c2qrcodedesktopreadersetup.exe

CodeTwo QR Codes Desktop Reader

CodeTwo sp. z o.o. sp. k.

This is a setup program which is used to install the application. The file has been seen being downloaded from doc-0g-68-docs.googleusercontent.com and multiple other hosts.
Publisher:
CodeTwo s.c.  (signed by CodeTwo sp. z o.o. sp. k.)

Product:
CodeTwo QR Codes Desktop Reader

Description:
CodeTwo QR Code Desktop Reader Inastaller

Version:
1,0,0,21

MD5:
8ced01ed639364ba5da34494c80e6065

SHA-1:
e741e417ecfa6f2313e50449dfe8f1420a328750

SHA-256:
3133830baa646824755f5bce104dbb28c7ac0a943a2b65d9647060bd38c1da40

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/16/2024 12:39:30 PM UTC  (today)

Scan engine
Detection
Engine version

Vba32 AntiVirus
Malware-Cryptor.MSIL.gen.1
3.12.26.3

File size:
4.3 MB (4,471,024 bytes)

Product version:
1,0,0,21

Copyright:
(c) CodeTwo s.c. All rights reserved.

Original file name:
QRCodesReaderSetupBoot.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\c2qrcodedesktopreadersetup.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
10/17/2013 2:00:00 AM

Valid to:
12/16/2016 12:59:59 AM

Subject:
CN=CodeTwo sp. z o.o. sp. k., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=CodeTwo sp. z o.o. sp. k., L=Jelenia Gora, S=dolnoslaskie, C=PL

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
5AA00A03D9E4C1D6A79BEB6AA2091F1A

File PE Metadata
Compilation timestamp:
9/5/2012 8:09:17 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
98304:CSvoaMrAkxbyOg4Bcw0FMVSIPzXOvdKCR/6WWnX194Cw3fs:wpg4tjScOzR/Wn4C8

Entry address:
0xF7E34

Entry point:
E8, 1B, 90, 00, 00, E9, 78, FE, FF, FF, 8B, FF, 55, 8B, EC, 8B, 45, 08, A3, 3C, 9F, 56, 00, 5D, C3, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A1, 00, 30, 56, 00, 33, C5, 89, 45, FC, 83, A5, D8, FC, FF, FF, 00, 53, 6A, 4C, 8D, 85, DC, FC, FF, FF, 6A, 00, 50, E8, 16, 12, 00, 00, 8D, 85, D8, FC, FF, FF, 89, 85, 28, FD, FF, FF, 8D, 85, 30, FD, FF, FF, 83, C4, 0C, 89, 85, 2C, FD, FF, FF, 89, 85, E0, FD, FF, FF, 89, 8D, DC, FD, FF, FF, 89, 95, D8, FD, FF, FF, 89, 9D, D4, FD, FF, FF, 89, B5, D0, FD, FF, FF, 89...
 
[+]

Code size:
1.1 MB (1,171,456 bytes)

The file c2qrcodedesktopreadersetup.exe has been seen being distributed by the following 3 URLs.

https://doc-0g-68-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/qjfrvi62kmtjtrli913pq4i2ls5h4sbl/1474603200000/04213380174464860427/.../0B69AavT6GjdEb29oZDE1T05Nb3c?e=download

https://docs.google.com/uc?authuser=0&id=0B69AavT6GjdEb29oZDE1T05Nb3c&export=download

Scan c2qrcodedesktopreadersetup.exe - Powered by Reason Core Security