22066385_setup.exe

LOOXIS GmbH

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from dw.uptodown.com and multiple other hosts.
Publisher:
LOOXIS GmbH

Description:
LOOXIS Faceworx Setup

MD5:
220f6fd292fbd6b43d1374a1da308797

SHA-1:
93352e2b444700b266b6f44fd72d653ea6848b19

SHA-256:
2b3808307e2d1753284a4c73583224ff83bacf1051cf2b23c25e53a69da12b65

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 6:54:08 AM UTC  (today)

File size:
11.6 MB (12,136,093 bytes)

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\22066385_setup.exe

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:6KFqYQ+rJlPyhzMuLDPlFOXvS8qeHa5MmAE+waJGPwdbKEjnDizNyF5B6EZUxjiB:zMQJlPZqQHAMNGodJDioLBJexjJ8Y7E

Entry address:
0x98D8

Entry point:
55, 8B, EC, 83, C4, CC, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, EE, 97, FF, FF, E8, F5, A9, FF, FF, E8, 20, CC, FF, FF, E8, 67, CC, FF, FF, E8, 0A, F3, FF, FF, E8, 71, F4, FF, FF, 33, C0, 55, 68, 82, 9F, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 38, 9F, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, B0, 40, 00, E8, 9B, FE, FF, FF, E8, 26, FA, FF, FF, 8D, 55, F0, 33, C0, E8, E0, D0, FF, FF, 8B, 55, F0, B8, D4, BD, 40, 00, E8, 9F, 98, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, D4, BD, 40, 00, B2, 01, B8...
 
[+]

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
36 KB (36,864 bytes)

The file 22066385_setup.exe has been seen being distributed by the following 14 URLs.

https://dw.uptodown.com/dwn/zrku_t8ePyLPDusKBK6E0ejDMcMMv8pk9qQMnAuUgczYGRmzmZpheB91nv97zT3fQQosBaxJz2Zo1ZYT_7LxcEDxxVQ9rQ41AwifBvZxaq0-tIk5CSmet86neqxJGVGo/xi7uyCCUu2xR_vJMbMlNLGqYpyV88FWUb0uZauojN_nClv2rMGETv78Gzz61c7QzcJh308M6zWYDRFFTWt6hVRdi8mg-D3wZtMEc13xtMhU4wPXSIp73tWUht__JGRHP/zDk_vbpZg4UN22vpwEPTQYwij4o-QE-ESeKnwR5-6Ux_H6Yk38mOEFcT__qT3dcHTISrluTEXlH09Grczf0bnRVJynasdTcUYZlofzSHTKVSA10e5U5-gxoCXeogxUjE/.../

https://dw.uptodown.com/dwn/BldTGH-UY2rIPjaHKFidahLbCyWTzwhjrmmV7ZD8U2uxHCWnGSST5Kd00ylvbgsYT-YR4_th8ZK_vdirF80YRd6xt0ulNnzddOOZ_zU1gyCem8OEZrdT_F42zC-Fsa3P/PXnY8sMSku2LQnj_nKTNT8AHuO0poxbikUGmC1tFlPe-GmZfXp4rVk_FpA2GMm8JRPKGR7nj_iORrzWRDiAoft8YdQvYQgPiOHNzjCI8aU_FLJqFL4U7fdyQDVxqfAgk/jcNJ0NcsGQs2v0171uw1TjXEZM6EhcJSFNCIzqdjzCICydxhH8nYvtHzkRLN36E37TnF44oGgT1FpxZ0IpVRWIDvl5bA3lvydYmuKXHyW0T3MVNzk6w0Ev3GbuzjXSAn/.../

http://dw5.uptodown.com/dwn/cS5zwdQsfopGJt-GGm4ejLkCBqQuXfofg8hXsvJUK6ILP7fBVloJv2sXp1cLzJl2fsJUEpRIg1RC_NdLtZmVVvNAzhJR3xt-aOA4eomUG2jt2Sj2SQfyvcgdGnPkBEUE/4VwmZRDzbMqVTIN0h0Wimd7Ctt_h9J9XkTPLYQZpbztJcziH6gsA8UXnaR2Kl3bxAgQYp9SK3ne_ycIRy8BkHeow6mbhAGOPVj_M3twPL8ctv58jVmRvlKGk53y_0qKJ/.../looxis-faceworx-1.0.exe

https://dw.uptodown.com/dwn/dWwAqPGl7Eq9DgMTZN3XeT0M4wTts4UY9dDUBJiQM5db_laBDeQ6hSCbPzgbLXI7LW9WRt_kpTF0oMeNT1HHj7Dip52PmMf6Jkx7f6oUlL1mAmd-sjQOQ7bipmimSbn9/zNp32_sgvZLo2DvAb6PiLGUK8Bcj_P4JxloiH2XoXG7sfJpnofgmmerg15Kki4BbPIv3A4LdYfCT32sjNMwG0b2N_96inMWFpbNWSE9O4OKBsxjOrDQtGJDtfQgup9SV/-3W1y-V_kt7zkCafDQVQEnssV0pnfUB73cfvaFodZS3g7DlV1pjT8iFxjZMGNAat61UR_yPx7qoNSeGsUGulpTHerHCSL6b7AF8UEk92Q5VVme3rG4nR-tf3A5FnwkDR/.../

http://dw.uptodown.com/dwn/jkVgB3Ew6gZwaB45VGPy5ox36QGvC4NKCtbs161cOowQezCi6kVmDAbkiSrgbnxjnKngcNTcVXLDqMhMMJZq8_RI3M1qckEHFtzPXD9V9SEBIjXju1Ul9RFSeLGhNN4e/4kfNchUatK_1Kwmwk2xaUm5KdsGWEoT1rwSvzVdEtRGzkRHV6nZEhYHR44t8UxzuqluguCeyO3Y4lr8G3wIiguIZrRMvom4NlFKFuwe1yQJL-oLZM2FJcZ47Kq3Rhma_/.../

http://dw.uptodown.com/dwn/URm2aFwBU0NKatz1bOWEUmG8slQn70hprlo9N0zfTP0zUBwYFlLoe-20uyTq0Vsn9iEbfVm0nz7FRbo7fK2JMG32agrAX9Yl8NHsQcsALvM5TacY3XdmIb7SM2x78pp8/MfwtXR2zGxbMwesqjqG7UeQGzKKN8blrIoQWSfFTZjPoLFt10bcG5dXY6V9Mf3Mk0PvJrJ5c83tV2JFYMviMScbRU7i1TiTrZ4cSlndvGo6WsSV1xhNlnmDzr1aJ7nwt/.../

Scan 22066385_setup.exe - Powered by Reason Core Security