home

Xbox Backup Creator.exe

Xbox Backup Creator

Scene Release

The executable Xbox Backup Creator.exe, “Xbox Backup Creator - All the tools you need to create a working backup.” has been detected as malware by 19 anti-virus scanners. The file has been seen being downloaded from download1837.mediafire.com and multiple other hosts.
Publisher:
Scene Release

Product:
Xbox Backup Creator

Description:
Xbox Backup Creator - All the tools you need to create a working backup.

Version:
2.09.0425

MD5:
d2513e69992107dc14c4ba9d458dcb35

SHA-1:
1bfa23aa3411994229f1c411a32abcb90c34e387

SHA-256:
5c610d9b13f82b82c37a0f3ba7eb209d4ad132e0d1826aa96a56223bbc79a1ab

Scanner detections:
19 / 68

Status:
Malware

Analysis date:
11/23/2024 11:25:32 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

AVG
HackTool
2015.0.3532

Baidu Antivirus
HackTool.Win32.Agent
4.0.3.14317

Bkav FE
W32.Clod8df.Trojan
1.3.0.4959

Comodo Security
UnclassifiedMalware
17933

Fortinet FortiGate
Riskware/Agent
3/17/2014

IKARUS anti.virus
HackTool.Win32.Agent
t3scan.2.2.29

K7 AntiVirus
Hacktool
13.176.11451

Kaspersky
HackTool.Win32.Agent
14.0.0.4156

Malwarebytes
Hacktool.Agent
v2014.03.17.05

McAfee
Artemis!D2513E699921
5600.7188

NANO AntiVirus
Trojan.Win32.Agent.bespnm
0.28.0.58394

Norman
Troj_Generic.GBMKR
11.20140317

nProtect
Trojan/W32.Agent.2142208.Y
14.03.15.01

Panda Antivirus
Trj/OCJ.E
14.03.17.05

Quick Heal
HackTool.Agent.shs (Not a Virus)
3.14.12.00

Rising Antivirus
PE:Trojan.Win32.Generic.13EF3A8A!334445194
23.00.65.14315

Sophos
Generic PUA BL
4.98

Trend Micro
HKTL_AGENT
10.465.17

VIPRE Antivirus
HackTool.Win32.Agent (not malicious)
27408

File size:
2 MB (2,142,208 bytes)

Product version:
2.09.0425

Copyright:
2006(c) Redline99

Original file name:
Xbox Backup Creator.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

File PE Metadata
Compilation timestamp:
12/7/2012 12:17:13 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
49152:/tksNECro0cAIzyVMMhw/ItY1LDsAk8TZIND3ZaK3H:/tksNECro0cAIzyVMMhw/B1LDXHTZINT

Entry address:
0x155CC

Entry point:
68, 64, 5C, 41, 00, E8, F0, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 60, 00, 00, 00, 48, 00, 00, 00, 49, 27, 4E, 13, F9, A7, F2, 41, AA, FB, 11, 7F, BD, EF, D5, B9, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 42, 00, 86, 50, 83, 01, 58, 62, 6F, 78, 42, 61, 63, 6B, 75, 70, 43, 72, 65, 61, 74, 6F, 72, 00, 00, 00, E0, 36, F7, 03, 58, 62, 6F, 78, 20, 42, 61, 63, 6B, 75, 70, 20, 43, 72, 65, 61, 74, 6F, 72, 00, 00, 00, 00, 00, 00, 00, 00, 00, 01, 00, 27, 00, 94, 98, 42, 00, 00, 00, 00, 00, FF, FF, FF, FF...
 
[+]

Entropy:
5.9988

Developed / compiled with:
Microsoft Visual Basic v5.0/v6.0

Code size:
2 MB (2,060,288 bytes)

The file Xbox Backup Creator.exe has been seen being distributed by the following 15 URLs.

http://download1837.mediafire.com/vfls6wa5c70g/.../Xbox Backup Creator.exe

http://download1648.mediafire.com/i8u21dh2hh5g/.../Xbox Backup Creator.exe

http://download2011.mediafire.com/fdz6i14jegeg/.../Xbox Backup Creator.exe

http://download1258.mediafire.com/2ubburyblasg/.../Xbox Backup Creator.exe

http://download1648.mediafire.com/qgw2aiu5w5gg/.../Xbox Backup Creator.exe

http://download1671.mediafire.com/395zk7w193mg/.../Xbox Backup Creator.exe

http://download1258.mediafire.com/5gq3awjj17mg/.../Xbox Backup Creator.exe

http://download1406.mediafire.com/i059634y0iog/.../Xbox Backup Creator.exe

http://download1406.mediafire.com/qqiad96haj1g/.../Xbox Backup Creator.exe

http://download1258.mediafire.com/kg4kkxm4x5gg/.../Xbox Backup Creator.exe

http://download1648.mediafire.com/t3yuqt5x4gtg/.../Xbox Backup Creator.exe

http://download1648.mediafire.com/4blt881y7ltg/.../Xbox Backup Creator.exe

http://www.mediafire.com/download/.../Xbox_Backup_Creator.exe

http://download2131.mediafire.com/me8al4tml7jg/.../Xbox Backup Creator.exe

http://download2131.mediafire.com/hqd76urlsrog/.../Xbox Backup Creator.exe

Remove Xbox Backup Creator.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.