home

warhammer end times vermintide repack by seyter torrent.exe

VMware Tools

Smart Union

The executable warhammer end times vermintide repack by seyter torrent.exe, “VMware HGFS Client” has been detected as malware by 1 anti-virus scanner. This is a setup program which is used to install the application. The file has been seen being downloaded from upon-lack-two.ru.
Publisher:
VMware, Inc.  (signed by Smart Union)

Product:
VMware Tools

Description:
VMware HGFS Client

Version:
9.6.2.31837

MD5:
194d53c9eaf9f56e2ff32dad37b030df

SHA-1:
80c18c5e3b31fe264b8c1c9ab875d9cc4ffcba6e

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
12/27/2024 2:32:52 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.3.6.23

File size:
573.5 KB (587,280 bytes)

Product version:
9.6.2 build-1688356

Copyright:
Copyright © 1998-2014 VMware, Inc.

Original file name:
hgfsclient.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Documents and Settings\{user}\My documents\downloads\warhammer end times vermintide repack by seyter torrent.exe

Digital Signature
Signed by:
Smart Union

Authority:
COMODO CA Limited

Valid from:
5/25/2016 5:00:00 AM

Valid to:
5/26/2017 4:59:59 AM

Subject:
CN=Smart Union, O=Smart Union, STREET=Beskudnikovsky boulevard 2, L=Moscow, S=Moscow, PostalCode=127474, C=RU

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00D0E5922E2B69FD4D0E3FFA1881ABB3A6

File PE Metadata
Compilation timestamp:
6/21/2016 6:01:38 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0x1030

Entry point:
55, 8B, EC, 81, EC, F0, 03, 00, 00, 8B, 45, E8, 2B, 45, F0, 89, 45, F0, 8B, 55, D4, 8B, 4D, F0, D3, E2, 89, 55, F8, FF, 15, 10, E1, 48, 00, 8B, 45, E0, C1, E0, 75, 89, 45, DC, 8B, 55, D4, 8B, 4D, CC, D3, EA, 89, 55, D0, 8B, 45, E4, 50, FF, 15, F8, E0, 48, 00, 8B, 4D, EC, 69, C9, FF, 92, 4C, 0A, 89, 4D, EC, 68, 4C, F0, 48, 00, FF, 15, D8, E0, 48, 00, 68, 58, F0, 48, 00, 8B, 55, D8, 52, FF, 15, FC, E0, 48, 00, 8B, 45, DC, 50, FF, 15, F8, E0, 48, 00, 8B, 4D, D4, 51, FF, 15, 00, E1, 48, 00, 68, 64, F0, 48, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
561 KB (574,464 bytes)

The file warhammer end times vermintide repack by seyter torrent.exe has been seen being distributed by the following URL.

http://upon-lack-two.ru/.../522378-book

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.