home

336.exe

Sistema operacional Microsoft Windows

Microsoft Corporation

This is a setup program which is used to install the application. The file has been seen being downloaded from loja.certificadodigital.com.br.
Publisher:
Microsoft Corporation

Product:
Sistema operacional Microsoft® Windows®

Description:
Auto-extrator de arquivo de gabinete Win32

Version:
6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)

MD5:
57612dc0b2d1b33b9379dcd2f4df1706

SHA-1:
c979400ee44560d20f3a97d262b31adf9ae1ae75

SHA-256:
0e202ac7bc5ae6830fddb4919f62cdd860596d616827ee4c2f0e8615cdda35c2

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 5:22:52 AM UTC  (today)

File size:
448.5 KB (459,264 bytes)

Product version:
6.00.2900.2180

Copyright:
© Microsoft Corporation. Todos os direitos reservados.

Original file name:
WEXTRACT.EXE

File type:
Executable application (Win32 EXE)

Language:
Brazilian Portuguese

Common path:
C:\users\{user}\downloads\336.exe

File PE Metadata
Compilation timestamp:
8/4/2004 3:01:37 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
6144:+jieiDW0TIcFFHivZHbl+5sNPjlVyTgMLkgg3ntGzR56Y2wCVpuSy1Al9fZRyINF:+ncIKkvZHssZjcgM5V6puSF9hvxe7KNV

Entry address:
0x645C

Entry point:
60, C7, C0, 68, DB, A0, DA, 8D, 15, 4E, FE, C7, F6, 81, FE, 6C, 71, 00, 00, 75, 0D, BE, AA, 1F, 7B, 78, 34, 67, 81, C2, 8C, 42, FC, 64, 8B, F1, BD, 56, 6D, 1A, B8, 69, F3, 90, E9, 6B, A7, 12, E4, F3, 81, C5, B1, 65, AC, 5E, 84, F5, E8, 19, 00, 00, 00, 45, 81, CD, 4F, AF, FD, 0C, 85, F8, 0F, AF, C9, F2, 03, F7, 11, D7, 8D, 05, 70, AB, 47, B8, 84, E7, 69, FB, 48, F9, 06, AB, C7, C5, BC, 49, 41, 3E, FE, C2, 19, CF, 81, F3, 6A, 8E, 00, 00, 80, EA, 79, 5E, 81, C5, D7, 4B, C8, EC, 8D, 0D, DC, B2, 40, C5, 3B, FA...
 
[+]

Code size:
38.5 KB (39,424 bytes)

The file 336.exe has been seen being distributed by the following URL.

http://loja.certificadodigital.com.br/Serasa/UPLOAD/.../336.exe

Scan 336.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.