» warhammer-40-000-dawn-of-war-2-_torrentino.exe
Overview
Analysis
File Details
Downloads (1)

warhammer-40-000-dawn-of-war-2-_torrentino.exe

Downloader

The application warhammer-40-000-dawn-of-war-2-_torrentino.exe has been detected as a potentially unwanted program by 10 anti-malware scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from www.torrentino.ru.

File name:

Product:

Downloader

Version:

1, 0, 0, 0

MD5:

2de3581bc0c14bc3143526c969d79717

SHA-1:

5580def28b5b467b4c16e2f14da9a2ca34521698

SHA-256:

be7b25ce2f83635525d78becea9ce484583fdfdf159fea70ad4943c8ad95dbc2

Scanner detections:

10 / 68

Status:

Potentially unwanted

Analysis date:

2/27/2025 9:31:54 PM UTC (today)

Scan engine

Detection

Engine version

avast!

Win32:Downloader-UPV [Trj]

160327-1

AVG

Win32/Cryptor

2015.0.4355

Dr.Web

Trojan.LoadMoney.188

9.0.1.05190

Emsisoft Anti-Malware

Gen:Variant.Kazy.305538

11.5.0.6191

ESET NOD32

Win32/AdWare.LoadMoney.XV application

8.0.319.0

F-Prot

W32/LoadMoney.L.gen

4.6.5.141

Kaspersky

not-a-virus:Downloader.Win32.LMN

15.0.0.562

McAfee

Program.PUP-FNB

18.0.204.0

Microsoft Security Essentials

Threat.Undefined

1.217.1131.0

Norman

Gen:Variant.Kazy.305538

10.04.2016 15:29:17

File size:

138 KB (141,272 bytes)

Product version:

1, 0, 0, 0

Original file name:

Downloader.exe

File type:

Executable application (Win32 EXE)

File PE Metadata

Compilation timestamp:

6/20/1992 2:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.0

CTPH (ssdeep):

3072:ajRRgdItmobXDR7kqySxoMoKSUB8yAW8R3UDY/h:aYdfobzR7k/SmMfB8BVWDu

Entry address:

0x18C0

Entry point:

8D, 35, 51, D0, 41, 00, 01, 7E, 0C, 01, 35, 49, D0, 41, 00, 21, 05, 82, D0, 41, 00, 89, 35, EB, D0, 41, 00, E8, 20, 12, 00, 00, BE, 1E, 00, 00, 00, 89, 0D, 57, D0, 41, 00, 89, 15, 66, D0, 41, 00, 87, 0D, FB, D0, 41, 00, 89, 3D, 10, D0, 41, 00, EB, 04, 55, 8B, EC, 8B, 3B, 55, D8, 7D, 0D, 40, 89, 35, 62, D0, 41, 00, 21, 0D, 8B, D0, 41, 00, 89, 15, 01, D1, 41, 00, 89, 35, B2, D0, 41, 00, C6, 05, F5, D0, 41, 00, 81, 89, 15, F0, D0, 41, 00, 05, 93, 00, 00, 00, C3, 55, 8B, EC, 83, C4, F0, 8D, 35, 51, D0, 41, 00... 
[+]

Code size:

98.5 KB (100,864 bytes)

The file warhammer-40-000-dawn-of-war-2-_torrentino.exe has been seen being distributed by the following URL.

http://www.torrentino.ru/torrents/.../download

Remove warhammer-40-000-dawn-of-war-2-_torrentino.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.