» [vindavoz.ru]sata_drivers.exe
Overview
Analysis
File Details
Downloads (1)

[vindavoz.ru]sata_drivers.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from vindavoz.ru.

File name:

MD5:

8c135c15318688b04ba8768d6b37d184

SHA-1:

6d8b8e228d101fd02c857e91cec0bb6a76aefee3

SHA-256:

c8155da3090c7aad6e5eaff41acfa38798e76bc6fb3c08faa2c2e0c9bbf97897

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

12/26/2024 7:26:16 AM UTC (today)

File size:

338 Bytes

File type:

Executable application (Win64 EXE)

Common path:

C:\users\{user}\downloads\[vindavoz.ru]sata_drivers.exe

File PE Metadata

OS bitness:

Win64

CTPH (ssdeep):

6:WukHJtEfORHTNAohKKUazvz3XWchN8NAohKKUa9n:WzptnzAOKKUcv7XLLcAOKKU+n

Entry point:

0A, 57, 61, 72, 6E, 69, 6E, 67, 3A, 20, 66, 6F, 70, 65, 6E, 28, 2E, 2E, 2F, 75, 70, 6C, 6F, 61, 64, 73, 2F, 66, 69, 6C, 65, 73, 2F, 31, 33, 35, 37, 35, 37, 37, 34, 34, 39, 5F, 73, 61, 74, 61, 5F, 64, 72, 69, 76, 65, 72, 73, 2E, 65, 78, 65, 29, 3A, 20, 66, 61, 69, 6C, 65, 64, 20, 74, 6F, 20, 6F, 70, 65, 6E, 20, 73, 74, 72, 65, 61, 6D, 3A, 20, 4E, 6F, 20, 73, 75, 63, 68, 20, 66, 69, 6C, 65, 20, 6F, 72, 20, 64, 69, 72, 65, 63, 74, 6F, 72, 79, 20, 69, 6E, 20, 2F, 68, 6F, 6D, 65, 2F, 70, 31, 31, 32, 38, 31, 35... 
[+]

The file [vindavoz.ru]sata_drivers.exe has been seen being distributed by the following URL.

http://vindavoz.ru/.../download.php?id=5

Scan [vindavoz.ru]sata_drivers.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.