home

ClearLNK.exe

ClearLNK

Alex Dragokas

This is a setup program which is used to install the application. The file has been seen being downloaded from toolslib.net.
Publisher:
Alex Dragokas  (signed and verified)

Product:
ClearLNK

Description:
Программа для лечения ярлыков, вследствие заражения системы Adware и другим вредоносным ПО.

Version:
2.09.0001

MD5:
fbfe7df69f201df4c149598be2257d5e

SHA-1:
522b493494c6c0551d34b3ab59a9445c0d7fbf56

SHA-256:
1a717f19a36729c5b81675f6c8cd5ad281f6a0fcbebca53caedde679ca84e54d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/6/2024 4:42:42 AM UTC  (today)

File size:
392 KB (401,432 bytes)

Product version:
2.09.0001

Copyright:
Alex Dragokas

Trademarks:
Alex Dragokas

Original file name:
ClearLNK.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\clearlnk\clearlnk.exe

Digital Signature
Signed by:
Alex Dragokas

Authority:
Alex Dragokas

Valid from:
6/30/2014 11:59:42 PM

Valid to:
1/1/2040 2:59:59 AM

Subject:
CN=Alex Dragokas

Issuer:
CN=Alex Dragokas

Serial number:
F4DBDD6E9C3591AC4A5C39E95A82536F

File PE Metadata
Compilation timestamp:
11/15/2015 10:45:00 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
6144:sUmXiS8uiy1mjQWTn1OYHUHXEq+Fwz7x4uFuLJtDwwI:8S2MTgYHg0wcJtDwwI

Entry address:
0x6260

Entry point:
68, 04, C2, 40, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, A0, 00, 00, 00, 40, 00, 00, 00, BF, 8D, 48, 0C, 5B, 6E, F7, 4D, 94, E5, 7B, 66, 05, C4, 5C, F8, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 31, 20, 20, 27, 54, 72, 43, 6C, 65, 61, 72, 4C, 4E, 4B, 00, 72, 64, 65, 72, 53, 74, 79, CF, F0, EE, E3, F0, E0, EC, EC, E0, 20, E4, EB, FF, 20, EB, E5, F7, E5, ED, E8, FF, 20, FF, F0, EB, FB, EA, EE, E2, 2C, 20, E2, F1, EB, E5, E4, F1, F2, E2, E8, E5, 20, E7, E0, F0, E0, E6, E5, ED, E8, FF, 20...
 
[+]

Developed / compiled with:
Microsoft Visual Basic v5.0/v6.0

Code size:
308 KB (315,392 bytes)

The file ClearLNK.exe has been seen being distributed by the following URL.

https://toolslib.net/downloads/finish/81/get/.../

Scan ClearLNK.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.