transformice.exe

Transformice - Anti ban

This is a setup program which is used to install the application. The file has been seen being downloaded from fs10n4.sendspace.com and multiple other hosts.
Product:
Transformice - Anti ban

Version:
1.0.0.0

MD5:
da1fb3c9acbb80dfebd3932ea4cf2f81

SHA-1:
7df070aebb0777f3260e264b97d0ca1f62c799b9

SHA-256:
79a34ff9daabc743079a93aad1cf2083af9611686deed39432107d2e9019cbf1

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/24/2024 3:34:08 PM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
Trojan.DownLoader18.23009
9.0.1.05190

File size:
19.5 KB (19,968 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2016

Original file name:
Transformice - Anti ban.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\transformice.exe

File PE Metadata
Compilation timestamp:
4/27/2016 1:58:21 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
384:AIyz2Tbquc5tMifvd+tIEQBLf45N7QfjO8psU6t:Mz2ffs0tU1WURS

Entry address:
0x58CE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
14.5 KB (14,848 bytes)

The file transformice.exe has been seen being distributed by the following 5 URLs.

https://fs10n4.sendspace.com/dl/8d40a566ca169320ab5ea214483459be/57a9187304cebe67/.../Transformice.exe

https://fs10n2.sendspace.com/dl/01165e0f244962c4888382f4cb77a836/5831b86e0cb5e837/.../Transformice.exe

https://fs10n3.sendspace.com/dl/83a31106a346a54f67399c712b581976/5834d9b022deb2e1/.../Transformice.exe

https://fs10n2.sendspace.com/dl/d6a7c27154baa65a70c08054e6bca6c4/57c84f4b06c512de/.../Transformice.exe

Scan transformice.exe - Powered by Reason Core Security