüíîáîéùèêè 3.ïîêîðåíèå àìåðèêè + áîëüøèå ãîíêè.v 3.0.5.2726\r'n'r_keygen.exe

File PE Metadata

Compilation timestamp:

10/8/2013 9:00:30 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

5.12

CTPH (ssdeep):

12288:JFldyFoJ1Gv5rViByQNTsUQ5geksu33UTnxE6GBtR/ds0xXsDx1uh/MS:5EoJsr6LNTrEuUTxEvdjXyx1uh

Entry address:

0x15047B

Entry point:

E9, A2, 28, 00, 00, 68, 2F, AF, 05, 4E, 8D, 64, 24, 24, 0F, 85, F9, FB, FF, FF, 60, 9C, 89, 7C, 24, 20, 55, 89, 5C, 24, 20, E9, B4, F7, FF, FF, FF, 30, 8F, 44, 24, 1C, 52, FF, 74, 24, 20, C2, 24, 00, 52, C7, 04, 24, FD, 6A, 6E, 55, E9, 4A, F5, FF, FF, 51, C7, 04, 24, 76, B8, FA, 45, 68, A5, 26, 06, D2, 8D, 64, 24, 04, E9, AF, 14, 01, 00, F8, F8, F6, D0, F5, E8, 48, 32, 00, 00, F9, 0F, BA, E6, 07, 84, C5, E9, 5C, C3, 00, 00, 90, D4, 64, 17, 65, E1, CE, 62, E2, 08, A0, D4, 42, EF, 29, CC, C3, 91, 15, 9D, 4E... 
[+]

Entropy:

7.8445

Packer / compiler:

Xtreme-Protector v1.05

Code size:

1.4 MB (1,449,472 bytes)

The file r'n'r_keygen.exe has been discovered within the following program.

RigNRoll (Remove Only) by 1C Company

Rig'n'Roll is a sandbox-style truck driving simulation and racing video game that simulates truck driving and management along with associated business strategic activities.

www.1cpublishing.eu

About 1% of users remove it

The file r'n'r_keygen.exe has been seen being distributed by the following URL.

http://www8.zippyshare.com/d/8354538/.../Rig.N.Roll Keygen.exe

Remove r'n'r_keygen.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.