edd_dump.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from www.grc.com.
MD5:
f9408f5fdfc5fb03702e77c8f15c5d52

SHA-1:
bc1a5bdfe9301355130a3c005727d91f16aa64c0

SHA-256:
3332a143846260f30da42f2ad87b6bd9324fccfc0f74bc440e0ca666b08a336c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/5/2024 8:30:06 PM UTC  (today)

File size:
6 KB (6,154 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\edd_dump.exe

File PE Metadata
Compilation timestamp:
11/24/1972 9:24:20 PM

OS version:
1566.52108

OS bitness:
Win64

.NET CLR dependent:
Yes

CTPH (ssdeep):
192:Z0UKdWf3ajvJamMw7eLkroLY/+Tb2tzVMW:+UGla5wiQ6Y/+3YzVh

Entry point:
4D, 5A, 0A, 00, 0D, 00, 00, 00, 04, 00, 74, 05, FF, FF, EB, 06, 40, 00, FF, FF, 00, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 1E, 06, 8C, CB, BA, 83, 01, 03, DA, FC, 33, F6, 33, FF, 4B, 8E, DB, 8D, 87, 67, 05, 8E, C0, B9, 08, 00, F3, A5, 4A, 75, EB, 8E, C3, 8E, D8, 33, FF, BE, 31, 00, 05, 72, 01, 0E, 50, 51, 8C, C8, CB, F2, E4, F5, D4, D2, AE, D7, 01, D4, 99, FD, 83, DF, BD, B6...
 
[+]

Entropy:
7.9059  (probably packed)

The file edd_dump.exe has been seen being distributed by the following URL.

Scan edd_dump.exe - Powered by Reason Core Security