home

cat_315d.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from mods1.fs-uk.com.
MD5:
c5b3d0ab6b11912ff2fa3e9a8f0ad393

SHA-1:
ca7f18e2dcafa65cd2c94f004ad9ced8783a9020

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/16/2024 2:44:49 AM UTC  (today)

File size:
8.2 MB (8,597,817 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Documents and Settings\{user}\My documents\downloads\cat_315d.exe

File PE Metadata
Compilation timestamp:
9/30/2010 2:47:40 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
196608:oEJWSc9MdAHG4p2bljjJpDtDX7PjLW97CBdkR6KCh0lEjyXv6YRmi0:rWScedAHiljjJpp6OBdiQ0CjyXBwi0

Entry address:
0x30AB

Entry point:
C6, C4, 24, F2, 8D, 15, 7C, 30, D3, B2, 85, D7, 72, 07, 4B, 81, EB, AB, E6, 36, 50, 8D, 1D, 9D, 33, 17, 4C, 0F, B7, D9, C7, C1, 23, 06, A9, C2, 0F, B7, CD, 0A, FC, 81, FD, 4E, 9D, 00, 00, FF, C9, EB, 09, 0F, B7, D8, 69, E8, 87, 1C, BA, 1E, B2, ED, 68, FA, 2E, 50, 00, 68, FC, 47, 29, 00, C7, C5, D8, F5, 7E, FA, E8, 00, 00, 00, 00, 85, C9, FF, C9, 86, CF, 87, DA, 81, EE, AE, 95, 00, 00, 84, C0, 81, EE, 3A, 2D, 00, 00, 5F, 0F, AF, F3, FE, CE, F6, C4, 45, 04, D2, 05, BF, 1D, 28, AC, 8B, F3, 86, EC, C6, C7, 91...
 
[+]

Entropy:
7.9583  (probably packed)

Code size:
52 KB (53,248 bytes)

The file cat_315d.exe has been seen being distributed by the following URL.

http://mods1.fs-uk.com/files/.../CAT_315D.exe

Scan cat_315d.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.