home

spread.exe

MD5:
2bc1b7b23a4b6eaad7b4e6ec2cdd6544

SHA-1:
018b18fefadd0a3ae416672d373e2a9cc2c2df66

SHA-256:
a1114ca52f8e63eee897a13553c40aec80c8e9913af8e898bffe5a700802f83d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 1:05:37 PM UTC  (today)

File size:
169.9 KB (174,020 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\spread.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
1536:+MTSMPYGvMtlvyTKFUl5nzqGK6WXxgKgKpi2iIVie7LbOWdfBXIvmk4mzJZ:ZTSM+DSRcxPPf9Bsb4s

Entry point:
4D, 5A, C4, 01, 54, 01, 00, 00, 02, 00, 00, 00, FF, FF, 00, 00, 80, 00, 00, 00, AA, 01, 00, 00, 1C, 00, 00, 00, 00, 00, 00, 00, 54, 55, 52, 42, 4F, 20, 42, 41, 53, 49, 43, 2F, 43, 6F, 70, 79, 72, 69, 67, 68, 74, 20, 28, 63, 29, 20, 31, 39, 38, 37, 20, 62, 79, 20, 42, 6F, 72, 6C, 61, 6E, 64, 20, 49, 6E, 74, 65, 72, 6E, 61, 74, 69, 6F, 6E, 61, 6C, 2F, 41, 6C, 6C, 20, 52, 69, 67, 68, 74, 73, 20, 52, 65, 73, 65, 72, 76, 65, 64, 00, 00, 01, 43, 00, 52, 53, 5A, 61, 6C, 65, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.4581

The file spread.exe has been seen being distributed by the following URL.

http://dc93.4shared.com/download/.../SPREAD.EXE

Scan spread.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.