videos polemico zap zap.exe

The executable videos polemico zap zap.exe has been detected as malware by 34 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from bitly.com.
MD5:
48633a72ef09541e1376a31d17658435

SHA-1:
1431d298338494fa4b56a1181658ec4c64125755

SHA-256:
4ec221ff491aef0e9f662f8dead002d357b07814f447f727d8e7db33b0937c5f

Scanner detections:
34 / 68

Status:
Malware

Analysis date:
12/24/2024 12:26:21 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.MSIL.Bladabindi.2
301

AegisLab AV Signature
Win.Backdoor.Bladabindi.mAmC
2.1.4+

Avira AntiVirus
TR/Dropper.Gen7
8.3.3.4

Arcabit
Trojan.MSIL.Bladabindi.2
1.0.0.666

avast!
MSIL:Agent-DRD [Trj]
2014.9-160408

AVG
PSW.ILUSpy
2017.0.2779

Baidu Antivirus
MSIL.Backdoor.Bladabindi
4.0.3.1648

Bitdefender
Gen:Variant.MSIL.Bladabindi.2
1.0.20.495

Clam AntiVirus
Win.Trojan.B-468
0.98/21511

Comodo Security
Backdoor.MSIL.Bladabindi.A
24755

Dr.Web
Trojan.DownLoader18.23009
9.0.1.099

Emsisoft Anti-Malware
Gen:Variant.MSIL.Bladabindi
8.16.04.08.03

ESET NOD32
MSIL/Bladabindi.BC
10.13301

Fortinet FortiGate
MSIL/Agent.LI!tr
4/8/2016

F-Prot
W32/MSIL_Bladabind.I2.gen
v6.4.7.1.166

F-Secure
Gen:Variant.MSIL.Bladabindi.2
11.2016-08-04_6

G Data
Gen:Variant.MSIL.Bladabindi
16.4.25

IKARUS anti.virus
Trojan.MSIL.Bladabindi
t3scan.2.0.9.0

K7 AntiVirus
Trojan
13.221.19250

Kaspersky
HEUR:Trojan.Win32.Generic
14.0.0.392

Malwarebytes
Backdoor.Bladabindi.Generic
v2016.04.08.03

McAfee
BackDoor-NJRat!D0856D71F041
5600.6435

Microsoft Security Essentials
Backdoor:MSIL/Bladabindi.B
1.1.12603.0

MicroWorld eScan
Gen:Variant.MSIL.Bladabindi.2
17.0.0.297

NANO AntiVirus
Trojan.Win32.Disfa.dtznyx
1.0.18.7201

Panda Antivirus
Trj/GdSda.A
16.04.08.03

Qihoo 360 Security
HEUR/QVM41.1.0000.Malware.Gen
1.0.0.1120

Quick Heal
Backdoor.Bladabindi.AL3
4.16.14.00

Rising Antivirus
PE:Backdoor.MSIL.Bladabindi!1.9E49 [F]
23.00.65.16406

Sophos
Troj/Bbindi-W
4.98

Trend Micro House Call
BKDR_BLADABI.SMC
7.2.99

Trend Micro
BKDR_BLADABI.SMC
10.465.08

Vba32 AntiVirus
Trojan.MSIL.Disfa
3.12.26.4

VIPRE Antivirus
Backdoor.MSIL.Bladabindi.a
48470

File size:
402 KB (411,627 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\videos polemico zap zap.exe

File PE Metadata
Compilation timestamp:
2/3/2016 5:38:31 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6144:hTt0EBLlxZLDXV4lchpfpymXWh99LpviDIAUSJXvFzogafVCJi9lzkYz:nDRZLD/h099LAvUuXxotfVKmj

Entry address:
0x11CBC

Entry point:
E8, 87, 66, 00, 00, E9, 78, FE, FF, FF, 55, 8B, EC, 83, EC, 04, 89, 7D, FC, 8B, 7D, 08, 8B, 4D, 0C, C1, E9, 07, 66, 0F, EF, C0, EB, 08, 8D, A4, 24, 00, 00, 00, 00, 90, 66, 0F, 7F, 07, 66, 0F, 7F, 47, 10, 66, 0F, 7F, 47, 20, 66, 0F, 7F, 47, 30, 66, 0F, 7F, 47, 40, 66, 0F, 7F, 47, 50, 66, 0F, 7F, 47, 60, 66, 0F, 7F, 47, 70, 8D, BF, 80, 00, 00, 00, 49, 75, D0, 8B, 7D, FC, 8B, E5, 5D, C3, 55, 8B, EC, 83, EC, 10, 89, 7D, FC, 8B, 45, 08, 99, 8B, F8, 33, FA, 2B, FA, 83, E7, 0F, 33, FA, 2B, FA, 85, FF, 75, 3C, 8B...
 
[+]

Code size:
115 KB (117,760 bytes)

The file videos polemico zap zap.exe has been seen being distributed by the following URL.

Remove videos polemico zap zap.exe - Powered by Reason Core Security