cdm21214_setup.exe

Future Technology Devices International Ltd

This is a setup and installation application. The file has been seen being downloaded from moodle.bilkent.edu.tr and multiple other hosts.
Publisher:

MD5:
72603ce801c76a57646b8b40d139d89c

SHA-1:
05aaccac3c9749001b376515f2d421c5a476d68e

SHA-256:
b7054cc6e1629bb883c4226f8ebb98c1aac7638f36fa2d91460e65f8a7403c4d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/27/2024 12:48:05 PM UTC  (today)

File size:
2 MB (2,127,640 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\cdm21214_setup.exe

Digital Signature
Authority:
Symantec Corporation

Valid from:
11/19/2015 1:00:00 AM

Valid to:
11/19/2018 12:59:59 AM

Subject:
CN=Future Technology Devices International Ltd, O=Future Technology Devices International Ltd, L=Glasgow, S=Glasgow, C=GB, SERIALNUMBER=SC136640, OID.2.5.4.15=Private Organization, OID.1.3.6.1.4.1.311.60.2.1.3=GB

Issuer:
CN=Symantec Class 3 Extended Validation Code Signing CA - G2, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
04C683B4489EF0A3DE2CA4AC085C211C

File PE Metadata
Compilation timestamp:
2/12/2016 5:42:28 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
49152:Te/0tIhow8zsYICYvfZtY92uh6kjLyHv4jJ/KMuFvEcBPX3a28:TeibFzsrC4BWYuUkj2HAJ/5yv1lX3a28

Entry address:
0x6700

Entry point:
55, 8B, EC, 83, EC, 44, 56, FF, 15, D0, 70, 40, 00, 8B, F0, 8A, 06, 3C, 22, 75, 11, 3C, 22, 74, 1D, 46, 8A, 06, 84, C0, 75, F5, 3C, 22, 75, 13, EB, 10, 3C, 20, 7E, 0D, 46, 80, 3E, 20, 7F, FA, EB, 05, 3C, 20, 7F, 07, 46, 8A, 06, 84, C0, 75, F5, 83, 65, E8, 00, 8D, 45, BC, 50, FF, 15, 98, 70, 40, 00, F6, 45, E8, 01, 0F, B7, 45, EC, 6A, 0A, 59, 0F, 45, C8, 51, 56, 6A, 00, 6A, 00, FF, 15, 78, 70, 40, 00, 50, E8, C6, FE, FF, FF, 50, FF, 15, 60, 70, 40, 00, CC, 55, 8B, EC, 56, 57, FF, 75, 08, 33, F6, FF, 15, D4...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
23.5 KB (24,064 bytes)

The file cdm21214_setup.exe has been seen being distributed by the following 4 URLs.

https://moodle.bilkent.edu.tr/2015-2016-spring/file.php/85/.../CDM21214_Setup.exe