home

handysetup_v3.exe

MD5:
3d900bc4aa40068f559cb50a632ecd73

SHA-1:
d1286170d295428a1634f46934810ecc05ee9d4d

SHA-256:
c7a5d3c0bbef49b173471ab5a8df42796d6867cac9e9763eab5e01f87b223339

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 8:06:34 PM UTC  (today)

File size:
4 MB (4,194,304 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\handysetup_v3.exe

File PE Metadata
Compilation timestamp:
1/24/2013 9:25:58 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:9aWxnR/L/nChDK54NzNLHiBbFBs6nuE5aJIT:oed/nwK54vwduOtT

Entry address:
0x1837F8

Entry point:
55, 8B, EC, 83, C4, F0, 53, 56, B8, E0, 95, 57, 00, E8, 1A, 72, E8, FF, 8B, 1D, 34, E9, 58, 00, 6A, 00, 68, B8, 38, 58, 00, E8, 48, AE, E8, FF, 85, C0, 0F, 97, C0, 84, C0, 74, 15, 6A, 30, 68, D8, 38, 58, 00, 68, E4, 38, 58, 00, 6A, 00, E8, AC, B0, E8, FF, EB, 74, 8B, 03, E8, 0F, 1C, FA, FF, 6A, 00, 8B, 03, 8B, 80, 78, 01, 00, 00, 50, E8, 43, B2, E8, FF, 8B, 03, 8B, 80, 78, 01, 00, 00, BA, EC, FF, FF, FF, 52, 50, E8, D7, B4, E8, FF, 8B, 13, 8B, 92, 78, 01, 00, 00, BE, EC, FF, FF, FF, 25, FF, FF, FB, FF, 0D...
 
[+]

Entropy:
7.5190

Developed / compiled with:
Microsoft Visual C++

Code size:
1.5 MB (1,583,616 bytes)

The file handysetup_v3.exe has been seen being distributed by the following URL.

http://cdn4.handycafe.com/.../HandySetup_v3.exe

Scan handysetup_v3.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.