heb_d-f.exe

Calendar

This is a setup program which is used to install the application. The file has been seen being downloaded from dl.dropbox.com.
Product:
Calendar

Version:
1.0.0.0

MD5:
c11a4ed51d49156fc617d2a7fb71c93f

SHA-1:
8ddf0f6eb53f75b8f79338ae77326a3daa3aacca

SHA-256:
598050b33e6db2a14b24699255762327bc21a32416e5399881d0ebe6f69529e7

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 1:32:54 PM UTC  (today)

File size:
1.6 MB (1,647,616 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2012

Original file name:
Calendar.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\heb_d-f.exe

File PE Metadata
Compilation timestamp:
1/11/2013 4:14:26 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
12288:bp5A2Xwv6rrRRRIp+VddjbZkoP0hu9JhTMZMAu:VGsX/RM+VDVkOQuXhuMAu

Entry address:
0x193BDE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 01, 00, 10, 00, 00, 00, 18, 00, 00, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 01, 00, 01, 00, 00, 00, 30, 00, 00, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 48, 00, 00, 00, 58, 40, 19, 00, B0, 02, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, B0, 02, 34, 00, 00, 00...
 
[+]

Entropy:
7.9244

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
1.6 MB (1,645,568 bytes)

The file heb_d-f.exe has been seen being distributed by the following URL.

Scan heb_d-f.exe - Powered by Reason Core Security