» roguekiller.exe
Overview
Analysis
File Details
Programs (2)
Downloads (6)

roguekiller.exe

RogueKiller

Adlice

This is installed with multiple programs including RogueKiller version 12 and RogueKiller version 11. The file has been seen being downloaded from www.geekstogo.com and multiple other hosts.

File name:

roguekiller.exe

Publisher:

Adlice Software (signed by Adlice)

Product:

RogueKiller

Description:

Anti~mal~ware tool

Version:

11.0.2.0

MD5:

3369be8ecb90a064270e2b9d4f94ab81

SHA-1:

e4cee3c777578084620f52d71fa42dcadf92ef49

SHA-256:

97d644deea6035aaa8ddb2f1e147a73ef1da2808b9bc67aed6b338c3e039f057

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

12/26/2024 2:13:04 PM UTC (today)

File size:

19.9 MB (20,829,256 bytes)

Product version:

11.0.2.0

Original file name:

RogueKiller

File type:

Executable application (Win32 EXE)

Language:

French (France)

Common path:

C:\users\{user}\downloads\roguekiller.exe

Digital Signature

Signed by:

Adlice

Authority:

DigiCert Inc

Valid from:

3/30/2015 8:00:00 PM

Valid to:

6/28/2018 8:00:00 AM

Subject:

CN=Adlice, O=Adlice, L=Orvault, S=Loire Atlantique, C=FR

Issuer:

CN=DigiCert SHA2 Assured ID Code Signing CA, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:

0730C248977813C25BB22568B51ED287

File PE Metadata

Compilation timestamp:

12/7/2015 10:20:48 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

393216:QvqMBXpZ5oLvf0egJsv6tWKFdu9CKGHUNUOSBM:VMBXxl15/i

Entry address:

0x886BA3

Entry point:

E8, 61, EB, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 5D, E9, 9F, F3, FF, FF, 8B, FF, 55, 8B, EC, 83, 7D, 08, 00, 74, 2D, FF, 75, 08, 6A, 00, FF, 35, 20, F3, 3E, 01, FF, 15, 4C, F3, DF, 00, 85, C0, 75, 18, 56, E8, DA, 10, 00, 00, 8B, F0, FF, 15, 54, F4, DF, 00, 50, E8, 8A, 10, 00, 00, 59, 89, 06, 5E, 5D, C3, 8B, FF, 55, 8B, EC, 53, 8B, 5D, 08, 83, FB, E0, 77, 6F, 56, 57, 83, 3D, 20, F3, 3E, 01, 00, 75, 18, E8, 71, D9, 00, 00, 6A, 1E, E8, BB, D7, 00, 00, 68, FF, 00, 00, 00, E8, 3D, 01, 00, 00, 59, 59... 
[+]

Entropy:

7.0960

Code size:

10 MB (10,475,520 bytes)

The file roguekiller.exe has been discovered within the following programs.

RogueKiller version 11 by Adlice Software

adlice.com

About 9% of users remove it

RogueKiller version 12 by Adlice Software

About 6% of users remove it

The file roguekiller.exe has been seen being distributed by the following 6 URLs.

http://www.geekstogo.com/forum/files/get/.../858-RogueKiller.exe

https://www.surlatoile.org/.../RogueKiller.exe

http://freeprotection.ru/exit.php?url=http://freeprotection.ru/files/.../RogueKiller.exe &rnd=5

http://www.adlice.com/fr/download/.../?wpdmdl=2504

http://www.sur-la-toile.com/.../RogueKiller.exe

http://download.fosshub.com/Protected/expiretime=1449584766;badurl=aHR0cDovL3d3dy5mb3NzaHViLmNvbS9Sb2d1ZUtpbGxlci5odG1s/49c894e82ff9b79b59d34c355fe046d39bf40de1bd7841d9bb811b0455a799d8/.../RogueKiller.exe

Scan roguekiller.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.