home

SeaBot 3.0.exe

SeaBot 3.0

iNSiDER Productions

The application SeaBot 3.0.exe has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
iNSiDER Productions

Product:
SeaBot 3.0

Version:
1.0.0.0

MD5:
cf02bcdf1d0729c807d13f21e6f3be46

SHA-1:
0de40373f1ee5868a0b1bceff029a8db15e57476

SHA-256:
3f1b7d226c69b042aea3de16d9384306d1787745730eaebe2f150464b32bc105

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
1/10/2025 8:52:36 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Adware.Eorezo.RE (M)
17.3.4.4

File size:
1.6 MB (1,680,896 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © iNSiDER Productions 2015

Original file name:
SeaBot 3.0.exe

File type:
Executable application (Win64 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\seabot_3_0\seabot 3.0.exe

File PE Metadata
Compilation timestamp:
3/4/2017 2:52:18 AM

OS version:
4.0

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
48.0

.NET CLR dependent:
Yes

Entry address:
0x18357E

Entry point:
4D, 5A, 90, 00, 03, 00, 00, 00, 04, 00, 00, 00, FF, FF, 00, 00, B8, 00, 00, 00, 00, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 80, 00, 00, 00, 0E, 1F, BA, 0E, 00, B4, 09, CD, 21, B8, 01, 4C, CD, 21, 54, 68, 69, 73, 20, 70, 72, 6F, 67, 72, 61, 6D, 20, 63, 61, 6E, 6E, 6F, 74, 20, 62, 65, 20, 72, 75, 6E, 20, 69, 6E, 20, 44, 4F, 53, 20, 6D, 6F, 64, 65, 2E, 0D, 0D, 0A, 24, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Code size:
1.5 MB (1,578,496 bytes)

The executing file has been seen to make the following network communications in live environments.

TCP (HTTP SSL):
Connects to xx-fbcdn-shv-01-frt3.fbcdn.net  (31.13.92.14:443)

TCP (HTTP):
Connects to srv-xl6-222.netsons.net  (46.252.149.222:80)

TCP (HTTP):
Connects to ec2-52-207-50-190.compute-1.amazonaws.com  (52.207.50.190:80)

TCP (HTTP SSL):
Connects to gameevents-829-weblog-014236.nue2.bigpoint.net  (178.132.246.170:443)

TCP (HTTP SSL):
Connects to 113-125-232-198.static.unitasglobal.net  (198.232.125.113:443)

TCP (HTTP SSL):
Connects to a104-84-203-168.deploy.static.akamaitechnologies.com  (104.84.203.168:443)

TCP (HTTP SSL):
Connects to seafight-38-loadbalancer-063174.pinf625.bigpoint.net  (178.132.240.227:443)

TCP (HTTP SSL):
Connects to seafight-14-loadbalancer-063173.pinf625.bigpoint.net  (178.132.240.226:443)

TCP (HTTP SSL):
Connects to a104-84-175-239.deploy.static.akamaitechnologies.com  (104.84.175.239:443)

Remove SeaBot 3.0.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.