home

skin dudu.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from download1102.mediafire.com.
MD5:
ed56d958bb53adbbebb93f46dd13fe5a

SHA-1:
36f870954f77eaf92d240d1ead9ed35e98e406ad

SHA-256:
724f1a16b7891dcaad49b2c3675373dd9e0fbfe10d7673d7c0f16c5e04329361

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 1:22:28 AM UTC  (today)

File size:
5 MB (5,280,768 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\skin dudu.exe

File PE Metadata
Compilation timestamp:
6/19/1992 7:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:UDg5YZgS6FFpngoTtfBPmkzG9vlJsTjkiTHUs2CQb4/63zD8g:U0RPFMoBNFGNDSkiLUL/F33

Entry address:
0x225DBC

Entry point:
55, 8B, EC, 83, C4, F0, B8, 9C, 56, 62, 00, E8, 0C, 0F, DE, FF, 33, C0, 55, 68, 29, 5E, 62, 00, 64, FF, 30, 64, 89, 20, A1, B0, E1, 62, 00, 8B, 00, E8, 7E, 89, E5, FF, A1, B0, E1, 62, 00, 8B, 00, BA, 40, 5E, 62, 00, E8, 65, 85, E5, FF, 8B, 0D, 10, E4, 62, 00, A1, B0, E1, 62, 00, 8B, 00, 8B, 15, A0, FE, 61, 00, E8, 6D, 89, E5, FF, A1, B0, E1, 62, 00, 8B, 00, E8, E1, 89, E5, FF, 33, C0, 5A, 59, 59, 64, 89, 10, 68, 30, 5E, 62, 00, C3, E9, 52, E3, DD, FF, EB, F8, E8, 57, E8, DD, FF, 00, 00, 00, FF, FF, FF, FF...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
2.1 MB (2,248,704 bytes)

The file skin dudu.exe has been seen being distributed by the following URL.

http://download1102.mediafire.com/sren0v3cpkjg/.../Skin Dudu.exe

Scan skin dudu.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.