home

setup_dbm_14_0.exe

The executable setup_dbm_14_0.exe has been detected as malware by 4 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from fifa-master.com and multiple other hosts.
MD5:
1d28b21a5a1f4edad2f5668784c2f7ac

SHA-1:
129ccb15398f02e45ac1f6719044216ec3b4613c

SHA-256:
ef59044f359e1d4041bdc683ffae8555126218cec42e3d123900b2bc4f9a870f

Scanner detections:
4 / 68

Status:
Malware

Analysis date:
11/14/2024 10:16:26 PM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
SCRIPT.Virus
9.0.1.0217

G Data
Script.Packed.Agent.F@susp
14.8.24

Kaspersky
HEUR:Trojan.Script.Generic
14.0.0.3452

VIPRE Antivirus
Trojan.JS.ObfJS.ba
28664

File size:
891.2 KB (912,541 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\setup_dbm_14_0.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
24576:OxGKIm8WDsF6rqcWSE6cGR1HA/0tMfm9aG:z3UDscrqcWSElctMfm9aG

Entry point:
3C, 68, 74, 6D, 6C, 3E, 0D, 0A, 3C, 68, 65, 61, 64, 3E, 0D, 0A, 3C, 2F, 68, 65, 61, 64, 3E, 0D, 0A, 3C, 62, 6F, 64, 79, 3E, 0D, 0A, 0D, 0A, 3C, 73, 63, 72, 69, 70, 74, 20, 74, 79, 70, 65, 3D, 22, 74, 65, 78, 74, 2F, 6A, 61, 76, 61, 73, 63, 72, 69, 70, 74, 22, 3E, 0D, 0A, 3C, 21, 2D, 2D, 20, 0D, 0A, 65, 76, 61, 6C, 28, 75, 6E, 65, 73, 63, 61, 70, 65, 28, 27, 25, 36, 36, 25, 37, 35, 25, 36, 65, 25, 36, 33, 25, 37, 34, 25, 36, 39, 25, 36, 66, 25, 36, 65, 25, 32, 30, 25, 36, 33, 25, 36, 32, 25, 33, 34, 25, 36...
 
[+]

Entropy:
7.8935  (probably packed)

The file setup_dbm_14_0.exe has been seen being distributed by the following 2 URLs.

http://fifa-master.com/downloads/.../61-tools-for-fifa-14?download=70:db-master-14

http://www.fifa-master.com/downloads/.../61-tools-for-fifa-14?download=70:db-master-14

Remove setup_dbm_14_0.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.