connexiondirecte_setup.exe

1&1 Connexion directe

1 und 1 Internet AG

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer.
Publisher:
1&1 Internet S.A.R.L  (signed by 1 und 1 Internet AG)

Product:
1&1 Connexion directe

Description:
1&1 Connexion directe vous permet d'accéder rapidement à vos emails et à l'Espace Client.

Version:
3.0.0.53

MD5:
df0f578dfaf887a8331c08afb11e29d0

SHA-1:
5b0de054867246a950c03256b52d14e9e2c7de8c

SHA-256:
9d9ebdb8a5d57387c8e6d580329ce8384b383a91b8519670a1b6d1bfc7268002

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
11/24/2024 1:08:31 PM UTC  (today)

Scan engine
Detection
Engine version

Clam AntiVirus
Win.Trojan.Temvice
0.98/21511

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
3.12.26.3

File size:
1.9 MB (1,999,792 bytes)

Product version:
3.0.0.53

Copyright:
(c) 2008, 1&1 Internet S.A.R.L

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Language:
French (France)

Digital Signature
Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
12/21/2007 9:48:43 AM

Valid to:
1/18/2009 10:44:55 AM

Subject:
CN=1 und 1 Internet AG, OU=Secure Application Development, O=1 und 1 Internet AG, L=Montabaur, S=Rheinland-Pfalz, C=DE

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
4C3DF714B7C8357C7AD7F77A780C3FE1

File PE Metadata
Compilation timestamp:
1/24/2006 6:42:15 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
49152:AUIALuUDDow1b19AQ1RZACW4AsnLiuwhCaIqrWNOvvc:1IAtow1hKkpNrzwCaIkJvc

Entry address:
0x313E

Entry point:
81, EC, 7C, 01, 00, 00, 53, 55, 56, 33, F6, 57, 89, 74, 24, 18, BD, 38, 92, 40, 00, C6, 44, 24, 10, 20, FF, 15, 30, 70, 40, 00, 56, FF, 15, 70, 72, 40, 00, A3, D0, 43, 42, 00, 56, 8D, 44, 24, 30, 68, 60, 01, 00, 00, 50, 56, 68, F8, FC, 41, 00, FF, 15, 58, 71, 40, 00, 68, 28, 92, 40, 00, 68, 20, 3B, 42, 00, E8, 1E, 28, 00, 00, BB, 00, B4, 42, 00, 53, 68, 00, 04, 00, 00, FF, 15, B4, 70, 40, 00, E8, 64, FF, FF, FF, 85, C0, 75, 24, 68, FB, 03, 00, 00, 53, FF, 15, B0, 70, 40, 00, 68, 20, 92, 40, 00, 53, E8, 09...
 
[+]

Packer / compiler:
Nullsoft install system v2.x

Code size:
22.5 KB (23,040 bytes)

Scan connexiondirecte_setup.exe - Powered by Reason Core Security