home

신들의 전쟁v1.5.5.exe

Theomachy

박치기(headings_)

Publisher:
박치기(headings_)

Product:
Theomachy

Version:
1.05.0005

MD5:
2fd49cf37eb976e4570d1a04f22b24aa

SHA-1:
809765bdf4961e34bb345ffa547b9b816f7720f8

SHA-256:
e54cd88af01beb1324075b4bc5cdf7698c8da15646f22eb51c9211edc85f9bc0

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
11/27/2024 1:44:45 AM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
Trojan.VbCrypt.68
9.0.1.037

Qihoo 360 Security
HEUR/QVM41.1.Malware.Gen
1.0.0.1077

File size:
1.5 MB (1,605,632 bytes)

Product version:
1.05.0005

Copyright:
박치기(headings_)

Trademarks:
Theomachy

Original file name:
신들의 전쟁.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\inetcache\ie\{random}\신들의 전쟁v1.5.5.exe

File PE Metadata
Compilation timestamp:
12/28/2015 4:17:39 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:GBDNezc75DGiECC36+xhuLCPSnd0v98cPu/KWcFcLzc75DGiECCv:GB663onxjPe0v+cPu/KWcF+63ov

Entry address:
0x3878

Entry point:
68, 84, 3E, 40, 00, E8, EE, FF, FF, FF, 00, 00, 48, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 9A, 76, C1, 5C, D6, 5A, A2, 47, A9, F1, D8, 2E, 1D, 8F, CE, 79, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 54, 68, 65, 6F, 6D, 61, 63, 68, 79, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, C0, 00, 00, 00, 90, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 10, 00, 00, 00, 1D, 48, DD, 63, 91, FB, 93, 48, B0, 51, 14, 8F, 90, B2, 8A, C3, 01, 00, 00, 00, A0, 00, 00, 00...
 
[+]

Entropy:
6.6764

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
1.3 MB (1,323,008 bytes)

The file 신들의 전쟁v1.5.5.exe has been seen being distributed by the following 2 URLs.

http://cafeattach.naver.net/76e36ad9c291924e6083e0d0ee067c05a8fa00e65f/20151228_13_cafefile/.../?w??? ????v1.5.5.exe

http://cafeattach.naver.net/76e36ad9c291924e6082edd0e008760caffd06e06a/20151228_13_cafefile/.../?w??? ????v1.5.5.exe

Scan 신들의 전쟁v1.5.5.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.