home

exdns.exe

ExtraTools

This is a setup and installation application. The file has been seen being downloaded from dc250.4shared.com.
Publisher:
ExtraTools

Description:
ExtraDNS Setup

Version:
1.04

MD5:
aa8375003b8b571debc4d0a504f8c9f2

SHA-1:
0ac10f5aa17428342a7f845e5c5ab5b4f6909a4a

SHA-256:
33325c3d46bfbaf555c40a5ef726079c9eae5c6100f4231caf7c24c690f628be

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 1:19:48 PM UTC  (today)

File size:
4.8 MB (5,024,883 bytes)

Copyright:
1999 - 2000 Extratools

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\exdns.exe

File PE Metadata
Compilation timestamp:
5/21/1999 10:48:48 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:h84Un+ML1y8camKdKvgnlj64ne53Mulpe1Y5S7KfPL4ybFZTys6FJsIVF0:h84++izkKd9nxneCSe1Y5SUz4I3TajF0

Entry address:
0x21AF

Entry point:
60, C6, C7, 57, 35, 59, BE, 8F, 92, 69, EF, 5F, AC, 86, BD, 68, 0D, 57, DB, 00, 40, 8D, 1D, A5, AB, 2A, 42, 69, F5, 63, 14, 15, E0, 2C, F3, 0F, AF, D5, 0F, AF, CF, 8A, DA, 48, 21, ED, 77, 02, 0C, 83, E8, 4F, 00, 00, 00, 86, FE, 0F, AF, D3, F7, C1, D0, 7A, C0, ED, 81, FE, F7, 7B, 00, 00, 71, 04, F6, C5, B6, F3, 75, 05, 0F, B6, F2, 8B, ED, 85, EE, 8A, FC, 4A, 8D, 05, 77, 90, 00, 00, FF, C5, 35, B2, 57, 00, 00, 81, FE, E8, F8, 00, 00, 75, 05, C6, C2, 43, 84, F6, 03, F8, 0B, DE, 69, EB, B1, C8, 56, 9A, 39, C6...
 
[+]

Code size:
8.5 KB (8,704 bytes)

The file exdns.exe has been seen being distributed by the following URL.

http://dc250.4shared.com/download/.../exdns.exe

Scan exdns.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.