autodengi setup.exe

AD client

autodengi.com

This is a self-extracting archive and installer. The file has been seen being downloaded from cloclo25.cldmail.ru and multiple other hosts.
Publisher:
autodengi.com

Product:
AD client

Description:
AD client Setup

Version:
1.0

MD5:
28959f448a7f21a0926bcec95d53de82

SHA-1:
e70e3a9afb7ea854ac09ce415912a2974f3dd80e

SHA-256:
f8ca4442b869bb71d85538fc915de9cd1142146aed293737b610856beb7a26e0

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/23/2024 7:49:45 AM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
HW32.Packed
1.3.0.6379

File size:
542.9 KB (555,924 bytes)

Product version:
1.0

Copyright:
Copyright © 2015 autodengi.com

Original file name:
setup.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\autodengi setup.exe

File PE Metadata
Compilation timestamp:
1/31/2011 9:44:13 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:NlSQ9ZeC14aTrKim3lrs+Os1A/1DLcdFYDHcVQUNYSbH7JSl4BX/mHCMi:eQ9oCaWE3lrs+j18DugzyYSbHUqeHc

Entry address:
0x1D20

Entry point:
55, 8B, EC, 6A, FF, 68, 28, 21, 40, 00, 68, A0, 1E, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 68, 53, 56, 57, 89, 65, E8, 33, DB, 89, 5D, FC, 6A, 02, FF, 15, 88, 20, 40, 00, 59, 83, 0D, 54, 35, 40, 00, FF, 83, 0D, 58, 35, 40, 00, FF, FF, 15, 84, 20, 40, 00, 8B, 0D, CC, 32, 40, 00, 89, 08, FF, 15, 80, 20, 40, 00, 8B, 0D, C8, 32, 40, 00, 89, 08, A1, 7C, 20, 40, 00, 8B, 00, A3, 5C, 35, 40, 00, E8, 10, 01, 00, 00, 39, 1D, BC, 32, 40, 00, 75, 0C, 68, 9C, 1E, 40, 00, FF, 15, 78, 20...
 
[+]

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
4 KB (4,096 bytes)

The file autodengi setup.exe has been seen being distributed by the following 50 URLs.

https://cloclo25.cldmail.ru/YrLe2bAritP4kHdZzbT/G/.../iJUysk5sh?key=12b6ddf43f7c4e318df2cf44de5f07c6e75cceed

https://cloclo26.cldmail.ru/RsC7AAmCErLiAX5FSg3/G/.../iJUysk5sh?key=c3441e53771af829ff6122473328e2e7f6fc50dc

https://cloclo9.cldmail.ru/2mdKpze7YfyHkaYENsHa/G/.../iJUysk5sh?key=c52be70bc11762276df9c0a1d6de4b71d3a34639

https://cloclo11.cldmail.ru/CEkXko8BL7drW479Btr/G/.../iJUysk5sh?key=b47fa1b90334a28384c1d23feed7653821f9378b

https://cloclo19.cldmail.ru/2k8AE23K6dKr7nZB42UK/G/.../autoDENGI setup.exe

https://cloclo30.cldmail.ru/kJ9HgD1rVA5nuFrmzCM/G/.../iJUysk5sh?key=4a2ac4c0084b1314c13f180aa2802121632246cd

https://cloclo39.cldmail.ru/22x8rEnFQ4n7uphkJxpt/G/.../iJUysk5sh?key=c5179add4a10e2f35e53f11384d5a09744bc8ee0

https://cloclo17.cldmail.ru/2ag2FX79RpamCAvDJz8h/G/.../iJUysk5sh?key=a7fd26ef2245c195235a59371b511b64121893e4

https://cloclo19.cldmail.ru/ovw9RmxmDWtTdgQqhCt/G/.../autoDENGI setup.exe

https://cloclo21.cldmail.ru/2hVtaN4P1NQ5trSA24pS/G/.../iJUysk5sh?key=a83b2860ef4f262075aca2b69bbbe2c345b3eda6

https://cloclo38.cldmail.ru/HXBa7tf6d72iF55twSX/G/.../autoDENGI setup.exe

https://cloclo39.cldmail.ru/2sFTcZAR1oprmB1dcTd9/G/.../autoDENGI setup.exe

https://cloclo19.cldmail.ru/29xevQkPk9yKLzkoQdT7/G/.../autoDENGI setup.exe

https://cloclo28.cldmail.ru/2jY6W372A8fi813qfxCM/G/.../autoDENGI setup.exe

https://cloclo3.cldmail.ru/yHpj8WS6imVMymQgt9J/G/.../iJUysk5sh?key=995ecc48c3cac5c08f7813ec376ebf7861c6cf97

https://cloclo28.cldmail.ru/RDnohLMEitEkbe4sgg3/G/.../autoDENGI setup.exe

https://cloclo39.cldmail.ru/hwG2MPBMwH8QgKeFXzZ/G/.../iJUysk5sh?key=c887d68cf465f5353338bd8fd693ac22cf724411

https://cloclo15.cldmail.ru/2xtmC9V3JQkteGk2JyMV/G/.../autoDENGI setup.exe

https://cloclo40.cldmail.ru/2mi6LjVjV37mDvLVQEBU/G/.../autoDENGI setup.exe

https://cloclo39.cldmail.ru/waRPGrfrQsSFAZy7su6/G/.../iJUysk5sh?key=206199962262d3dc59538390c9b17bba24161870

https://cloclo14.cldmail.ru/wVQTnxmURoiafCQgXau/G/.../autoDENGI setup.exe

https://cloclo2.cldmail.ru/g7CBVfgGzcVjNsiDJ5F/G/.../iJUysk5sh?key=55066d9ce6c5a8f66cfc485f6a867825f26a5825

https://cloclo27.cldmail.ru/q7f3pMHUD75c4KSDT1r/G/.../iJUysk5sh?key=5507dd47c1c1d5dfc5a52abdf588882d1d6b0f17

https://cloclo40.cldmail.ru/2cQrg88Pj3PEffnKXo7Z/G/.../iJUysk5sh?key=eb4dc19c6e67b871e9e73cf4cbaef25c849694e3

https://cloclo20.cldmail.ru/tBohky56MsWui71mKa3/G/.../iJUysk5sh?key=3137d381a588f303d9bf6756f732c57f8cd5de54

https://cloclo3.cldmail.ru/227e3nUGvf2djx1okTQy/G/.../iJUysk5sh?key=e2a481b27fd8709f4b4627528804fa2f95494429

https://cloclo27.cldmail.ru/Rqm7HBarMV9ZYbhm4Bs/G/.../autoDENGI setup.exe

https://cloclo9.cldmail.ru/VgPMpfFBe1aQuJ8ugRd/G/.../autoDENGI setup.exe

https://cloclo30.cldmail.ru/VKuXQxnUtXqbDm2aSNU/G/.../iJUysk5sh?key=a1d2a2166c6e89fdb2a12fe07e8b144c6f06f9de

https://cloclo3.cldmail.ru/29fUrhAXWXTAUtqsuPvm/G/.../iJUysk5sh?key=32ef91e5a7bbedb5f742894faf9901b6fb918a97

Latest 30 of 113 download URLs

Scan autodengi setup.exe - Powered by Reason Core Security