home

hr2011.exe

HDD Regenerator

Abstradrome

This is a setup and installation application. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.
Publisher:
Abstradrome   (signed by Abstradrome)

Product:
HDD Regenerator

Description:
Setup Launcher Unicode

Version:
20.11.0011

MD5:
3a78c7ebf3149273da84e3da0d1a3819

SHA-1:
09f6d340fb4345e907e01ff8cc21591f56a9443f

SHA-256:
d1f75ffcb0c068f5a0408ea2bbafa00cc758b40a4b9a6403fe40e8f9affb652c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 5:50:01 AM UTC  (today)

File size:
6.5 MB (6,791,440 bytes)

Product version:
20.11.0011

Copyright:
Copyright (C) 2008 Acresso Software Inc. and/or InstallShield Co. Inc. All Rights Reserved.

Original file name:
Setup.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\hr2011.exe

Digital Signature
Signed by:
Abstradrome

Authority:
The USERTRUST Network

Valid from:
8/2/2010 3:00:00 AM

Valid to:
8/3/2015 2:59:59 AM

Subject:
CN=Abstradrome, O=Abstradrome, STREET="Prohodchikov 16, 224", L=Moscow, S=Moscow, PostalCode=129347, C=RU

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
00D8AFFED58D5D741099FD285157733B00

File PE Metadata
Compilation timestamp:
8/5/2008 1:42:57 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
196608:/4ZRZbYUqsJTfIlB31onBeGTB1k9yXDrD:gZbYUqp6Beyz1XDrD

Entry address:
0x37339

Entry point:
55, 8B, EC, 6A, FF, 68, 50, CD, 46, 00, 68, 98, B4, 43, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, 74, B1, 46, 00, 33, D2, 8A, D4, 89, 15, F4, B7, 48, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, F0, B7, 48, 00, C1, E1, 08, 03, CA, 89, 0D, EC, B7, 48, 00, C1, E8, 10, A3, E8, B7, 48, 00, 6A, 01, E8, 8C, 27, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, C2, 00, 00, 00, 59, E8, A3, 10, 00, 00, 85, C0, 75, 08, 6A, 10, E8, B1, 00, 00, 00, 59, 33, F6, 89, 75...
 
[+]

Entropy:
7.9666

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
424 KB (434,176 bytes)

The file hr2011.exe has been seen being distributed by the following 50 URLs.

