HandySetup_v3.exe

handyCafe Installer

Ates Yazilim, Bilgisayar & Internet Teknolojileri Tic Ltd Sti

This is a self-extracting archive and installer. The file has been seen being downloaded from dc461.4shared.com.
Product:
handyCafe Installer

Version:
3.3.0.0

MD5:
bc31b9a7fd4856d7ffd1d7f06cfdafad

SHA-1:
ba33b61ec83a2a3571b38fa6668558d7717e0a3e

SHA-256:
dff95198efbc10391b42d1ef5db2390f0f711c11671155a80d0b0ccede164852

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 3:44:07 PM UTC  (today)

File size:
12.7 MB (13,290,840 bytes)

Product version:
3.3

Copyright:
Ates Yazilim, Bilgisayar & Internet Teknolojileri Tic Ltd Sti

Trademarks:
Ates Yazilim, Bilgisayar & Internet Teknolojileri Tic Ltd Sti

Original file name:
HandySetup_v3.exe

File type:
Executable application (Win32 EXE)

Language:
Turkish (Turkey)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\handysetup_v3.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
5/4/2009 8:00:00 AM

Valid to:
5/5/2010 7:59:59 AM

Subject:
CN="Ates Yazilim, Bilgisayar & Internet Teknolojileri Tic Ltd Sti", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Ates Yazilim, Bilgisayar & Internet Teknolojileri Tic Ltd Sti", L=Istanbul, S=Istanbul, C=TR

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
716F910B0E1E48997DB119F203A7C144

File PE Metadata
Compilation timestamp:
6/20/1992 6:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:TiRW8kue2eRxmN7CRRaRLGdiqGjnndO6S/4gq3fdTDBKkpRc/+eaL2u0Yw30l8it:TBSN70Ra1drbdWqvxBKkfcQLTk3W5t

Entry address:
0xFDE28

Entry point:
55, 8B, EC, 83, C4, F0, 53, 56, B8, 68, D8, 4F, 00, E8, 4A, 92, F0, FF, 8B, 35, 74, A5, 50, 00, 6A, 00, 68, CC, DE, 4F, 00, E8, 20, 9D, F0, FF, 85, C0, 0F, 97, C0, 84, C0, 74, 15, 6A, 30, 68, DC, DE, 4F, 00, 68, E4, DE, 4F, 00, 6A, 00, E8, 6C, 9F, F0, FF, EB, 5B, 8B, 06, E8, EB, 81, FA, FF, 6A, 00, 8B, 06, 8B, 40, 30, 50, E8, D6, A0, F0, FF, 6A, EC, 8B, 06, 8B, 58, 30, 53, E8, 41, 9E, F0, FF, 25, FF, FF, FB, FF, 0D, 80, 00, 00, 00, 50, 6A, EC, 53, E8, 76, A0, F0, FF, 6A, 05, 8B, 06, 8B, 40, 30, 50, E8, A9...
 
[+]

Entropy:
7.9674

Developed / compiled with:
Microsoft Visual C++

Code size:
1012 KB (1,036,288 bytes)

The file HandySetup_v3.exe has been seen being distributed by the following URL.

Scan HandySetup_v3.exe - Powered by Reason Core Security