home

[www.oldschoolhack.me]_triggerbot.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from www.oldschoolhack.me.
MD5:
7ba5fe9192a1ef04254fe6b72fd1e0f0

SHA-1:
3356e11651f435a8f8196641e254a9d72af30a76

SHA-256:
4bdafac7c86923fcc81eed75193206cdb678cb56531e2c0c08bdc6b887b36492

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 8:31:00 PM UTC  (today)

File size:
54.5 KB (55,808 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\[www.oldschoolhack.me]_triggerbot.exe

File PE Metadata
Compilation timestamp:
11/19/2015 9:55:23 AM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
11.0

CTPH (ssdeep):
768:F7W72wRG/U6o7i8YDGzBDbYXvVgEhMKv+E+tfNK1WOSMakuqm6ZZu:FXbsTeGq6Kv+EPwzqN

Entry address:
0x1AD9

Entry point:
E8, D3, 32, 00, 00, E9, 87, FE, FF, FF, 55, 8B, EC, FF, 15, 54, 90, 40, 00, 6A, 01, A3, FC, D1, 40, 00, E8, DE, 33, 00, 00, FF, 75, 08, E8, F8, 16, 00, 00, 83, 3D, FC, D1, 40, 00, 00, 59, 59, 75, 08, 6A, 01, E8, C4, 33, 00, 00, 59, 68, 09, 04, 00, C0, E8, C6, 16, 00, 00, 59, 5D, C3, 55, 8B, EC, 81, EC, 24, 03, 00, 00, 6A, 17, E8, B4, 74, 00, 00, 85, C0, 74, 05, 6A, 02, 59, CD, 29, A3, E0, CF, 40, 00, 89, 0D, DC, CF, 40, 00, 89, 15, D8, CF, 40, 00, 89, 1D, D4, CF, 40, 00, 89, 35, D0, CF, 40, 00, 89, 3D, CC...
 
[+]

Code size:
32 KB (32,768 bytes)

The file [www.oldschoolhack.me]_triggerbot.exe has been seen being distributed by the following URL.

https://www.oldschoolhack.me/en/downloads/.../6f49de9f98e01bd33e46dfeded0843b4

Scan [www.oldschoolhack.me]_triggerbot.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.