» instagiffer-1-75.exe
Overview
Analysis
File Details
Downloads (6)

instagiffer-1-75.exe

Instagiffer

Justin Todd

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from www.techspot.com and multiple other hosts.

File name:

Publisher:

Justin Todd

Product:

Instagiffer

Description:

Instagiffer Setup

MD5:

d1a272788e133462a47a517d1729283c

SHA-1:

0213df349429fa1ad4e5ba33df37281122ae26ac

SHA-256:

a83ffb2cecb04428bbb725d024dd9721980dde6a82640a689a5a36174cd5ac02

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

12/27/2024 5:18:14 AM UTC (today)

File size:

23 MB (24,135,882 bytes)

Product version:

1.75

File type:

Executable application (Win32 EXE)

Installer:

Inno Setup

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\programs\instagiffer-1-75.exe

File PE Metadata

Compilation timestamp:

6/20/1992 1:22:17 AM

OS version:

1.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

393216:gtUvWPdjI1hAyQ7m02XQ7iFGv/U3vGvAs8NhbzLoWu6t3KZqkIWhUUtiHU06PeCl:gUu1j8uyQ7v2+iGv/UfGvPCpI16VKZqW

Entry address:

0xA5F8

Entry point:

55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, CE, 8A, FF, FF, E8, D5, 9C, FF, FF, E8, 64, 9F, FF, FF, E8, 07, A0, FF, FF, E8, A6, BF, FF, FF, E8, 11, E9, FF, FF, E8, 78, EA, FF, FF, 33, C0, 55, 68, C9, AC, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 92, AC, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 26, F5, FF, FF, E8, 11, F1, FF, FF, 80, 3D, 34, B2, 40, 00, 00, 74, 0C, E8, 23, F6, FF, FF, 33, C0, E8, C4, 97, FF, FF, 8D, 55, F0, 33, C0, E8, B6, C5, FF, FF, 8B, 55... 
[+]

Entropy:

7.9999

Packer / compiler:

Inno Setup v5.x - Installer Maker

Code size:

39.5 KB (40,448 bytes)

The file instagiffer-1-75.exe has been seen being distributed by the following 6 URLs.

http://www.techspot.com/downloads/downloadnow/.../?evp=b4a77e355d1c3ec938e7fc56b0d1c4f5&file=1

https://dw.uptodown.com/dwn/f0rmKDnONuykPkOqlrwozL3BCKY46dAmmIDIOZ48UwMF253C5TtqejkJo9W9rtj_OQ9SJT-QqBSRq67T2ws--u3B3Cp3EzkrBAUkmwb7DassCUT9NcVO7TsktnUq8hg0/f1_HNaQu4BuqDKYDvtlJNxEJjM4iw0rNi4WjQ8F68nuwyUiSchf2S1B-QWtfjXbcR9J3ckWaG4fiLDNBJgQnvlp0BaQDJ5yK17VdsLQDYtx8Ds6-IPJ1eIyO6WpE8YZT/bZRerRzZ0Zy0BpgzPohm0jRl0I6ZLbDV-zSnHeVBcZNARWxrF72AXv21uX8vraj8R4P2YWqm03oyp2etjk07rM4ESf5iCruD0MHfqo8q-ekAxs5dj1qA6rTIaY8uficm/.../

https://dw.uptodown.com/dwn/fy__lPqIoeriYdRXKGS8gJM7fnbmMG4aFGFmgn5erTZwhXXM-dxganRqjA3HbqzkWZkJnXMOer_X1_jnpVy63jmZGTjk5dlFM9XBoJhUvtIGWwtg60LIPn0AlwFWQMeb/zEmmBldlk9O0B-Tzmt0kQJnGCkQMW0bhYoc3JqoSQaPiw-a6JzOHsiZj5UMTJPQgCLbvWm--wUAVPHkJihFm1_a4FjBTb0eBK7PaoS5_b4kgP5JZelb9tYbBxZieOrrx/.../

https://dw.uptodown.com/dwn/s-Oe-n-qrVJ5GuKzGChmh5ZGfTHJtVcQ0Goqncd8eihdSL98Tzjdaus2tvBnwZbhiJP2bnm2oLJaCqJJ9EGF_BzI61hMEO9czvQvDaGPJl_-2jSy35xWQTU7N9Zsantg/_0AhzvDsnGuNbC9Q2b1pTeO5WWCuMVSjAGl32MuqXetys5QsWZ_gFAVoNM5u4am9SHR9cjMUpmjOvedTzGwCtQuzTXVcfg0K4dSVI8rl9nL5Oqrs0KjYz-yZ4vty0kNa/0sftLUZwtvZTYBlIVJZfDxz1cW0w5ud4M_tYgP7G0qHKifDTlFZPOudEd66NBnQQTWx80N-JY1UylgQjDgcrANJ70lYiiCNJF17xkWZ6gDnPt3eBL_i5i2hBXhSCQ7Y_/.../

https://dw.uptodown.com/dwn/9_xW7VK9wYWhU4Wo2sZjgOf4nOJ5rfmrzZYfTXixGmc0SNES1jc-ouUvJB8vLoO-N54mtBI8MMbUiRHnWeY0K-wEhhqw2-22IxpXk7GYSRYQxBEu-KGbe0pzW2lmvkvN/emfpstwrk9vN2ClXm5mIH8NI2_4NOAJOZlhL3ju9paWY4RKtc9bB8wQAc-OhkMc-CCblhe_qJLosUjyi3IzM4nkp2fcY_CUxPcYpYH9HiY9as5KJraq09cGj9NGAxW_e/s6RSxZ0eKN31o7d5Xthoa7Pyn4NG9Bem3MKTUyV-fVfe5IscHi7UEiLDuHBTGl1g5Sw6903PDouFzWp9cmBkp8XGJQQbd7U7eO7LCkMQhGnOmJaVfF2RQ5WCwEgdH8Us/.../

http://download.instagiffer.com/.../instagiffer-1.75-setup.exe

Scan instagiffer-1-75.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.