wvmka2hmp1.exe

The executable wvmka2hmp1.exe has been detected as malware by 6 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from frux0cheats.com.
MD5:
ed3ba5ee25fdb9257a31e10645fc0bf3

SHA-1:
5f1c3d7faa1e1ead4ee8b7f9f66e56db1fddea82

SHA-256:
e28a3f35a5efdeca8902d95eba51391689a9927d82dcdbfe8a34843e06d743f7

Scanner detections:
6 / 68

Status:
Malware

Analysis date:
12/29/2024 11:17:08 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Black.Gen2
8.3.3.4

AVG
Win32/Blacked
2017.0.2722

Bkav FE
HW32.Packed
1.3.0.8042

ESET NOD32
Win32/Packed.VMProtect.ABO (variant)
10.13561

Qihoo 360 Security
HEUR/QVM16.0.0000.Malware.Gen
1.0.0.1120

Sophos
Mal/VMProtBad-A
4.98

File size:
5.6 MB (5,826,048 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\wvmka2hmp1.exe

File PE Metadata
Compilation timestamp:
5/28/2016 10:13:03 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
98304:K6VZUxiU6DcX64gAIcT5KLl20SH0IYuy71uWwAUhCC13DHA5g:XZUEzGIc8LY0S1YR71u313DHa

Entry address:
0xB0C15E

Entry point:
E9, A6, 99, FE, FF, 97, 12, 5F, 6A, 9D, 10, DF, 98, 84, 65, 26, E7, 40, 43, 64, 53, 52, 39, 45, 06, D4, 1E, 45, FC, 50, 72, 94, 48, DF, 29, A4, D5, 4D, 1B, 38, 51, 7B, AF, E3, 28, 87, 95, 5A, C9, 66, F1, 4E, F1, 4E, 39, 76, A9, CA, 97, 30, BF, 38, BB, 98, 7D, 7F, F6, D4, 03, EB, BB, 37, C9, A3, B8, 03, 41, 5B, 97, ED, 6F, EF, 01, 87, 24, D3, 8B, 19, CD, 7C, 48, DA, 9A, 02, F7, 72, C3, 4B, CC, 9B, 5B, 5C, 4B, 4A, B1, 76, 65, F9, 43, 8E, 41, 95, 71, 94, 48, 8A, 54, 8B, F8, 70, 1A, 38, 51, AE, 7B, CF, 78, C1...
 
[+]

Packer / compiler:
Xtreme-Protector v1.05

Code size:
374 KB (382,976 bytes)

The file wvmka2hmp1.exe has been seen being distributed by the following URL.

Remove wvmka2hmp1.exe - Powered by Reason Core Security