getsysteminfo6.1.exe

Kaspersky Get System Info

Kaspersky Lab

This is a setup program which is used to install the application. The file has been seen being downloaded from www.google.com and multiple other hosts.
Publisher:
AO Kaspersky Lab  (signed by Kaspersky Lab)

Product:
Kaspersky Get System Info

Version:
6.1.0.51

MD5:
b1274adf56907d8d1b85985d21576d2f

SHA-1:
e5c1e0259491a12eeb6e030987893632b23b9889

SHA-256:
d2103252b168b492a564b1f361921cbec6b03453ed139c0b9f810387d9428e26

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 4:37:40 PM UTC  (today)

File size:
10.5 MB (11,011,656 bytes)

Product version:
6.1.0.51

Copyright:
© 2016 AO Kaspersky Lab. All Rights Reserved.

Trademarks:
Registered trademarks and service marks are the property of their respective owners

Original file name:
GSI.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\getsysteminfo6.1.exe

Digital Signature
Signed by:

Authority:
DigiCert Inc

Valid from:
10/7/2015 5:00:00 PM

Valid to:
10/24/2018 5:00:00 AM

Subject:
CN=Kaspersky Lab, O=Kaspersky Lab, L=Moscow, S=Moscow City, C=RU

Issuer:
CN=DigiCert High Assurance Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0F668FB0F0F002B774C7DDBD769EE5B1

File PE Metadata
Compilation timestamp:
3/1/2016 4:46:09 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
196608:8Umefv7EYqMPwUH+w2QT4e26pVCk3HcIFgUwWWpGaz7Fd7j/k6:8Um8gfWwY0OVCkMIFg3r7bvc

Entry address:
0x37EF

Entry point:
E8, DB, 32, 00, 00, E9, 89, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, 8B, 54, 24, 0C, 8B, 4C, 24, 04, 85, D2, 74, 69, 33, C0, 8A, 44, 24, 08, 84, C0, 75, 16, 81, FA, 80, 00, 00, 00, 72, 0E, 83, 3D, 98, 4E, 41, 00, 00, 74, 05, E9, 3E, 33, 00, 00, 57, 8B, F9, 83, FA, 04, 72, 31, F7, D9, 83, E1, 03, 74, 0C, 2B, D1, 88, 07, 83, C7, 01, 83, E9, 01, 75, F6, 8B, C8, C1, E0, 08, 03, C1, 8B, C8, C1, E0, 10, 03, C1, 8B, CA, 83, E2, 03, C1, E9, 02, 74, 06, F3, AB, 85, D2, 74, 0A, 88, 07, 83, C7, 01, 83, EA, 01, 75, F6...
 
[+]

Entropy:
7.7356  (probably packed)

Code size:
45 KB (46,080 bytes)

The file getsysteminfo6.1.exe has been seen being distributed by the following 5 URLs.

https://www.google.com/url?hl=es&q=https://.../gsi&source=gmail&ust=1482616578359000&usg=AFQjCNFbtKtDCJ5tBnWzyIOhhK4Ii2mxJg

https://www.google.com/url?hl=en&q=http://media.kaspersky.com/utilities/.../GetSystemInfo6.1.exe&source=gmail&ust=1463758357669000&usg=AFQjCNH4vLf0fvLgIwHaAO7s-Ph6Ovf3nQ

https://www.google.com/url?hl=es&q=http://media.kaspersky.com/utilities/.../GetSystemInfo6.1.exe&source=gmail&ust=1471519982111000&usg=AFQjCNHA9IYmHg0d6gSZ3btBW3a9snlAxQ

https://www.google.com/url?hl=pt-BR&q=http://media.kaspersky.com/utilities/.../GetSystemInfo6.1.exe&source=gmail&ust=1469654193319000&usg=AFQjCNEl0OLs87jL9ETzMIfWTNkrAReZLQ