b0b0e135-5351-45df-b4c6-a861181fd0eb.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from sendme13.ru and multiple other hosts.
Version:
1.0.0.0

MD5:
bad9bf4377e40d02f3e0bc8185c3ac28

SHA-1:
b4dfc4383c34d633520be53f8dc1bbbde7355ab8

SHA-256:
51783e5397a17106fedefe97d1da7a26b8b139e416539f6b9201e0d13272a6c7

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
12/25/2024 5:45:37 PM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Malware-gen
2014.9-150713

Qihoo 360 Security
HEUR/QVM05.1.Malware.Gen
1.0.0.1015

File size:
4.4 MB (4,590,080 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Common path:
C:\Documents and Settings\{user}\Local settings\temp\b0b0e135-5351-45df-b4c6-a861181fd0eb.exe

File PE Metadata
Compilation timestamp:
6/10/2015 4:08:41 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:FOFeGU5ihkJqBzdHUMd+xieCziMStTm5ZjCChlFjLx9mStS1ZJv8fbwL1nF2NLl9:FOiK/jCChlX93js

Entry address:
0x407B10

Entry point:
55, 8B, EC, 83, C4, EC, 33, C0, 89, 45, EC, B8, 40, 8D, 7F, 00, E8, 0F, 60, C0, FF, 33, C0, 55, 68, 97, 7B, 80, 00, 64, FF, 30, 64, 89, 20, 8B, 0D, C0, 4D, 82, 00, A1, 54, 54, 82, 00, 8B, 00, 8B, 15, 00, 65, 7F, 00, E8, 8D, 1E, D9, FF, 8D, 55, EC, B8, 01, 00, 00, 00, E8, DC, F0, BF, FF, 8B, 45, EC, BA, B0, 7B, 80, 00, E8, 43, 2D, C0, FF, 74, 0E, A1, C0, 4D, 82, 00, 8B, 00, E8, C1, FD, FE, FF, EB, 0C, A1, C0, 4D, 82, 00, 8B, 00, E8, CB, 01, FF, FF, 33, C0, 5A, 59, 59, 64, 89, 10, 68, 9E, 7B, 80, 00, 8D, 45...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
4 MB (4,219,904 bytes)

The file b0b0e135-5351-45df-b4c6-a861181fd0eb.exe has been seen being distributed by the following 2 URLs.

Scan b0b0e135-5351-45df-b4c6-a861181fd0eb.exe - Powered by Reason Core Security