home

simple-v1b3.exe

PhoneTracker

This is a setup program which is used to install the application. The file has been seen being downloaded from www.simplecellphonespy.com and multiple other hosts.
Product:
PhoneTracker

Version:
1.0.0.0

MD5:
4c74433bd2a328244ac2d21f0e3ab106

SHA-1:
f9149166bedce04e7251a23fd17bd8478365f3fe

SHA-256:
69e67c58864180f28880a31fa5d973a94e02de0917d9a0bda968d39d81bc3761

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 7:01:08 PM UTC  (today)

File size:
2.5 MB (2,569,216 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2011

Original file name:
PhoneTracker.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\simple-v1b3.exe

File PE Metadata
Compilation timestamp:
7/16/2012 6:39:47 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
49152:k6x/7xk6lvtKUnh9N7N528tCqAqAae6c1QsEzKmwjv82TSbboMK4LSw6Kp0:kc7a6ltKUh9FN5XtDAfesjmwDFSfWcBG

Entry address:
0x274B0E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.9538

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
2.4 MB (2,567,168 bytes)

The file simple-v1b3.exe has been seen being distributed by the following 2 URLs.

http://www.simplecellphonespy.com/.../simple-v1b3.exe

http://www.simplecellphoneapp.com/.../simple-v1b3.exe

Scan simple-v1b3.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.