cfos-v801-build3134.exe

cFos Software GmbH

This is a setup program which is used to install the application. The file has been seen being downloaded from download.roro44.com and multiple other hosts.
Publisher:
cFos Software GmbH  (signed and verified)

MD5:
a1af74ce29a487464ebb88e6260451e7

SHA-1:
4cf2d8e07e14bee7fc86f7b346872f23eabcea2c

SHA-256:
893e9c102b1322cb5452ce71804b362cb73ca8592472b87fa5abe643b707a7ec

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 6:53:53 AM UTC  (today)

File size:
3.9 MB (4,066,136 bytes)

File type:
Executable application (Win32 EXE)

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
11/11/2010 9:19:35 AM

Valid to:
11/11/2013 9:19:33 AM

Subject:
CN=cFos Software GmbH, O=cFos Software GmbH, L=Bonn, S=Nordrhein-Westfalen, C=DE

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
0100000000012C3C06CFDE

File PE Metadata
Compilation timestamp:
7/15/2010 8:25:06 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
49152:mXb3FGSBPex+tCFyrUA3af/BeL4Y2VXlHtCfzHvEpoxMyz4Pat8nervSgBXwfrs:mXjFGSBPqHRfZ0KVJtCfzHvcnyHZS+

Entry address:
0x1C61

Entry point:
E8, 06, 19, 00, 00, E9, 78, FE, FF, FF, 55, 8B, EC, 83, EC, 08, 89, 7D, FC, 89, 75, F8, 8B, 75, 0C, 8B, 7D, 08, 8B, 4D, 10, C1, E9, 07, EB, 06, 8D, 9B, 00, 00, 00, 00, 66, 0F, 6F, 06, 66, 0F, 6F, 4E, 10, 66, 0F, 6F, 56, 20, 66, 0F, 6F, 5E, 30, 66, 0F, 7F, 07, 66, 0F, 7F, 4F, 10, 66, 0F, 7F, 57, 20, 66, 0F, 7F, 5F, 30, 66, 0F, 6F, 66, 40, 66, 0F, 6F, 6E, 50, 66, 0F, 6F, 76, 60, 66, 0F, 6F, 7E, 70, 66, 0F, 7F, 67, 40, 66, 0F, 7F, 6F, 50, 66, 0F, 7F, 77, 60, 66, 0F, 7F, 7F, 70, 8D, B6, 80, 00, 00, 00, 8D, BF...
 
[+]

Entropy:
7.6766

Code size:
26.5 KB (27,136 bytes)

The file cfos-v801-build3134.exe has been seen being distributed by the following 3 URLs.

http://download.roro44.com/.../Download-3408-cfos.html?sdi=15012

Scan cfos-v801-build3134.exe - Powered by Reason Core Security