» tambayan pinoy channel tfc pinoy teleserye replay pinoy chat room pinoy channel.exe
Overview
Analysis
File Details
Downloads (1)

tambayan pinoy channel tfc pinoy teleserye replay pinoy chat room pinoy channel.exe

The executable tambayan pinoy channel tfc pinoy teleserye replay pinoy chat room pinoy channel.exe has been detected as malware by 1 anti-virus scanner. The file has been seen being downloaded from rootkinds.net.

File name:

MD5:

fa1897b5390468c0232c517170b1f990

SHA-1:

db5b594528fbd83c794c7e7177e91774639cfcfc

SHA-256:

17e939551f26b0e1a5098ad71e22cfa8c48603632998bf55d0aadee20a8dfe8a

Scanner detections:

1 / 68

Status:

Malware

Analysis date:

11/24/2024 9:41:39 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

Threat.Win.Reputation.IMP

16.5.22.19

File size:

1.1 MB (1,119,744 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\tambayan pinoy channel tfc pinoy teleserye replay pinoy chat room pinoy channel.exe

File PE Metadata

Compilation timestamp:

1/21/2013 5:12:59 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

24576:AGosVtfxYk1bKW+vTzdUSOGO3G9BqmMdc/lWrkQd:AuYk1bKrTzdUTGOeBdyUikU

Entry address:

0xB5D0B

Entry point:

E8, FC, 13, 00, 00, E9, 00, 00, 00, 00, 6A, 14, 68, C0, BD, 4F, 00, E8, 0F, 19, 00, 00, E8, C9, 15, 00, 00, 0F, B7, F0, 6A, 02, E8, 8F, 13, 00, 00, 59, B8, 4D, 5A, 00, 00, 66, 39, 05, 00, 00, 40, 00, 74, 04, 33, DB, EB, 33, A1, 3C, 00, 40, 00, 81, B8, 00, 00, 40, 00, 50, 45, 00, 00, 75, EB, B9, 0B, 01, 00, 00, 66, 39, 88, 18, 00, 40, 00, 75, DD, 33, DB, 83, B8, 74, 00, 40, 00, 0E, 76, 09, 39, 98, E8, 00, 40, 00, 0F, 95, C3, 89, 5D, E4, E8, 3E, 03, 00, 00, 85, C0, 75, 08, 6A, 1C, E8, DC, 00, 00, 00, 59, E8... 
[+]

Entropy:

7.4132

Code size:

748 KB (765,952 bytes)

The file tambayan pinoy channel tfc pinoy teleserye replay pinoy chat room pinoy channel.exe has been seen being distributed by the following URL.

http://rootkinds.net/hp/?q=bvjAtG26YtHUxztvqo1KRh1rlq6/D4vU/f5E9oDfF5SbsGR7AdQGb7eD6D0fo25flUkeJUokMJo2X5K0jxbW gu3ZJkJYnN8zgqqZ24T7BS0KpC1CScdFTw2kjqMeWvQLK6ipPE0O8wQOZ7HATE/zzmC60saqM7Ldo37qpwtbEQG3LI92Vq/4 YKOqsybKU3kncvA1KWc8DlN/cQ/VDI7sdYuu/LaISzP6rmyBh0T5pl8ZnLZPBX4Qkc4KOPz6Urg48eQ/s8vzatHfHfR9VqOLWPODm/MBc4tDGFhK17XDdjnp2spLAI1Xpkm GVgzV3/Ol9h86OKanwgZy5/jhIUiEzdj405CgH GKcx2s//HL8rVp7ZGcUrU5sS443iv4btr8C8mkbucu61UXnLMyAlMAdPGPxOM5XCWHSeDeqWWB/SPvJ/p4PpsON77XdIOC7at0BWkZyc/JWTC0FpMoBPS0PbfxLAt0BLcy2Rl64ualSapLe34EI5Qceci2WIeKUvXFoovnPPyzYnOpxdPVPlIpLVKvTZRwJkPl HtuIvlp1vbxMaWt/0TH4dhTdG5GRzr3MRoCglN/Hyw 5birt qsxBe4dhzCsu/Lg7P0wdiKk sGWnliuwHLoJCDoQSQ17fKxhYkGBogX5s0oLH2g6f8a0EgPW/mAi1ffPwCkCeHz3XvtJdq6BrIjpHp7H9ZZj/.../R2rjtuENEs1TPLEZ F1B8CV4Fautmg9NVURg5Wx36A8QT9pvZz9htzEWt7bFT7&external_id=1423530065517188150

Remove tambayan pinoy channel tfc pinoy teleserye replay pinoy chat room pinoy channel.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.