stick run gold shoes hack.exe

The executable stick run gold shoes hack.exe has been detected as malware by 1 anti-virus scanner. The file has been seen being downloaded from download1134.mediafire.com and multiple other hosts.
MD5:
00cdcac5ba6cefb346572396688455b4

SHA-1:
f8df115b7d7aa1e08724752ec458367224c67e3c

SHA-256:
77d8712e979922ef2d41fe5f8c0791ac60414cc292e0887c761beca9b132e88b

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
11/23/2024 7:19:15 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Threat.Win.Reputation.IMP
16.3.28.3

File size:
2.3 MB (2,405,804 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\stick run gold shoes hack.exe

File PE Metadata
Compilation timestamp:
11/29/2012 12:15:31 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:mmjTwSECCx8UE8QM4q2nRUHTymunnUfQfh:mm0VE8QMgRUXfQfh

Entry address:
0x1C2BD4

Entry point:
55, 8B, EC, 83, C4, F0, 53, B8, 98, 88, 5B, 00, E8, 67, 8B, E4, FF, 8B, 1D, 80, C7, 5C, 00, 8B, 03, E8, 9E, FC, F1, FF, 8B, 0D, 20, CB, 5C, 00, 8B, 03, 8B, 15, 40, B0, 59, 00, E8, A3, FC, F1, FF, 8B, 0D, C0, CA, 5C, 00, 8B, 03, 8B, 15, 90, BB, 59, 00, E8, 90, FC, F1, FF, 8B, 0D, C0, C5, 5C, 00, 8B, 03, 8B, 15, 5C, FD, 52, 00, E8, 7D, FC, F1, FF, 8B, 0D, BC, C6, 5C, 00, 8B, 03, 8B, 15, F8, B6, 59, 00, E8, 6A, FC, F1, FF, 8B, 03, E8, B3, FD, F1, FF, 5B, E8, 85, 49, E4, FF, 90, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.5560

Developed / compiled with:
Microsoft Visual C++

Code size:
1.8 MB (1,842,688 bytes)

The file stick run gold shoes hack.exe has been seen being distributed by the following 2 URLs.

http://download1134.mediafire.com/pd6zsckjg4rg/.../Stick Run Gold Shoes HACK.exe

Remove stick run gold shoes hack.exe - Powered by Reason Core Security