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_es&type=PROGRAM&Expires=1480628417&Signature=S9SAmNWdd~0LxIyO5jSXxxeCi1oMed-kCb7KCoauY13IuTMytrS-IKLMeGwicLS1F3hq5-9tFMA5P8h5ulPbZCaWsQj~dZm1PHR5AzLJiBAbbOL8s7NXZ18Kc~todgUs1eX2G5RKAf2M3dpxScGp0V9hHcxoLy6MFMs8-Tx1HD0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_en&type=PROGRAM&Expires=1470647940&Signature=AWizod4nki1EMfetJLtIKH4mUAAh3qwql~K9vqzU0cPMyXFQVSyW~JOulxdX9kUP8c4~a202HgqaZgvB2Vhdr3AVDAE8~2iMcYKP1n9s55xe86edwZVzqM2V6tfT0dKU2qvgZcnxNECsXRi27004P5YbWRitEm7DzaXhl-BejZM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_es&type=PROGRAM&Expires=1476658524&Signature=Dpmt4uHEzgjCktjFK1tbwIvGjhSNy6j8wlVRv1BKBNqygqe2ExbyWz1hzOk~FbxHgq2YAoDy9ClvIojTrvWe9OFfwWSStGinRt6gon4qKBXa-6W3Jab~ImzwISTupkbMSiYw6q5Dmzz5A2rn7i6WXcZvsK-ib8CgOSkGPjOSsEs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_es&type=PROGRAM&Expires=1481787821&Signature=Y2OCP93mC4Nsc428dgY1T7I0gjN4DzUXiSf1s5N9qnuWl8kKCqjfc0i1VdInmARalCX8Aqe6rshT69X9fD~v0nY8j36MjBGPU5-FL2C4c1zoI6clJR~HpYCsGrgHjFE06IJMYH7grw4jJ5bbD88WSCKGu1O~6~KSkGVFFyKZDbM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_es&type=PROGRAM&Expires=1483166989&Signature=VHl3S8~c67BJbwvTCFSKrDr5Q4SwmCzpq7RcsucIBsYALLa0qDDnxN7-E58VB7iYaeg8q9tAqRuo~cwFtBNonCYqciZPKSIqijtXqhxDMg2HKd1tp709raTWcznzSRS45fsbhu0I7UHJptXyZVxpyykVWw0rlMFyA-qyiz6BL50_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_en&type=PROGRAM&Expires=1486455622&Signature=M7nWuVHMUsoyI1-fGbl43cMvvfRoS674ee9xqP5X64voYWtODonY1osktEXBUlk1Tqzxy8c4KpYwY1FwlQjtGoaImAFvKy4jgJUV7mdtx2vILgmGoF9VtjdjWE6zMbC8a3d0NHbFbb60RKdhwje6GuMNAcz6kQCtt8WOd35BL7k_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_en&type=PROGRAM&Expires=1479343878&Signature=Pf3Xwdlt~goZ17jwxnsIdM43NSAYjrZIhVDXrebKmvKh8-aY4da~g~XcG7-4aIq3lAwWJBF59a3u1izAVWBUtLhj2Bb1tpkAAN6l2wVYMrX7oIA2igryxBUuV5YUmHL-DO3PbDVtCNAiPlu1aYCKEOCudGlkHQNjRzNar6MARzM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_es&type=PROGRAM&Expires=1470021505&Signature=GC6QxlRhTdpKAA6zxQoXnnLugX0MsVvayX1-JXtwtfr1ZPa6iCrrL5M2wc0Ydbt-6NfgquWFIkEhMIahR2Rx1IarFbKDuPHCdYVdfah9wHusFT2MF96rSkarJBnym9s7S1CbKtBlGvEWObCFCnH-Z7zXqLP6rFr1iWbm2NdkdbU_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_en&type=PROGRAM&Expires=1463169593&Signature=SD4QgdO7wasgu644Pf-BHp3NHzQRFPoUcL08mp112wlXBgRddpOU-w16OJLJyW1tvp7sZyTtJwEtSorrxOesvQZlFJZ1xYIz1fjtFtgxHAjbJRHuKpr2AYaGjoGw0~~H7LvoWUYpezcb87X8fAZd2fXzJE18E2ufUvjBhLZhQZE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_es&type=PROGRAM&Expires=1477806685&Signature=WMYEExLZXGbXSF5LUk-TDhJwo4pbwxeDHFVCYCnFAYHrL6GOuywrBAYeYNoP0FqThmglQknreR2oDDGGUVTu44Q5vnBUTIs5gmiX8z07VcAL-kghEzkxT6O8boXoFuIyoBQuQpm4e6y5VuuugP3MhpBNrllWERDZq4JnayDpYsY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_en&type=PROGRAM&Expires=1475913723&Signature=QfGAtLdshfeRgir23OyI1gIpszCtj-sG0dnhHP9lghOy0XU7gsVx3xA9d3Cjfvfd6HlaBjC~TGqfltVvTrIkouoUHmZbb5CGGdoW0-KRB0wEcInCkQeP~ByvTKpvIe0mJC-57TJ7JyoZcQcDJxZb2t0iObcAG-jNJ3obqicgjyk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_en&type=PROGRAM&Expires=1465519266&Signature=XChET2aL1De~jBusfhgBSVQ8no3aERtty32spSPpSFMMUJt~Ve07xfoyEy4kG7cWcz7jsdrQ48Ym5hqDYBBEj-NQMhOgj7kw~eXePCIj4O3o286JKYq5qgfAUPWkuz1bZKf5-hsRwLGiH2oFMOdm75aEEHY8~WjagxhjBB9Pc3M_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_es&type=PROGRAM&Expires=1476409439&Signature=bHyV0cAzNyZnQxBrV69~90aGuLyd6a7C6NbpJ0HI32a8YsF4TdBlc6VjXmR6NbCr00A21B4i88KEWR1lqaNZjZToHIseV7uScyZUJ~lQyCS4v6cjRCrGtxRGAVMPBt1LOYUVljlngU71c6X1xMX~g-82gAqbcvsKma4ZtHhwjgk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_es&type=PROGRAM&Expires=1476693909&Signature=ecAI5gILxoj4KzTTeh-iva3WxnXUaNrUEyHhsVOyD5fPxrjJUrsvId8kM2u1gzpO-kqq87n6Dh0gpfvHwwy5TCDkv7FxhXLIIcr2XZXYDg5etWoBCHrVjk8aIa4MTpG~YPmMeUfNFkMGTZn59Io4k42FtVjkuqIzqKgQ5VVi2AY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_es&type=PROGRAM&Expires=1476147592&Signature=Vrqd4amQ3ss5xsQfElwtqwxVyGNMvBiKhZRPrEX154J2-zj994b-00J-5YVFAYU0ngX2dKDCBwZkG88HbrtWPaakbde10UaUmQ2wBcbGsBnPwBnfQ7Sm5~vdk0i9x67SuhlHrl3~NBRykDxMSaS2RtsQAOnRVp53RkbuEN01uxk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_es&type=PROGRAM&Expires=1474977990&Signature=VaatBYIDVsV1o-1FSllxdwG1VgvSHsk~kPjoWmefcF-y-rtNWpSB~S16L1LW9bs3TKZQKaoQo4FzEOHEmHdKZM2ZD~VH4J~MApwsnV2fPNORSlKc~3cODxmtcUXQCcTXaayGgv2EHxXwlmlVCrYCbMrWGgvnofCv6Qk5rdnWfVc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_en&type=PROGRAM&Expires=1477298130&Signature=BzM5ThCHwOyFeZiPCi5RtyrtHEjgnX-HvfC4tEvXsRM6Yb0LslFjbP3wsFA2aZoN~yYwiACf4JMAhICiKrDczmWGNbSsEK7yCW2EZ76LqGiFkyMr1A03WwswYMB7NKTbuhepVPLspb8XkeKItHDXu1jL6b-vz5QIRAF4RBthPhQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_en&type=PROGRAM&Expires=1474597741&Signature=ZF2Ro1eag5FRdZ48VM~AMYSeN7orefdAs5z5bk-Ejc1VLyehxerd~n1cC8aDQdvT0HYDeU7UrFLK-VX2v0lzhRJ04g-OEBDGDDLWzxRu5kVgfynHnGVi2f3jiymDMOZpdmFWxIRVVx7QnJHYlT5Mp~M7tp7CI92mw~CZMYQQS8g_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_en&type=PROGRAM&Expires=1478644138&Signature=MQXjOv6mj0glEOEHSA0EoDzEJkaf-UuX3lTbIoJe4QaUOvBJx5F5jsuo2Mbfrzgv47sV9l7d1jXX8ANTbmdUX2yuQ27etTRfnVIiCHKi0yeO-~T7~tYd23KXuBrVgFZ8pz5nxVB4P6EYxSdlNdYUZvfBzQVG5Sot6UXUtWXOayQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_es&type=PROGRAM&Expires=1476456744&Signature=KvrdXnYTRAJVXhMWr1fbcEDEHqEUeTgXHO7GNldWqrKX3wzVQyYiHWRtJ-qsR7BoxnGFMfGiKLKUCU6lhcLpjObGH-MSdCazdf7lsGIcxo9bNQr7czwNCUmKoqE5uojcSKzinaSdRlgfEbicF-hlfuuPpxteOhuznSpP5pK3CFg_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_it&type=PROGRAM&Expires=1449710140&Signature=YBxf-A273010nKDNW4qA-Uf4xDK4M5kn9fkXLGcuMlks65KrY00dGEQC7uvSQPtOwBZuuAz7BxqjPljfl95nJjxMsZYN5Ds0bifKD7UA5~GwdIrR6MuJCu1cUT5j