Reason Labs

1stbrowser1.exe

The application 1stbrowser1.exe has been detected as PUP.SIEN.1stBrowser.
MD5:
427b189956e9649eadbf23ef69a0faeb

SHA-1:
6068642e64818f6e924039ad683727b94fba3af3

SHA-256:
8cd9839e84a895b39e630757a552643470d70620cc5562931fa1987068d0566d

Detection:
PUP.SIEN.1stBrowser

Risk:
Medium

Analysis date:
10/19/2018 4:43:23 AM UTC  (today)

File size:
36.7 MB (38,431,011 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\1stbrowser1.exe

File PE Metadata
Compilation timestamp:
5/10/2016 12:45:58 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

Entry address:
0x2137

Entry point:
6A, 00, FF, 15, B4, 40, 40, 00, 50, E8, 98, 09, 00, 00, 59, 50, FF, 15, A0, 40, 40, 00, CC, 55, 8B, EC, 81, EC, 14, 02, 00, 00, 53, 56, 8B, 75, 14, 85, F6, 0F, 84, BE, 00, 00, 00, FF, 75, 08, 8D, 4D, F8, FF, 75, 0C, FF, 75, 10, E8, EE, 0C, 00, 00, 8D, 4D, F8, E8, 0B, 0D, 00, 00, 84, C0, 0F, 84, 9D, 00, 00, 00, 8D, 4D, F8, E8, 03, 0D, 00, 00, 83, F8, 01, 0F, 82, 8C, 00, 00, 00, 8D, 4D, F8, E8, F2, 0C, 00, 00, 3B, 05, E0, 14, 40, 00, 77, 7C, FF, 36, 33, C0, BB, 04, 01, 00, 00, 66, 89, 45, F4, 66, 89, 85, EC...
 
[+]

Entropy:
8.0000

Packer / compiler:
FASM v1.3x

Characteristics:
0x258

Code size:
8 KB (8,192 bytes)

There are numerous known code variantions that share the same compilation structure.

PUP.SIEN.1stBrowser
1stbrowser1.exe  (b72f5b6463ffeea7823383b60c7867183e95a56a)

PUP.SIEN.1stBrowser
1stbrowser1.exe  (daa190d5e3a7753d01b31a855f72d537fd690b7a)

PUP.SIEN.1stBrowser
7265.tmp  (6c4a6e87e59600f1774c02d31739f18803ef29d3)

PUP.SIEN.1stBrowser
1stbrowser1.exe  (665fcc656629082d67de59fe38cdd222a595c867)

PUP.SIEN.1stBrowser
f254.tmp  (3539bd8319046e89cf63d5d5e2ec643b728b8eff)

PUP.SIEN.1stBrowser
9f2c.tmp  (d3d92546dc5f51a6cff34516d35ca2df4a118bd1)

PUP.SIEN.1stBrowser
6efa.tmp  (40dcf20f08347fd63a3ab449318f24023bc0de3a)

PUP.SIEN.1stBrowser
1stbrowser1.exe  (970ef9e3d639462eff9780ade4be912120ecd398)

Clean
f7df.tmp  (52f3d7f68d7720d1ee0c99f7a21cbfe574dada54)

Clean
e4d2.tmp  (265777cce30357eafe33c63dd876b91e2dd3dcee)

Clean
7572.tmp  (69863540ac0e754e42c2c31f96650648b489474c)

PUP.SIEN.1stBrowser
1stbrowser1.exe  (a21c3d10ed2d1a62a4070641858eaab5e979fde2)

PUP.SIEN.1stBrowser
1stbrowser1.exe  (943088f074b5cff16b05f4b546661bd8a8538956)

PUP.SIEN.1stBrowser
203c30be-a1b3-465e-85b3-a64b88ad19fa.exe  (0d7b08baf63b8aeedc09082a649059e88025de88)

PUP.SIEN.1stBrowser
aa8a.tmp  (89263f62b1aee2b04b13ade5d05ece634b5daa15)

Download Reason Core Security - Powerful anti-malware software