home

vkbot.exe

VkBot

VkBot Team

This is a setup program which is used to install the application. The file has been seen being downloaded from vkbot.ru.
Publisher:
VkBot Team

Product:
VkBot

Description:
bot for vk.com

Version:
2.9.1

MD5:
abed202e24bea2602e75fe341aff84a9

SHA-1:
849cee66d2f2997e41840f5d8756ae80958f176f

SHA-256:
75c8a62dce8630e11485b80ad3c6e60aa2f807f1c962578807e693f68d3613d9

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
11/30/2024 7:52:32 AM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
W32.HfsAutoA
1.3.0.4613

Trend Micro House Call
TROJ_GEN.F47V1117
7.2.352

File size:
637.1 KB (652,346 bytes)

Product version:
2.9.1

Copyright:
© 2009 - 2013

Original file name:
VkBot

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
10/9/2013 1:04:13 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:plNFq0z1Z/NVqoCB2tkHOUeL64h9AGVRKl758U3PAc:pJq0zfKoC5N4LAs2H5

Entry address:
0x87800

Entry point:
B8, 20, 2B, 64, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, EF, BB, 73, FB, 29, BF, BA, 5A, 2A, 2D, E2, D5, 9A, 26, CC, C0, 9B, C5, 60, EE, 21, DC, 7A, 22, 7D, C6, 0A, 25, DE, 56, 9F, F5, 17, 20, 76, 7F, E4, 35, E0, 32, D1, 7B, C4, EA, B1, 62, A4, 1A, 5E, 1F, CD, 97, 6D, 48, 0B, 5E, C3, 7E, 17, 58, D3, CB, E2, BB, 1B, 45, 38, 39, 8E, FE, 52, 9B, 3F, 2D, A7, 3D, 7E, A6, 26, FE, BA, 56, B5, 27, A6, 48, 61, BB, F3, 9D, 2F, DC, AA...
 
[+]

Packer / compiler:
PECompact v2

Code size:
593 KB (607,232 bytes)

The file vkbot.exe has been seen being distributed by the following URL.

http://vkbot.ru/dl.php?v=1504bf382dd704648b97dc091c7b26c5

Scan vkbot.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.