eztalks-launcher.exe

EZTalks Launcher

CUMeeting Inc

Publisher:
CUMeeting Inc  (signed and verified)

Product:
EZTalks Launcher

Version:
1, 1, 0, 7

MD5:
9d3e6188fa2f71fdae43d37c2656b3c4

SHA-1:
340723df31066b8f0cdb617e3c5f8ccf0553a87d

SHA-256:
c250edc15a9f8ca91aebfaaf3a6ccfd67153f0eda754d3e4fc6ba94df741648d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 1:42:57 PM UTC  (today)

File size:
229.8 KB (235,320 bytes)

Product version:
1, 1, 0, 7

Copyright:
Copyright (C) 2014

Original file name:
extalks-Launcher.exe

File type:
Executable application (Win32 EXE)

Language:
English

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
8/7/2014 5:00:00 AM

Valid to:
8/8/2015 4:59:59 AM

Subject:
CN=CUMeeting Inc, OU=CUMeeting Inc, O=CUMeeting Inc, L=Shenzhen, S=Guangdong, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
4B039E566EBA7FFF5CC099FA8D2E2008

File PE Metadata
Compilation timestamp:
6/2/2015 1:44:28 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
3072:WHvWBxhNOYW40gaYnErd0A82co0sPg5FSJVLhI7KrO19h77iwwww95xChw8fIqH8:WHeNm40dYnEpc2Fs6c7KrOV7RfIqoNIs

Entry address:
0x1F4C6

Entry point:
E8, CD, 05, 00, 00, E9, 37, FD, FF, FF, FF, 25, E0, 51, 42, 00, FF, 25, E4, 51, 42, 00, FF, 25, E8, 51, 42, 00, FF, 25, EC, 51, 42, 00, FF, 25, F0, 51, 42, 00, FF, 25, F4, 51, 42, 00, FF, 25, F8, 51, 42, 00, FF, 25, FC, 51, 42, 00, FF, 25, 00, 52, 42, 00, FF, 25, 04, 52, 42, 00, FF, 25, 08, 52, 42, 00, FF, 25, 0C, 52, 42, 00, FF, 25, 10, 52, 42, 00, FF, 25, 14, 52, 42, 00, FF, 25, 18, 52, 42, 00, FF, 25, 1C, 52, 42, 00, FF, 25, 20, 52, 42, 00, FF, 25, 24, 52, 42, 00, FF, 25, 28, 52, 42, 00, FF, 25, 2C, 52...
 
[+]

Entropy:
6.4452

Code size:
141.5 KB (144,896 bytes)

The file eztalks-launcher.exe has been seen being distributed by the following 6 URLs.

https://dw.uptodown.com/dwn/G8DgWshx5ogVuAwUo0hTbysg4LygDcCC8-YUde9rHN2gJWRkLWh4bHrWp117wxt4ZQJDz-dj0PETKU_8lp8CVCdkJ_3rDsfYBYBlfq33pjHG45WP-_tvzoMPwxe3WXqz/EZIneMDiE-cx67KtX5uHcySRkaeMJsmcuiwPopAnTwCdaRv2Pa-Pf66Xye2MRAsamcFqFhUSu6OXjdZmn6zEUAMkkWBqMzB2IlZDAVaeiWva0i6103vbcp7x9wewxw1R/pkL5_o_u44h9xlIJfG5o9Si7fF7eG6GiWKj6dQ3PXlOm1KQZCM8FQmWsUn_2D-NbF1742SA5gz_dxwManO8XS9yo8rzhFjxlK_ygWhvLbLNWYpgTLZPt4P0B1GORfsMS/.../

http://i_mp3-es_eztalks-2-2-0.feziuqotarea.com/crawled_soft/2/3/.../233610-679478-eztalks.exe

Scan eztalks-launcher.exe - Powered by Reason Core Security