iexif_2.3_en.exe

Opanda Studio

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.
Publisher:
Opanda Studio

Description:
Opanda IExif Setup

MD5:
4712ca867a0b75a6c1a5871e2a3b18f5

SHA-1:
762af8db69dad96d820508da28f71cd3618ba4a5

SHA-256:
7eda53ab4db43ff004aee00204e4fe8e91be50940ef1c7b2afc2296d2679902d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 3:37:29 PM UTC  (today)

File size:
2.6 MB (2,692,782 bytes)

Copyright:
Copyright(C) 2003-2007 Opanda Studio, All Rights Reserved.

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
English (United States)

Common path:
C:\users\{user}\downloads\iexif_2.3_en.exe

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:AGa13qtevd7I1st/+0rfEFdqYpMsTS1/9+se7LndlaNBMw8C06aYotbO37:du30d0fipMsO/9Ym09ZO37

Entry address:
0x98D8

Entry point:
55, 8B, EC, 83, C4, CC, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, EE, 97, FF, FF, E8, F5, A9, FF, FF, E8, 20, CC, FF, FF, E8, 67, CC, FF, FF, E8, 0A, F3, FF, FF, E8, 71, F4, FF, FF, 33, C0, 55, 68, 82, 9F, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 38, 9F, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, B0, 40, 00, E8, 9B, FE, FF, FF, E8, 26, FA, FF, FF, 8D, 55, F0, 33, C0, E8, E0, D0, FF, FF, 8B, 55, F0, B8, D4, BD, 40, 00, E8, 9F, 98, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, D4, BD, 40, 00, B2, 01, B8...
 
[+]

Entropy:
7.9967

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
36 KB (36,864 bytes)

The file iexif_2.3_en.exe has been seen being distributed by the following 22 URLs.

http://gsf-cf.softonic.com/762/af8/.../file?SD_used=0&channel=WEB&fdh=no&id_file=40312&instance=softonic_es&type=PROGRAM&Expires=1468736057&Signature=Go3IH7lJjBG6acXH5gV2MDO6XAEf2xlgG2ca-7d2OroqO9I9XaAcmh8sIuiZANb1EyM5dxByGnMnVV3cnsSFkWKfmkGuSZ2s8rgcO8y4~ueW~NcTPyd9qj3~Jw6bZWyXSgzifxPuBTryCWvorlG5S7tpgSOBchu77Qa317EvCTw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=IExif_2.3_en.exe

http://gsf-cf.softonic.com/762/af8/.../file?SD_used=0&channel=WEB&fdh=no&id_file=40312&instance=softonic_es&type=PROGRAM&Expires=1474532894&Signature=GInMWeRSQ4ZuYEc86r1a6si9tg27mqzt8JNV9jXH5cZyQdS9TJh-s6EzIVXgd2cuVbDp4WRD6qs001zHd0DVNclCbW-K4PogF2TqVM2nxkhEW1f1H3Ci3UGxCe3Wcb-bfVFRyXdJPWBBmKziITuFFKNHInTpFrUkr-hWpjSCbSI_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=IExif_2.3_en.exe

http://gsf-cf.softonic.com/762/af8/.../file?SD_used=0&channel=WEB&fdh=no&id_file=40312&instance=softonic_en&type=PROGRAM&Expires=1438343649&Signature=V-LvjWEHTtN-T11LWohI4hatFSutF3VREfynwuVTNWbG2OQ5HZLrGcjlHqJdt9Cu~q2~XgmKy6C9sibDGdy1pFQEnHozoeWcJTXyuoD2AoFaTRB5eZt1uvK8ZjbsfvOn3mO6DJ4ZZ1vk0G2JDKscTBnid4ObEiVTVrzMEWm4C4g_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=IExif_2.3_en.exe

http://gsf-cf.softonic.com/762/af8/.../file?SD_used=0&channel=WEB&fdh=no&id_file=40312&instance=softonic_es&type=PROGRAM&Expires=1477494084&Signature=Srzm4zop7hsGVk9yT8U3GwwDLabygc~AQ-TtUvlvXhL6SZCdnVx-jSxoChOR0Ao71S2uXVVcBtlpDABgP7rdiZkJ1WLXI7wE77NlRm8QTyq36CvhBtHrpAEEmwyk-jgAZ4NHRm42bcKIQPgVAmiYfW6wiWYQxDeVTC7c448FwZ4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=IExif_2.3_en.exe

http://s10034.chomikuj.pl/File.aspx?e=HSk4dNFlshxCZi-WjT_CkPQAJCGjLJGynEpgtzPratz-3FrsCk3kzvHueD3pfaKo2Np9eSwneVVVuo76zUEUy1hBsqqIjBJF1yOU63FeZXClcghOZChdKTI7EL8k3YjIk7XeqJDUXHJRWPFVmStcFg&pv=2

http://skup-laptopow.com/?wpdmdl=1109

http://www.megadlcenter.com/BISn2XWWi5XK DnRzJhlTfU8uScwev8DWJ4gMH4 CqVCwfp0TdJCL7uqwjyg0K6ZQUZUE GQBWtf hfbVHFwOTPFCH59Co36OqTu5aFEqJSg9GkndCgyfTSrlDUR8JsIJpueuVocR8xFTz6kUJc14_y4n8ekh9no 6 Z8ZRGdfb5ymHhZOAUaYAiv2aiCAdEFWj8tkOL-G0EAAETdFpMfaMgGSzoHJ7zcazo45MDhO2jggWgeOOTgIt CslzjvFSRhnvLwU2Lbc1ZflCk8mNNlnYZyhAWAQ==

http://opanda-iexif.en.softonic.com/.../6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAMCwgnP4SN6ceDryJz7PbJv3FQNYWEuR8Z8QB0MlMcx95wUP54fxnpI1lZtNtZAKJU7j4oHwdVrJLYlB9PzbbK50kpOrsjPvPNGe83pxf57QKWWoOjh7steEjs795wW3fo=

Scan iexif_2.3_en.exe - Powered by Reason Core Security