freemouseautoclickersetup.exe

FreeMouseAutoClicker

Rong Liying

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from www.ranchsendgift.com and multiple other hosts.
Publisher:
Advanced Mouse Auto Clicker ltd.   (signed by Rong Liying)

Product:
FreeMouseAutoClicker

Description:
FreeMouseAutoClicker Setup

MD5:
44350499989249a64672f5646eb49d02

SHA-1:
afd1e551d8e2140b0b09ce36856c2e2518121f7f

SHA-256:
3532e86335ce0fab54f6d8b2f87023a731d39bb1dc443f2cf86676c50f7843d7

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 9:34:04 AM UTC  (today)

File size:
467.6 KB (478,784 bytes)

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Common path:
C:\users\{user}\downloads\freemouseautoclickersetup.exe

Digital Signature
Signed by:

Authority:
StartCom Ltd.

Valid from:
4/11/2015 11:54:50 AM

Valid to:
4/11/2017 1:55:21 PM

Subject:
E=afihaha@gmail.com, CN=Rong Liying, L=Zhuhai, S=Guangdong, C=CN

Issuer:
CN=StartCom Class 2 Primary Intermediate Object CA, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL

Serial number:
1130471BCC3B4E

File PE Metadata
Compilation timestamp:
6/20/1992 5:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:oQiGsG/EtykHXc/2KJoEJHvrJ/21PZtECOxWY+iFfq7E:oQixk81HXceKqMvr0LtdEJ+uqg

Entry address:
0xA5F8

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, CE, 8A, FF, FF, E8, D5, 9C, FF, FF, E8, 64, 9F, FF, FF, E8, 07, A0, FF, FF, E8, A6, BF, FF, FF, E8, 11, E9, FF, FF, E8, 78, EA, FF, FF, 33, C0, 55, 68, C9, AC, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 92, AC, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 26, F5, FF, FF, E8, 11, F1, FF, FF, 80, 3D, 34, B2, 40, 00, 00, 74, 0C, E8, 23, F6, FF, FF, 33, C0, E8, C4, 97, FF, FF, 8D, 55, F0, 33, C0, E8, B6, C5, FF, FF, 8B, 55...
 
[+]

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
39.5 KB (40,448 bytes)

The file freemouseautoclickersetup.exe has been seen being distributed by the following 14 URLs.

http://www.ranchsendgift.com/NLTJaCSaMMvB4wC1GAjv_IcgsyFmDUVTD3BZj0Ix4fhlfCAAyPxJ5vinMLDsR7HD8tmYo9rRJY3FS2RkLL9ouTcSGbsiEe0fsEdmKn5jWoaB mhXZcDnkX4xk34gw TKxBFumQhRs9u7e_3iAYC0PdPMFhziYYjmS_0IjgMhfgaalNRk9w5QeL_rfUZ9B7ljKkZ1 Qj8g10JQxIaaCwckdg2AhqlTg==-G00AAARqczG9hiyCzbSQrw 3waAmB y__W91WWABYZ7Dx_GSQu2br7HKjxUaHP1HoLTLRPwO922vgRZVYBK92DM

http://www.ranchsendgift.com/5fDIWqXanlG1F2Qpn KuR3WmNAaO4n4tyGat53awQtiIeuIdAJPDVeGhGIQC9kKtBrs8usRm E07tdlHmLil iZuN8yfIZJko2qkaYsQCgHdaBD2ETZpUrE3CFug6DvRupszefPT5WGBYAuooDAIyVSdxNZyrVuQM5L_WG8RqyM9LPkFXwDzc2aVz8yVF1yPhnjFsU1nEmLuEwPdMIsrxsu5UoMndQ==-G00AAARqczG9hiyCzbSQrw 3waAmB y__W91WWABYZ7Dx_GSQu2br7HKjxUaHP1HoLTLRPwO922vgRZVYBK92DM

