hercpc.exe

This is a setup program which is used to install the application.
MD5:
d844bdbb45841bf2933c29992eaa6eaf

SHA-1:
7dbd917f3b84d88fb0caede2cf0f0a4549236805

SHA-256:
1c45a4169af959a66276975e28a8efdba220aa5f68252f1ef216a410a42bd15c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 6:44:14 PM UTC  (today)

File size:
4.1 MB (4,279,980 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\hercpc.exe

File PE Metadata
Compilation timestamp:
10/11/1996 11:20:01 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
4.20

CTPH (ssdeep):
98304:Se1bEzPqUR3GDH89pJ1II338ChkT5busmINK2ILY:SAbEzPqUL9pbhsu7U

Entry address:
0x2B9B

Entry point:
FF, 15, 00, 82, 40, 00, B1, 22, 38, 08, 74, 02, B1, 20, 40, 80, 38, 00, 74, 10, 38, 08, 74, 06, 40, 80, 38, 00, 75, F6, 80, 38, 00, 74, 01, 40, 33, C9, 51, 50, 51, 51, FF, 15, 04, 82, 40, 00, 50, E8, 1D, FC, FF, FF, C3, 55, 8B, EC, 83, EC, 28, 56, 8B, 45, 08, 33, F6, 89, 45, E8, 89, 75, E0, 89, 75, EC, C7, 45, D8, 03, 00, 00, 00, C7, 45, DC, 29, 2C, 40, 00, C7, 45, E4, 04, 00, 00, 00, 68, 00, 7F, 00, 00, 56, FF, 15, 10, 83, 40, 00, 89, 45, F0, 89, 75, F4, 8D, 45, D8, 89, 75, F8, C7, 45, FC, F8, 67, 40, 00...
 
[+]

Entropy:
7.9956

Packer / compiler:
WinZip, 0x32-bit SFX v6.x module

Code size:
13 KB (13,312 bytes)

The file hercpc.exe has been seen being distributed by the following 12 URLs.

&onid=2102&oid=3001-2102_4-10014026&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=games/kids&topicbrcrm=&pid=877375&mfgid=50476&merid=50476&ctype=dm&cval=NONE&devicetype=<!--esidesktop&pguid=b474f24d9d464d5bc9a452ee&viewguid=gXn6EpMSgdNz0Slxdr71upgSTdQggLzJtvEn&destUrl=http://files.downloadnow.com/s/software/87/73/.../hercpc.exe

http://games.softpedia.com/dyn-postdownload.php/4679c476f129707ccd0cf46f0ef79392/57e81414/9d8a/.../1?tsf=0

&onid=2102&oid=3001-2102_4-10014026&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=games/kids&topicbrcrm=&pid=877375&mfgid=50476&merid=50476&ctype=dm&cval=NONE&devicetype=desktop&pguid=c9e9cc0b2fc0b975b23d6c41&viewguid=ewWhsmt7ElMHdTWrXVvX67gcaL7GlZq@o59j&destUrl=http://files.downloadnow.com/s/software/87/73/.../hercpc.exe

&onid=2102&oid=3001-2102_4-10014026&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=games/kids&topicbrcrm=&pid=877375&mfgid=50476&merid=50476&ctype=dm&cval=NONE&devicetype=desktop&pguid=7d56403f23b6148eb88586cb&viewguid=dbK-ApFJefoFAXBoc2d4mOtNjNvlbvdwWYbw&destUrl=http://files.downloadnow.com/s/software/87/73/.../hercpc.exe

&onid=2102&oid=3001-2102_4-10014026&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=games/kids&topicbrcrm=&pid=877375&mfgid=50476&merid=50476&ctype=dm&cval=SPIGOTWIN&devicetype=desktop&pguid=f50a89e8812843b2e4f4e0d8&viewguid=W9Qgp7hrig6lzesgIrKsFq3QxhB2RILH2UZo&destUrl=http://software-files-a.cnet.com/s/software/87/73/.../hercpc.exe

temp:hercpc.exe

Scan hercpc.exe - Powered by Reason Core Security