avaluacio1.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from www.xtec.cat.
MD5:
a77566f9ad06032c05d8912058b5c841

SHA-1:
8f035e271e46f554db2112f3c31bbca96f8bb65b

SHA-256:
252434d6fc5d35623f03e1ed7a940d5cdf6e0477486376d35700b0f777dadada

Scanner detections:
3 / 68

Status:
Clean  (3 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
11/25/2024 12:56:34 AM UTC  (today)

Scan engine
Detection
Engine version

Comodo Security
ApplicUnsaf.Win32.Agent.rf
22187

Quick Heal
(Suspicious) - DNAScan
7.15.14.00

Trend Micro House Call
Suspicious_GEN.F47V0205
7.2.198

File size:
618 KB (632,856 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\nueva carpeta\downloads\avaluacio1.exe

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:L144OGFhasStMMkM+cTc/I9LRC8Tsb80cFiXjRGWHodf2fUD9blUch4bkCW:+4OGh3wkJcTc/WVCFb8pFcRwhnUS+kj

Entry address:
0x16E001

Entry point:
60, E8, 02, 00, 00, 00, EB, 09, 5D, 55, 81, ED, 39, 39, 44, 00, C3, E9, 59, 04, 00, 00, 3F, 76, 5B, 57, 57, 42, 57, 12, 87, 90, 9B, 57, 5A, 34, 82, F4, 53, 96, 9B, 57, DA, 14, 7F, A1, 9B, 57, 57, E0, F4, 7F, A1, 9B, 57, 66, DC, B9, 5A, 57, 57, 1E, DC, 9A, 90, 9B, 57, 57, 57, 57, 57, E4, DC, 87, A1, 9B, 57, A7, 56, EC, 83, A2, 9B, 57, E0, DC, 83, A1, 9B, 57, E2, 4F, E4, F4, 94, A1, 9B, 57, AA, A7, 56, EC, 7F, A2, 9B, 57, E0, DC, 7F, 97, 9B, 57, E4, F4, A1, A1, 9B, 57, AA, AE, 56, EC, 7F, A2, 9B, 57, E0, DC...
 
[+]

Packer / compiler:
ASPack v2.11c

Code size:
1.2 MB (1,283,072 bytes)

The file avaluacio1.exe has been seen being distributed by the following URL.

Scan avaluacio1.exe - Powered by Reason Core Security