http://www.ranchsendgift.com/XWRg3LMQSJNqVLhxp97uEy_VlnSdZnSI5yH2hWQrW2ueaNTAwYVs1qrfdsl28ObkGt3RXL4WxT w9ocmJVpvmp8ZY4noFXPWu zDcvvfszkEPlZL9pZBUc52yJ ZOCNvkni0GOVhS 3K4vcDfyTVHYajSZEIC6GZIUDUYWFMk0oNs7Ym dBpzUQCpNXnl0kdH5fSp7xbOaMiGFICXJ AT_yUi2Xi5A==-G00AAARqczG9hiyCzbSQrw 3waAmB y__W91WWABYZ7Dx_GSQu2br7HKjxUaHP1HoLTLRPwO922vgRZVYBK92DM

http://www.ranchsendgift.com/2gX BHyLHYSCZCKBn47RMpawF1J31naFtBi9RlZPw5dAOF4wD4pEd0C1Li7fc2y99tbatvYU4mtVsIxh1_9DJiKtM3uYwTFXx94b_uo0yRGF6GqQ0aEn1x26 6_OkxE86it4_fopqkhPUVWj1OsUkDxhkqnxoSGFv0gtYQZ_vOyotSco WN5kJyFWuaM w21qlQB 4ynSvRNjR0wA1cM7r7Lwatbhg==-G00AAARqczG9hiyCzbSQrw 3waAmB y__W91WWABYZ7Dx_GSQu2br7HKjxUaHP1HoLTLRPwO922vgRZVYBK92DM

http://www.ranchsendgift.com/5h0Y7F82 q6VD8aQJFcM8Kgr1m5L1TUqwMs3DkV3htsyHXNgJ_Hs7VaHVSvI_E 9iYZh2g57H61v52Y8VcEWI80rOw5Nw2IQmnaQc3oHQxlcWUf0qSTnUkWEBvfdrq6 aiDh_GiaOUd _gFrZqi3byRlmXm3l RSg50UcqW6X 0ZVEXYdjMf0iMWX02EAg 6pVFOb9s5MTlj0lK1HaMqHFjaepF aQ==-G00AAARqczG9hiyCzbSQrw 3waAmB y__W91WWABYZ7Dx_GSQu2br7HKjxUaHP1HoLTLRPwO922vgRZVYBK92DM

http://www.ranchsendgift.com/WB8Ilv1s1J3NxKZGmRRl2mKE4s0wynsDqaJfoGE137SfoKaowHFKfKoTpMVq4PSVTwWnXnBaZmr aQcU6R6nwyz3DJnZWjWckJRk2mMbO9ldFVShnKzUHmTNDF_2d7ffF xoJjcPeo pshSNDxOmrjtxI1srIx 55NU6elblSL k_RKyGF0Z58pw2udj_b6CyzPEuZEkn9WJs3uEwMDQmW9_rFQkVA==-G00AAARqczG9hiyCzbSQrw 3waAmB y__W91WWABYZ7Dx_GSQu2br7HKjxUaHP1HoLTLRPwO922vgRZVYBK92DM

http://www.ranchsendgift.com/LLacDjVI9zYqCqk ZACFe7UcjnTcExysQ76G648nyey1JwtBJ19zQSg4NueRMt3_SZxWXlKKb715DBa lG7eihoZ9jIOnuoo0U3QEm13 zD9IjonV8vXYTwW2Zb3w7dGKNCTkjfrxNsWkCYN0 HucRLfFhyAhs8VEPW91q80cpYjT3YiU ux_sU8GY9YLKc_500PgkfLdlCjwMZN3ONDujUjr9shIg==-G00AAARqczG9hiyCzbSQrw 3waAmB y__W91WWABYZ7Dx_GSQu2br7HKjxUaHP1HoLTLRPwO922vgRZVYBK92DM

http://www.ranchsendgift.com/2ITVnPN6jnVjx3P4vRKyD2Xvlm6OfLLzYg0d0xc1ZxwwQgW7Lz3RpQNNEwjLVEOEygLEGl1NYKbk8mhaiCS4y0cuHvTBI2PjSlSguj7f 1gz5R1Tyimt_Xdq7GOeIfjmgb KsoerXIAzJW 7w7heHj25L8hoNePKppoffxUkE4_7x1H5YdM4aCuLYoNZ2d4tska2T7Fkn_ltwFUaJ m D6RwKXozhQ==-G00AAARqczG9hiyCzbSQrw 3waAmB y__W91WWABYZ7Dx_GSQu2br7HKjxUaHP1HoLTLRPwO922vgRZVYBK92DM

