atualização critica.exe

SOFTWARE SOLUTION TECNOLOGIA DA INFORMACAO LTDA - ME

This is a setup program which is used to install the application. The file has been seen being downloaded from dl.boxcloud.com and multiple other hosts.
Publisher:

MD5:
894812ce6d8f13b0ce7be8b74363b368

SHA-1:
7fad781259026ac0e587c46b8e893a1f90e8a596

SHA-256:
647db635c532a4bec98d91f8a660b5b60ab2748571072f7c12bf8f0cd47bde6c

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/5/2024 2:33:08 AM UTC  (today)

Scan engine
Detection
Engine version

F-Prot
W32/NewMalware-LSU-based!Maximu
4.6.5.141

File size:
27.6 KB (28,312 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\atualização critica.exe

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
10/19/2015 3:59:00 PM

Valid to:
10/19/2016 3:59:00 PM

Subject:
CN=SOFTWARE SOLUTION TECNOLOGIA DA INFORMACAO LTDA - ME, OU=TI, O=SOFTWARE SOLUTION TECNOLOGIA DA INFORMACAO LTDA - ME, L=SAO BERNARDO DO CAMPO, S=SAO PAULO, C=BR

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121AA0F08A8D60878BA42D485354A250087

File PE Metadata
Compilation timestamp:
3/22/2016 11:16:34 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
2.26

CTPH (ssdeep):
384:2DDqBqN2O4BIbJ30oe3wRaLFMuLSJfHZecMsbL9/QdpwIKJ7EY7r5dus:2+GhxWRzSJfHZecMs6ddQpHd

Entry address:
0x14E0

Entry point:
83, EC, 0C, C7, 05, D8, 76, 40, 00, 00, 00, 00, 00, E8, 1E, 07, 00, 00, 83, C4, 0C, E9, 76, FC, FF, FF, 90, 90, 90, 90, 90, 90, 55, 89, E5, 57, 56, 53, 83, EC, 2C, 8B, 35, 48, 82, 40, 00, C7, 04, 24, 00, 50, 40, 00, FF, D6, 83, EC, 04, 85, C0, 0F, 84, BD, 00, 00, 00, 89, C3, C7, 04, 24, 00, 50, 40, 00, FF, 15, 70, 82, 40, 00, 8B, 15, 4C, 82, 40, 00, 83, EC, 04, A3, 20, 77, 40, 00, C7, 44, 24, 04, 13, 50, 40, 00, 89, 1C, 24, 89, 55, E4, FF, D2, 83, EC, 08, 89, C7, 8B, 55, E4, C7, 44, 24, 04, 29, 50, 40, 00...
 
[+]

Code size:
9 KB (9,216 bytes)

The file atualização critica.exe has been seen being distributed by the following 5 URLs.

Scan atualização critica.exe - Powered by Reason Core Security