gvim74-x64.110.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from lilyshare.b0.upaiyun.com.
MD5:
1acd40c636111e838e0ec20792c04ff3

SHA-1:
6ca3fe03ea8c05c23a7273edc28af3c6dfe6cfec

SHA-256:
42fd726a2c645316e851ed5f65dd5049a65e7d3fb20662cf8802f4da8e8aceb6

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/27/2024 3:51:45 AM UTC  (today)

File size:
7.8 MB (8,201,568 bytes)

File type:
Executable application (Win64 EXE)

File PE Metadata
Compilation timestamp:
8/10/2012 8:51:38 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
196608:nCSpSju9eNpJekTIZEtz35UZUs9sAQL3ghUO8FESNOzJO75Vo:nCSpCW4J5cytz3Wf9vKghLMELUVo

Entry address:
0x3D4C

Entry point:
48, 8B, C4, 48, 89, 58, 08, 48, 89, 68, 10, 48, 89, 70, 18, 48, 89, 78, 20, 41, 55, 41, 56, 41, 57, 48, 81, EC, C0, 01, 00, 00, 41, B5, 20, 33, ED, 48, 8D, 3D, 08, 58, 00, 00, 41, 8A, F5, 33, DB, FF, 15, DD, 52, 00, 00, B9, 01, 80, 00, 00, FF, 15, DA, 53, 00, 00, 33, C9, FF, 15, 72, 57, 00, 00, 8D, 4D, 08, 89, 05, 79, 20, 02, 00, E8, 38, 32, 00, 00, 21, 5C, 24, 20, 4C, 8D, 44, 24, 50, 48, 8D, 0D, 57, 59, 00, 00, 41, B9, 68, 01, 00, 00, 33, D2, 48, 89, 05, 5D, 1F, 02, 00, FF, 15, F7, 54, 00, 00, 48, 8D, 15...
 
[+]

Entropy:
7.9996  (probably packed)

Code size:
30.5 KB (31,232 bytes)

The file gvim74-x64.110.exe has been seen being distributed by the following URL.

Scan gvim74-x64.110.exe - Powered by Reason Core Security