Tanki Crystal Generator v2.0.exe

Tanki Crystal Generator v2.0

The executable Tanki Crystal Generator v2.0.exe has been detected as malware by 25 anti-virus scanners. The file has been seen being downloaded from download1756.mediafire.com and multiple other hosts.
Product:
Tanki Crystal Generator v2.0

Version:
1.0.0.0

MD5:
d74cb879c1e7791ad7d6e28b694ff597

SHA-1:
f8a16c45d6f2f9237c61868458bea5a5d1be3fef

SHA-256:
113237dad411265852f9ff7cbcb32261627e9b5f02e0f1889a206d73f054c2a5

Scanner detections:
25 / 68

Status:
Malware

Analysis date:
11/27/2024 1:16:52 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.Generic.12824685
533

Avira AntiVirus
TR/Kazy.255936.3
8.3.1.6

avast!
Win32:Malware-gen
2014.9-150820

AVG
PSW.MSIL
2016.0.3011

Baidu Antivirus
Trojan.MSIL.Agent
4.0.3.15820

Bitdefender
Trojan.Generic.12824685
1.0.20.1160

Comodo Security
UnclassifiedMalware
22192

Emsisoft Anti-Malware
Trojan.Generic.12824685
8.15.08.20.02

ESET NOD32
MSIL/PSW.Agent.NER (variant)
9.11659

Fortinet FortiGate
MSIL/Agent.OFU!tr
8/20/2015

F-Secure
Trojan.Generic.12824685
11.2015-20-08_5

G Data
Trojan.Generic.12824685
15.8.25

IKARUS anti.virus
Win32.SuspectCrc
t3scan.1.8.9.0

K7 AntiVirus
Password-Stealer
13.204.15977

Kaspersky
UDS:DangerousObject.Multi.Generic
14.0.0.1552

McAfee
Artemis!D74CB879C1E7
5600.6667

MicroWorld eScan
Trojan.Generic.12824685
16.0.0.696

NANO AntiVirus
Trojan.Win32.Kazy.dewvwv
0.30.24.1636

Norman
Suspicious_Gen4.FJQFO
11.20150820

nProtect
Trojan.Generic.12824685
15.05.20.01

Panda Antivirus
Trj/Sharik.B
15.08.20.02

Qihoo 360 Security
Win32/Trojan.918
1.0.0.1015

Sophos
Mal/Generic-S
4.98

VIPRE Antivirus
Trojan.Win32.Generic
40416

ViRobot
Trojan.Win32.S.Agent.159744.QM[h]
2014.3.20.0

File size:
156 KB (159,744 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2013

Original file name:
Tanki Crystal Generator v2.0.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\tanki crystal generator v2.0.exe

File PE Metadata
Compilation timestamp:
7/8/2013 6:30:55 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
3072:iNzu8SoTenwWD9pkaRTiqHdMjHTLz/4hPMZbzixd2JM:iduWTxapkaRTiq9aHLZaW

Entry address:
0x2569E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.8220

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
142 KB (145,408 bytes)

The file Tanki Crystal Generator v2.0.exe has been seen being distributed by the following 4 URLs.

http://download1756.mediafire.com/vozy2a8of7ag/.../Tanki Crystal Generator v2.0.exe

Remove Tanki Crystal Generator v2.0.exe - Powered by Reason Core Security