home

vkontaktedjd.exe

Vkontakte DJ Installer

The application vkontaktedjd.exe has been detected as a potentially unwanted program by 4 anti-malware scanners. This is a setup and installation application, however the file is not signed with an authenticode signature from a trusted source. The file has been seen being downloaded from scstorage.ru and multiple other hosts.
Product:
Vkontakte DJ Installer

Version:
1.9.1.14

MD5:
206a7d89878788850e3d3ef6ce3c72a1

SHA-1:
c21153c6a553b93af4e91df1db29e16e2d87b437

SHA-256:
5f539a0ff8a38efb5abae87eef9d276c06e02e1bf8814d2fd47e27531fc4a7f9

Scanner detections:
4 / 68

Status:
Potentially unwanted

Analysis date:
11/28/2024 1:52:35 PM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
Program.VKontakteDJ.6
9.0.1.050

IKARUS anti.virus
AdWare.BundleApp
t3scan.1.9.5.0

Kaspersky
not-a-virus:Downloader.Win32.Agent
14.0.0.636

Panda Antivirus
Generic Suspicious
16.02.19.08

File size:
608.5 KB (623,104 bytes)

Product version:
1.9.1.14

Copyright:
Copyright © 2015

Original file name:
DjLoader.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\vkontaktedjd.exe

File PE Metadata
Compilation timestamp:
7/22/2015 1:40:08 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:s4BtFu0U/KPnUtN7qsKQ0jnAt4BknkW3F2nRBtFC:s4Ju0U/9rBKQ0jnpBknk42RJC

Entry address:
0x7638E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
465 KB (476,160 bytes)

The file vkontaktedjd.exe has been seen being distributed by the following 2 URLs.

http://scstorage.ru/yjwwr21.html?group=vkdjsite&name=???????????? ??????-??????? ????????&parameter=btn_track

http://www.softportal.com/getsoft-21646-vkontaktedj-3.html

Remove vkontaktedjd.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.