home

handysetup_v3.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from cdn4.handycafe.com.
MD5:
4c7fa983f725c6f0df25345f52faf054

SHA-1:
10fd7fef3b51e29d7a21b54c0c1175eeff3e3d1d

SHA-256:
37559f895eb13e4e162eb014af362a28f6cce7d09cf6b64541bc0ee3bfff9fbc

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 7:41:10 PM UTC  (today)

File size:
3.7 MB (3,897,120 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\handysetup_v3.exe

File PE Metadata
Compilation timestamp:
1/24/2013 2:25:58 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:9oRtYgEn4/RISzgXv/XH2HLGQTYuF98HAK+0JPQIGh1amfKvRv49+YKONLHiXCqF:9aWxnR/L/nChDK54NzNLHiBbFBs6nuEX

Entry address:
0x1837F8

Entry point:
55, 8B, EC, 83, C4, F0, 53, 56, B8, E0, 95, 57, 00, E8, 1A, 72, E8, FF, 8B, 1D, 34, E9, 58, 00, 6A, 00, 68, B8, 38, 58, 00, E8, 48, AE, E8, FF, 85, C0, 0F, 97, C0, 84, C0, 74, 15, 6A, 30, 68, D8, 38, 58, 00, 68, E4, 38, 58, 00, 6A, 00, E8, AC, B0, E8, FF, EB, 74, 8B, 03, E8, 0F, 1C, FA, FF, 6A, 00, 8B, 03, 8B, 80, 78, 01, 00, 00, 50, E8, 43, B2, E8, FF, 8B, 03, 8B, 80, 78, 01, 00, 00, BA, EC, FF, FF, FF, 52, 50, E8, D7, B4, E8, FF, 8B, 13, 8B, 92, 78, 01, 00, 00, BE, EC, FF, FF, FF, 25, FF, FF, FB, FF, 0D...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
1.5 MB (1,583,616 bytes)

The file handysetup_v3.exe has been seen being distributed by the following URL.

http://cdn4.handycafe.com/.../HandySetup_v3.exe

Scan handysetup_v3.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.