home

gramatyka_6.exe

Edgard

This is a setup program which is used to install the application. The file has been seen being downloaded from jezykiobce.net.
Publisher:
Edgard

Version:
6.0.0.140

MD5:
8ebf00b9bcf9019e7792d077587aacec

SHA-1:
0b3b7a3a31fc7829b2dfab6575b2160d91ce29e6

SHA-256:
cd408927e919037f669d45071924439fd0a12b52480e9b44bee2eaf01559c68d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/16/2024 2:51:53 PM UTC  (today)

File size:
6.4 MB (6,663,680 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Language:
Polish (Poland)

File PE Metadata
Compilation timestamp:
12/14/2012 3:00:13 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:pCKjDjm8UVOGQTFZ/T/CKmL3S4y5GeNxIH0xUp2i2i2a2K2i2i2a2:pC8YVAT6KcE5GOxIUxUp2i2i2a2K2i2r

Entry address:
0x286564

Entry point:
55, 8B, EC, B9, 05, 00, 00, 00, 6A, 00, 6A, 00, 49, 75, F9, 53, B8, 3C, 43, 68, 00, E8, D6, 1C, D8, FF, 33, C0, 55, 68, E2, 6A, 68, 00, 64, FF, 30, 64, 89, 20, 68, F0, 6A, 68, 00, 6A, 00, 6A, 00, E8, 7A, 1F, D8, FF, E8, 8D, 20, D8, FF, 3D, B7, 00, 00, 00, 75, 07, 33, C0, E8, 4B, F4, D7, FF, A1, 80, 4E, 69, 00, 8B, 00, E8, 83, 3B, DF, FF, 3D, E8, 03, 00, 00, 7D, 2F, 6A, 30, 68, 00, 6B, 68, 00, 68, 0C, 6B, 68, 00, A1, 28, 4B, 69, 00, 8B, 00, 8B, 40, 30, 50, E8, 40, 2B, D8, FF, A1, 28, 4B, 69, 00, 8B, 00, E8...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
2.5 MB (2,644,992 bytes)

The file gramatyka_6.exe has been seen being distributed by the following URL.

http://jezykiobce.net/.../Gramatyka_6.exe

Scan gramatyka_6.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.