» conemusetup.160503.exe
Overview
Analysis
File Details
Downloads (1)

conemusetup.160503.exe

ConEmu

Open Source Developer, ConEmu-Maximus5

This is a setup and installation application. The file has been seen being downloaded from github.com.

File name:

Publisher:

ConEmu-Maximus5 (signed by Open Source Developer, ConEmu-Maximus5)

Product:

ConEmu

Description:

ConEmu Installer

Version:

160503

MD5:

f3cacc868f678bc0223838131327e3b5

SHA-1:

5afe89e2b746ed2efb30e6727a0db25d12880750

SHA-256:

6240e9caf302cddd2ddca81bfd6955f5e6fc4d2b812bc3b74bb7418fa48c1e49

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

11/24/2024 2:05:17 AM UTC (today)

File size:

5.2 MB (5,497,376 bytes)

Product version:

160503

Original file name:

ConEmuSetup.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\conemusetup.160503.exe

Digital Signature

Signed by:

Open Source Developer, ConEmu-Maximus5

Authority:

Unizeto Technologies S.A.

Valid from:

5/2/2016 8:31:18 AM

Valid to:

8/5/2016 9:00:00 PM

Subject:

E=ConEmu.Maximus5@gmail.com, CN="Open Source Developer, ConEmu-Maximus5", O=Open Source Developer, C=RU

Issuer:

CN=Certum Code Signing CA SHA2, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:

3E7F6708F415D35803FA526792E35BB4

File PE Metadata

Compilation timestamp:

5/4/2016 7:00:39 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.56

CTPH (ssdeep):

98304:wTA8pzf/3RjoPorjrJvs+wbyiLHy4t0QmxJ2174JMau:KA8pL4Es+wOaH+J0l

Entry address:

0x1110

Entry point:

55, 89, E5, 83, EC, 08, C7, 04, 24, 02, 00, 00, 00, FF, 15, 90, 92, 40, 00, E8, F8, FE, FF, FF, 90, 8D, B4, 26, 00, 00, 00, 00, 55, 89, E5, 83, EC, 08, C7, 04, 24, 01, 00, 00, 00, FF, 15, 90, 92, 40, 00, E8, D8, FE, FF, FF, 90, 8D, B4, 26, 00, 00, 00, 00, 55, 89, E5, 53, 83, EC, 14, 8B, 45, 08, 8B, 00, 8B, 00, 3D, 91, 00, 00, C0, 77, 3B, 3D, 8D, 00, 00, C0, 72, 4B, BB, 01, 00, 00, 00, C7, 44, 24, 04, 00, 00, 00, 00, C7, 04, 24, 08, 00, 00, 00, E8, 03, 1E, 00, 00, 83, F8, 01, 0F, 84, 03, 01, 00, 00, 85, C0... 
[+]

Packer / compiler:

MingWin32 GCC, 0x3.x

Code size:

8.5 KB (8,704 bytes)

The file conemusetup.160503.exe has been seen being distributed by the following URL.

https://github.com/Maximus5/ConEmu/releases/download/.../ConEmuSetup.160503.exe

Scan conemusetup.160503.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.