download clipe fedde le grand put your hands up for detroit.exe

TECNOLAB LLC

The executable download clipe fedde le grand put your hands up for detroit.exe has been detected as malware by 1 anti-virus scanner. The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer.
Publisher:
TECNOLAB LLC  (signed and verified)

MD5:
fd08317d02c784c43c1d3081d9f64c3a

SHA-1:
895d9b9e3436c4a208b91614fa6e07150e3d850d

SHA-256:
5a98b56824b964fa9b58282d0b9e7578eee4eb028515e2774f4b987b0d4dcfcf

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
12/25/2024 4:57:12 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
16.12.28.5

File size:
75.1 KB (76,952 bytes)

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\download clipe fedde le grand put your hands up for detroit.exe

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
5/17/2015 9:00:00 PM

Valid to:
5/15/2016 8:59:59 PM

Subject:
CN=TECNOLAB LLC, O=TECNOLAB LLC, POBox=19958, STREET=16192 Coastal Highway, L=Lewes, S=Delaware, PostalCode=19958, C=US

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00AE32152028400A6F6F196B7657B4EE83

File PE Metadata
Compilation timestamp:
12/5/2009 8:50:35 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

Entry address:
0x323F

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 30, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 98, 27, 7A, 00, E8, 09, 2C, 00, 00, A3, E4, 26, 7A, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 98, DC, 79, 00, FF, 15, 58, 71, 40, 00, 68, B8, 91, 40, 00, 68, E0, 1E, 7A, 00, E8, BC, 28, 00, 00, FF, 15, B0, 70, 40, 00, BF, 00, 80, 7A, 00, 50, 57, E8, AA, 28, 00, 00...
 
[+]

Packer / compiler:
Nullsoft install system v2.x

Code size:
23 KB (23,552 bytes)