home

c2qrcodedesktopreadersetup.exe

CodeTwo QR Codes Desktop Reader

CodeTwo sp. z o.o. sp. k.

This is a self-extracting archive and installer. The file has been seen being downloaded from www.codetwo.pl and multiple other hosts.
Publisher:
CodeTwo s.c.  (signed by CodeTwo sp. z o.o. sp. k.)

Product:
CodeTwo QR Codes Desktop Reader

Description:
CodeTwo QR Code Desktop Reader Inastaller

Version:
1,0,0,21

MD5:
267cbfd45b01b4ddff1fd051d0f08e25

SHA-1:
107f3a59c6f95a7bdcb5d02bffc0d3dd3ee8393d

SHA-256:
f5e5acbb11841b651c0450578650c9f23566de1d8838342ed4877988b1c63bf4

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
1/7/2025 5:27:10 PM UTC  (today)

Scan engine
Detection
Engine version

Emsisoft Anti-Malware
Gen:Variant.Symmi.32731
8.15.08.07.08

Vba32 AntiVirus
Malware-Cryptor.MSIL.gen.1
3.12.26.4

File size:
4.3 MB (4,471,024 bytes)

Product version:
1,0,0,21

Copyright:
(c) CodeTwo s.c. All rights reserved.

Original file name:
QRCodesReaderSetupBoot.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\c2qrcodedesktopreadersetup.exe

Digital Signature
Signed by:
CodeTwo sp. z o.o. sp. k.

Authority:
VeriSign, Inc.

Valid from:
10/17/2013 2:00:00 AM

Valid to:
12/16/2016 12:59:59 AM

Subject:
CN=CodeTwo sp. z o.o. sp. k., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=CodeTwo sp. z o.o. sp. k., L=Jelenia Gora, S=dolnoslaskie, C=PL

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
5AA00A03D9E4C1D6A79BEB6AA2091F1A

File PE Metadata
Compilation timestamp:
9/5/2012 8:09:17 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
98304:LSvoaMrAkxbyOg4Bcw0FMVRIPzXOvdKCR/6WWnX194Cw3fs:Lpg4tjRcOzR/Wn4C8

Entry address:
0xF7E34

Entry point:
E8, 1B, 90, 00, 00, E9, 78, FE, FF, FF, 8B, FF, 55, 8B, EC, 8B, 45, 08, A3, 3C, 9F, 56, 00, 5D, C3, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A1, 00, 30, 56, 00, 33, C5, 89, 45, FC, 83, A5, D8, FC, FF, FF, 00, 53, 6A, 4C, 8D, 85, DC, FC, FF, FF, 6A, 00, 50, E8, 16, 12, 00, 00, 8D, 85, D8, FC, FF, FF, 89, 85, 28, FD, FF, FF, 8D, 85, 30, FD, FF, FF, 83, C4, 0C, 89, 85, 2C, FD, FF, FF, 89, 85, E0, FD, FF, FF, 89, 8D, DC, FD, FF, FF, 89, 95, D8, FD, FF, FF, 89, 9D, D4, FD, FF, FF, 89, B5, D0, FD, FF, FF, 89...
 
[+]

Code size:
1.1 MB (1,171,456 bytes)

The file c2qrcodedesktopreadersetup.exe has been seen being distributed by the following 3 URLs.

http://www.codetwo.pl/.../C2QRCodeDesktopReaderSetup.exe

https://download.codetwo.com/C2QRCodeDesktopReaderSetup.exe

https://www.codetwo.pl/.../C2QRCodeDesktopReaderSetup.exe

Scan c2qrcodedesktopreadersetup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.