aurora2_demo.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from download.animatedwallpaper7.com.
MD5:
06e67b8e1f5cdacc625340711dd82e7c

SHA-1:
19d96b12eb966483416c878cd7512fceb2ecbf3c

SHA-256:
e3b04c387f6b1ed0b6e5b374d9714ddb003a61416e77247b69f659a72bc163e0

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/28/2024 3:08:32 AM UTC  (today)

File size:
2.9 MB (2,994,176 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\nouveau dossier\aurora2_demo.exe

File PE Metadata
Compilation timestamp:
9/24/2013 8:21:57 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
49152:IRL591+h1cIK25pAg+/3n+OpCdrSLka6HQ7RwiqVWp:m9EPcIN5pAg+/3nFClSL76HQ7RoVWp

Entry address:
0x14EA80

Entry point:
E8, 4F, F6, 00, 00, E9, 16, FE, FF, FF, 55, 8B, EC, 83, EC, 20, 53, 33, DB, 39, 5D, 10, 75, 20, E8, 98, 3B, 00, 00, 53, 53, 53, 53, 53, C7, 00, 16, 00, 00, 00, E8, B4, AD, FF, FF, 83, C4, 14, 83, C8, FF, E9, 80, 00, 00, 00, 8B, 4D, 0C, 3B, CB, 56, 8B, 75, 08, 74, 21, 3B, F3, 75, 1D, E8, 69, 3B, 00, 00, 53, 53, 53, 53, 53, C7, 00, 16, 00, 00, 00, E8, 85, AD, FF, FF, 83, C4, 14, 83, C8, FF, EB, 53, B8, FF, FF, FF, 7F, 3B, C8, 89, 45, E4, 77, 03, 89, 4D, E4, 57, FF, 75, 18, 8D, 45, E0, FF, 75, 14, C7, 45, EC...
 
[+]

Code size:
1.4 MB (1,519,616 bytes)

The file aurora2_demo.exe has been seen being distributed by the following URL.

Scan aurora2_demo.exe - Powered by Reason Core Security