ConEmuSetup.exe

ConEmu

Open Source Developer, ConEmu-Maximus5

This is a setup and installation application.
Publisher:
ConEmu-Maximus5  (signed by Open Source Developer, ConEmu-Maximus5)

Product:
ConEmu

Description:
ConEmu Installer

Version:
160529

MD5:
835074a1e743c2dc86169a7cd5865109

SHA-1:
89598052a0132d4f877bf4be095e234c57e460f7

SHA-256:
32e1663511e04f393553fbbf9eea76ee28d88867bff289f13e6c14da93335bac

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 5:08:31 PM UTC  (today)

File size:
37.5 KB (38,432 bytes)

Product version:
160529

Copyright:
© ConEmu.Maximus5@gmail.com

Original file name:
ConEmuSetup.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\conemusetup.exe

Digital Signature
Authority:
Unizeto Technologies S.A.

Valid from:
5/2/2016 5:31:18 AM

Valid to:
8/5/2016 6:00:00 PM

Subject:
E=ConEmu.Maximus5@gmail.com, CN="Open Source Developer, ConEmu-Maximus5", O=Open Source Developer, C=RU

Issuer:
CN=Certum Code Signing CA SHA2, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:
3E7F6708F415D35803FA526792E35BB4

File PE Metadata
Compilation timestamp:
5/29/2016 3:40:09 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.56

CTPH (ssdeep):
768:vs83GeiFIY2SbUyvEcQmFj659JiZZBn4uFEU:08EIun4QEU

Entry address:
0x1110

Entry point:
55, 89, E5, 83, EC, 08, C7, 04, 24, 02, 00, 00, 00, FF, 15, 64, 51, 40, 00, E8, F8, FE, FF, FF, 90, 8D, B4, 26, 00, 00, 00, 00, 55, 89, E5, 83, EC, 08, C7, 04, 24, 01, 00, 00, 00, FF, 15, 64, 51, 40, 00, E8, D8, FE, FF, FF, 90, 8D, B4, 26, 00, 00, 00, 00, 55, 89, E5, 53, 83, EC, 14, 8B, 45, 08, 8B, 00, 8B, 00, 3D, 91, 00, 00, C0, 77, 3B, 3D, 8D, 00, 00, C0, 72, 4B, BB, 01, 00, 00, 00, C7, 44, 24, 04, 00, 00, 00, 00, C7, 04, 24, 08, 00, 00, 00, E8, C3, 0B, 00, 00, 83, F8, 01, 0F, 84, 03, 01, 00, 00, 85, C0...
 
[+]

Packer / compiler:
MingWin32 GCC, 0x3.x

Code size:
3.5 KB (3,584 bytes)

Scan ConEmuSetup.exe - Powered by Reason Core Security