http://www.ranchsendgift.com/FO33h7_TEbG1v4o6JD2EVeYXqMRahCw4jzUJohYz8aJa0XZl0VagZTFbrnVuayicpHre5sWdRBvLN3tjTeUq f a5evnahC1XcptBHaUu6Fm1OY1uxoaI8dqXLgsipzmJLSkXxdYAdNEJDNy62NCiisrdzTpUHZUTy8hv04_QG6VM43l9Vl7GppMRgJT_0zSNgvQ0nCCKFg4uDEuePb46qJnq86z5w==-G00AAARqczG9hiyCzbSQrw 3waAmB y__W91WWABYZ7Dx_GSQu2br7HKjxUaHP1HoLTLRPwO922vgRZVYBK92DM

http://www.ranchsendgift.com/f_vcnYAwZpvb72PkeJ9_daltsvMwuF370YRgejZVmbvlpOZ6EEb3jCDRf_VE8NOQni43fAu9W3ZMpFQNeBN_acXvl4v4LgLN2 CcIPRwvZYKT_gZ14kU0A5jheKFZgmAm5BMpMu_WO6Tj sCU5kMziVKMIztZ6ZvktSQLoHClh7JnbcA YfWIQGHS1y2BQCVYoZu3Wd5J6tNntpa14A2dbqdsDxHlw==-G00AAARqczG9hiyCzbSQrw 3waAmB y__W91WWABYZ7Dx_GSQu2br7HKjxUaHP1HoLTLRPwO922vgRZVYBK92DM

http://www.capitaltagconecpt.com/R1_oBvijoXTOepoTQ fncKZR9CufcPHTFIVCkpkMvgyPZqeAygk3oahVbANkSCr223ZCXoEaUWVUzlDNb0xsBmmwVPIs72tsS5Eswx06VdsGFcgFVzac4oe8RihNAiWsUkuiDZu6N8CGr24SFnlAB_a1dnsKkY5 c6i1V1rNwUOp6L2Pi5yMplYynOLNWJ3tNiJYwah2Mzm4beP53Z_VGu9ljxxTqjZfgkLz4C4NyL5hId9M1QHc_k4dQRhtuG3EblERZCOES7dROdUff gT_lUgnLQ1bkpprTw03NN BRhZ8HFrBAxQz6e69HMC1SV9HuFnALqoT7IG3pzhK4puQdvP7dblHAvE6ApMHLju2j6toVnmRga8qCsmiti51ExBmpmnNaqT34bfKxRXDyjMQfHkK8fAA tfMPS0S91UGkmirgTBoU_vbWmYVvJn1LBBigLxChD4-G0gAAARqczE9hiyCzRKvizoYOMdC7oKCjKe3hxbvMXaMLYXyeI0VfqRQ4egfgdwuY_Fb7rXlQJHqmMDxAQ==

http://www.advanced-mouse-auto-clicker.com/.../FreeMouseAutoClickerSetup.exe

http://www.ranchsendgift.com/kTy6Xy3OXBjjxzygY91GnaUxzTKTgg4Mj0ZyPJrYtk389fEXzNJddt38aUlL6PmEGDZLSpRhfUAGObroEjlOdOtt3aOjoK MPE73MZhA5faCPp6i3teCoJg1r1aa4BQSrF oLURNBwOdtmau_He2Fkkn3IakjzQCmUT1e2iDEgJ6Q kviY cxc VS UQyCQiIH5d7ogumxmHVSWSrNiIc1z2H5acPw==-G00AAARqczG9hiyCzbSQrw 3waAmB y__W91WWABYZ7Dx_GSQu2br7HKjxUaHP1HoLTLRPwO922vgRZVYBK92DM

http://www.advanced-mouse-auto-clicker.com/.../FreeMouseAutoClicker.exe

Scan freemouseautoclickersetup.exe - Powered by Reason Core Security