striker-16.exe

The executable striker-16.exe has been detected as malware by 2 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from fs01n1.sendspace.com.
MD5:
43bc4584337f0650a898c9903a2be380

SHA-1:
1a0eb8e2be1829428d6a3f969f0acc3e2432fe47

SHA-256:
fe1022424b5a99e5f43f36d8bd11bf14fb270100475b48d39600ee4f2f620ddc

Scanner detections:
2 / 68

Status:
Malware

Analysis date:
12/26/2024 11:41:32 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
MSIL/Bladabindi.BH trojan
6.3

Reason Heuristics
Trojan.Blandabindi (M)
16.10.12.10

File size:
23.5 KB (24,064 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\striker-16.exe

File PE Metadata
Compilation timestamp:
6/27/2016 12:05:10 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
384:9MQ+SAN7uprgvM5OSUswZXg69gbm4hfpFmRvR6JZlbw8hqIusZzZF0:lOaxVULRpcnuh

Entry address:
0x748E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
21.5 KB (22,016 bytes)

The file striker-16.exe has been seen being distributed by the following URL.

Remove striker-16.exe - Powered by Reason Core Security