Ancient Ancestry.exe

Ancient Ancestry

Open Source Developer, Felix Immanuel

This is a setup program which is used to install the application. The file has been seen being downloaded from drive.google.com and multiple other hosts.
Publisher:
Genetic Genealogy Tools  (signed by Open Source Developer, Felix Immanuel)

Product:
Ancient Ancestry

Version:
1.1

MD5:
513437bee700900c162bb7960e3a5c7c

SHA-1:
3a1777a162b127cd42e544836d46d01c473fb53c

SHA-256:
b59bd5e7274a00a0a05dfae2650c4c208522f089096c233264beb51e7518b6a2

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 2:42:31 PM UTC  (today)

File size:
7.7 MB (8,033,904 bytes)

Product version:
1.1

Copyright:
Copyright © Felix Immanuel 2015

Original file name:
Ancient Ancestry.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\ancient ancestry.exe

Digital Signature
Authority:
Unizeto Technologies S.A.

Valid from:
6/19/2015 2:48:00 AM

Valid to:
6/18/2016 2:48:00 AM

Subject:
E=i@fi.id.au, CN="Open Source Developer, Felix Immanuel", O=Open Source Developer, C=AU

Issuer:
CN=Certum Level III CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:
1855243F0B901FF5F3D69A33E8C32A08

File PE Metadata
Compilation timestamp:
7/7/2015 2:10:20 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
196608:xQhwphGIXUfcewWW0+She9NLQYEVZDsQb9:BhG4UfLwWWJSED85PXx

Entry address:
0x78E04E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.9336

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
7.5 MB (7,913,984 bytes)

The file Ancient Ancestry.exe has been seen being distributed by the following 2 URLs.

https://drive.google.com/uc?export=download&id=0B_DZ5yg3R2FGZTI4ckE4anRRRU0

Scan Ancient Ancestry.exe - Powered by Reason Core Security