home

autoscanneropel_169.exe

AutoScanner Application

opel-scanner.com

This is a setup program which is used to install the application. The file has been seen being downloaded from s10560.chomikuj.pl and multiple other hosts.
Publisher:
opel-scanner.com

Product:
AutoScanner Application

Description:
Opel Diagnostics Software

Version:
1, 0, 1, 69

MD5:
6d39a610f741c5c20ec59e5cea283e63

SHA-1:
d6e67cbf751128b285761952bf836a67429593bf

SHA-256:
ccc8c79873a3bf58305120b43bdeb586d2d49f4c8f578061e24ef9a9a0e0a3bf

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
11/5/2024 11:33:54 AM UTC  (today)

Scan engine
Detection
Engine version

Clam AntiVirus
PUA.Packed.Thinstall2425
0.98/18011

Comodo Security
UnclassifiedMalware
9519

File size:
1.6 MB (1,696,721 bytes)

Product version:
1, 0, 1, 69

Copyright:
Copyright (C) 2008

Original file name:
AutoScannerOpel.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\autoscanneropel_169.exe

File PE Metadata
Compilation timestamp:
8/5/2004 11:49:16 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
24576:5i9mGrzB7XiJMoGwyNkr/bmY5NLURi8CTHIOeZrZ4RVjyJdNp94:5ihzBz4GwCkzbFzIOqrZ4RVuTW

Entry address:
0x1A95

Entry point:
55, 8B, EC, B8, 23, D7, F1, 59, BB, 32, 97, EA, 04, 50, E8, 00, 00, 00, 00, 58, 2D, A8, 1A, 00, 00, B9, 6D, 1A, 00, 00, BA, 21, 1B, 00, 00, BE, 00, 10, 00, 00, BF, C0, 53, 00, 00, BD, F0, 1A, 00, 00, 03, E8, 81, 75, 00, 09, BE, BD, AD, 81, 75, 04, 2C, 52, 6A, 91, 81, 75, 08, 4F, C5, C9, B8, 81, 75, 0C, 72, 17, 27, 4C, 81, 75, 10, 95, 48, CD, 9A, 03, C8, 03, D0, 0A, 4E, BE, 55, 71, 02, E1, 54, C4, EB, E2, 53, 1B, CC, 26, 59, 91, 71, CE, 42, 3B, F1, 7C, 04, 3B, F2, 7C, 02, 89, 2E, 83, C6, 04, 3B, F7, 7C, E3...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
388 KB (397,312 bytes)

The file autoscanneropel_169.exe has been seen being distributed by the following 5 URLs.

http://s10560.chomikuj.pl/File.aspx?e=DWTle459XFRsbO5dJRRQSmKrAeMxFggvoehs3kmG4p5T43orDQzx--8gVV6Mh2aoySJGewyzwy60iMxWRSXWp6FJFgNOkBYJ6K1WLs5G3CcWGbfBxNfXeVRq-9zR5UND6YCAVU0VRzpn7-st7k7Btw&pv=2

http://revpx13.chomikuj.pl/.../File.aspx?e=DWTle459XFRsbO5dJRRQSu4U-PWSbhTRySYg-25z56wF52At_35DXQFNq_oSxv6kAKjuaaNqQMoPa1VPCxiy8OivArvWLUIkGjw8FHJRG0YFjMuYUJKGUbUBPqDCvokmVcYIpFdNY3QSH2DgQUUuOQ&pv=2

http://s10560.chomikuj.pl/File.aspx?e=DWTle459XFRsbO5dJRRQSvva15yzLs9IhseLNk-VPbNvpleGYHLMRXt4Rkto_eyzktiIEJQ0O8JHkhx1i2MjMauyumMaIqrKc7i4zJz1UqZzOcbrqb6RLxt1IRmQzjTn7IV2RTaFFKxg65VxFBVqPg&pv=2

http://s10560.chomikuj.pl/File.aspx?e=DWTle459XFRsbO5dJRRQSleBtoAYVb1NoWCIYFj17o5wc6rAUdZ_oUP3siNdCSmhD2X1f-E-Gpi3EKARsNV6DZafyBZOkdgB9mJFOA_UzaAswqJXm1ziYYgV7legi1sQnk_QH2HZ_gyHEIsC3rypxw&pv=2

http://s10560.chomikuj.pl/File.aspx?e=DWTle459XFRsbO5dJRRQSoKN81g2YRWqlBH0bhW0S69mJeFfmnBHohs6L9NnF0DDntohGYk1F8qGA8qHumUqOe-M8hius2j2s9AS1Si1MrSe7ZTww877inaafDXC5jrg3MW1-7HEdpmMkh0SytCXhw&pv=2

Scan autoscanneropel_169.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.