firense.exe

Firense

Ricardo A. Bovier

This is a setup program which is used to install the application. The file has been seen being downloaded from mega.nz and multiple other hosts.
Publisher:
Ricardo A. Bovier

Product:
Firense

Version:
1.02

MD5:
56236d1a6914dd83d8e2540e7ce6fea8

SHA-1:
165cd836f290f1f3ecd665df114accf1f6506455

SHA-256:
0f8a54f224160152de9213e5f96f532bb1ef5bc565fede1a43dc576191d6f717

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 5:57:10 PM UTC  (today)

File size:
80 KB (81,920 bytes)

Product version:
1.02

Copyright:
Creative Commons: Atribución - No comercial - Sin obras derivadas.

Original file name:
Firense3.exe

File type:
Executable application (Win32 EXE)

Language:
Spanish

Common path:
C:\users\{user}\downloads\firense.exe

File PE Metadata
Compilation timestamp:
12/18/2010 1:00:42 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
768:b9bqnF36/GeiY63ThjT9xqBjT9xqdEsYyGqOCP7RjAAP2G+DUG82YbR:Qlj261jTv0jTvi1K42PUG82CR

Entry address:
0x1340

Entry point:
68, A8, 24, 40, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 4C, 2D, 82, 0A, 8B, 6F, CF, 49, 8E, 2A, 8E, 7F, BE, 5D, 4B, 32, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 50, 72, 6F, 79, 65, 63, 74, 6F, 31, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, FF, CC, 31, 00, 0F, F6, 19, 36, 8B, 3E, 33, 19, 44, A1, 1C, 93, 6B, 4C, ED, 58, 4D, F2, F9, D8, F4, 66, BE, 11, 42, A4, C2, B8, 24, FF, 83, 54, 4D, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00...
 
[+]

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
68 KB (69,632 bytes)

The file firense.exe has been seen being distributed by the following 3 URLs.

https://mega.nz/persistent/.../aB8ihRja

Scan firense.exe - Powered by Reason Core Security