home

Cloud_Shadow.exe

Cloud_Shadow

University of Texas at Austin, ECE Dept.

This is a setup program which is used to install the application. The file has been seen being downloaded from users.ece.utexas.edu.
Publisher:
University of Texas at Austin, ECE Dept.

Product:
Cloud_Shadow

Version:
1.00

MD5:
4254f9c4901dce082fb9824623f7e6cf

SHA-1:
8ee17a960e27baf2ea3960bd3de555d361ab83a6

SHA-256:
3395e8e5436122b706d873dec8e84b4fd660592789609e79bb39c996096c6a14

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 10:51:28 AM UTC  (today)

File size:
128 KB (131,072 bytes)

Product version:
1.00

Original file name:
Cloud_Shadow.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\cloud_shadow.exe

File PE Metadata
Compilation timestamp:
9/2/2012 11:10:13 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
1536:dA0+epU4Yh4aEbadIFEl6b+2Og2m1zR54kyRHE5ngMqsQgYvUyiboe:u0zyCb8IN+2z1R54VMSgYX2

Entry address:
0x15CC

Entry point:
68, 64, 3E, 40, 00, E8, F0, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, CE, 95, F6, E4, 70, 8B, 14, 4B, 8A, 58, 53, 34, 9C, 30, D1, FB, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 40, 87, 0F, 01, 50, 72, 6F, 6A, 65, 63, 74, 31, 00, 08, 41, 00, 20, 08, 41, 00, 00, 00, 00, 00, FF, CC, 31, 00, 7F, 0C, 9E, F4, 9D, DD, D7, 15, 41, 8E, FC, C0, C3, E9, 91, 9A, 14, E2, FC, FA, F5, ED, D2, F5, 48, B1, 80, AD, 69, 40, 51, 68, 22, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00...
 
[+]

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
116 KB (118,784 bytes)

The file Cloud_Shadow.exe has been seen being distributed by the following URL.

http://users.ece.utexas.edu/.../Cloud_Shadow.exe

Scan Cloud_Shadow.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.