2XixOryf3lZVj2FzZyErcnDfvNMw846T6npXkn5xIDHOeDs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_es&type=PROGRAM&Expires=1476340362&Signature=Dqh6Yvnii7kxu9RTm7ziFwxoIZC9A9UhJwWq96V34p1~DL~LKLF~2lW1uZ8GWGcml2Hj0osSH9YAcDNQvr-xsjJTneFuY83WC9PaZNBAldtQ6Y6YwnCyEll9HrnXlEsZkKVDK5SrnO4RQ164hBUpzmCfRVc1qO712GAd-3V3Ky8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_en&type=PROGRAM&Expires=1434780602&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=HSwamS86VRVYeNgzqWCDt0O8d2lMYDLOyl8f9MAYA2bQkHj-RdtGy1TumHO6pRnxEiaH6l1dzSXi-O5m~ad~kNkjAfkL7NALcz92AQ5hCtc~Szur-VnPsZfLxQOm74dtHLykKZ7Hv3O0xUl1ckyzu0DGPCM7kJSPZPGu~7UPYw0_&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_en&type=PROGRAM&Expires=1444587944&Signature=P4-Hq9h39ad9-33EYu9nD1WOC9F4yK336yYOHY3viLLR85oSpRhz7-f9sMFxAXQXsPWFgA1qXHXRr6IOlaTQghnNko~njcxFrsaX83Y6WLfOUtIceFgXDQv5PPgEFBEBZzXyE--HPKCz9SLtqM5~qnlOJcmvuG81KVdj~FbQK3c_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_en&type=PROGRAM&Expires=1478519557&Signature=G7XnmADPBAQsVyl4Pf6r5RdX92g6m5AEbYPlj3J6fuOm6wlLwaC~D8oMhVNcYEn3WGNvOrZhR8B67wdP4H6gooDGIB72gGdRnxATnWsis7m4--5NOcc2T1rVUTjc4Z7ZC2ljIfx9oWcMlz69DiKvaZNURzhwkiibs99HdFda~SQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_es&type=PROGRAM&Expires=1461808844&Signature=Qlk5ptvxO5vM34v3BIdXFp~-lTVLsuuSuunGrId9lNfxzT7X83JATSSVqcF4Zq1tWxJdRrabGOd8n2cz8JZ6zmy8U1HJ969hW4fvycgaXQmdSEHPwbGHrGjfsE8orHGUXPmFzCiXPZ752~G5sdmhgYKuvPj36mkPIU-rF8dHusU_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_es&type=PROGRAM&Expires=1482208729&Signature=Bg~j~J~80asKo3FFCxB8IfSLzetwRYv6dZLqfYmhZP5GM5j8Nn2qCjkJu7q1pCzNz5wUhAsFzW7BI-xbI5iEmxausTzI1HZcM8pRqsoHGNX3nlCykkc-Japw4MijRIQDTWv70NR9fGoyoh~QRAlLfJvva32WGnpQSmR6RQHLbTM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_es&type=PROGRAM&Expires=1477893051&Signature=fI45CzQ5U1U20hvviKLr4WDuBYeJW8L490Ou8XdP6xVAbG2N1pf3EEDQLNpWY8MeZDpEmGe7kN6B8xRDpxq1OFLddN~KmzTFg5RHcfS4ZtUgNEaTDllR8d4x0uk9AA0yUhEaIauAPMDR47ZondHqaTSIbByfTDxUE4l9sW7syA4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_es&type=PROGRAM&Expires=1422433608&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=NpSAS1irxk18S9q87o~MV987Roo88BQVXCUYf-eNViwjk-PM5tIY9USU3CxgulDSKYPXDG5ROZ6Yi4KG5rZQoWvOm4cF8ESjMvgasJVlGdcbxCmseZohyl1EKqPiH4c562dhR8h4CFAEfkfADIaXjZpE3ReMm~-04BWTI6lJbh0_&filename=hr2011.exe

http://gsf-cf.softonic.com/09f/6d3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=28853&instance=softonic_es&type=PROGRAM&Expires=1478765065&Signature=bGjTPXBGx0U~McQPD~~GvURxPMdjrTSwgGPbIiC7VWsrzOKdiKqRYkis-dkHfzB8HWTsRc7CPVPStMEyMrulhrM7gtbYc1NLO7U~on0mj~EyAq8qYetU2JCaTu3LW30CQpcufpWWBT5v69B2xnAOrDmibK04oSnVVRcqlAWI0ec_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=hr2011.exe

Latest 30 of 99 download URLs

Scan hr2011.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.