teleport hack (64 bit only).exe

MD5:
1990884266cfd9809fdf87b2c7aa5f5a

SHA-1:
8bd4ec2f7ab8d8ff87bb11a635a7b294e6f22bc7

SHA-256:
64fb1ac50eb629d943015782f375ee937f534d32a108ede3a524652438a2f53b

Scanner detections:
3 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
12/25/2024 6:02:00 PM UTC  (today)

Scan engine
Detection
Engine version

IKARUS anti.virus
Trojan.Win32.Fsysna
t3scan.2.0.3.0

Kaspersky
Trojan.Win32.Fsysna
14.0.0.762

Panda Antivirus
Generic Suspicious
16.01.25.03

File size:
2.2 MB (2,295,923 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\teleport hack (64 bit only).exe

File PE Metadata
Compilation timestamp:
11/15/2015 5:42:17 PM

OS version:
4.0

OS bitness:
Win64

Subsystem:
Windows Console

Linker version:
2.24

CTPH (ssdeep):
24576:1LvLmqlyb8ghAZb3mmpz/w/HWoC0PSW16E/8JsU3Aot+Ec0xMkwd0MzorNQ/:JvLmql7ghAZbJzUWbELd0MzorNQ/

Entry address:
0x1500

Entry point:
48, 83, EC, 28, 48, 8B, 05, D5, B8, 08, 00, C7, 00, 00, 00, 00, 00, E8, 9A, D6, 00, 00, E8, 95, FC, FF, FF, 90, 90, 48, 83, C4, 28, C3, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 55, 48, 81, EC, 00, 01, 00, 00, 48, 8D, AC, 24, 80, 00, 00, 00, E8, 4B, D6, 00, 00, 48, 8D, 15, B4, 6A, 08, 00, B9, 00, 00, 00, 00, 48, 8B, 05, B4, 84, 0A, 00, FF, D0, 48, 89, 45, 78, EB, 55, 48, 8D, 15, A7, 6A, 08, 00, 48, 8B, 0D, E2, B2, 08, 00, E8, 1D, DB, 06, 00, 48, 8B, 15, E6, B2, 08, 00, 48, 89, C1, E8, FE, C1...
 
[+]

Entropy:
5.5443

Code size:
451.5 KB (462,336 bytes)

The file teleport hack (64 bit only).exe has been seen being distributed by the following 7 URLs.

http://download1660.mediafire.com/q87dp0ywbb2g/.../Teleport Hack (64 bit only).exe

Scan teleport hack (64 bit only).exe - Powered by Reason Core Security