keygen.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from s5857.lolabits.es.
MD5:
7ed7bfe11bbdfe1266c5eaf9bf1ccb54

SHA-1:
49a31855aec7a8e26929d2ae1c58b0ca25d1d12a

SHA-256:
71d72094c6d2b8d65be801a5222610026e37ec1ee03e1540ddf336d4eae09f2f

Scanner detections:
3 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
12/25/2024 7:44:28 PM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Keygen.AU potentially unsafe application
7.0.302.0

VIPRE Antivirus
Threat.4657539
48758

File size:
211.8 KB (216,884 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Documents and Settings\{user}\My documents\downloads\keygen.exe

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
6144:ZNeJC7ezXX0rbVMlqjYd2UPrL04v8I8qnHyOCin5xbd4ue/hR:Z4JCizXXAVyqjVK/hv84y1inCN/H

Entry address:
0x259C0

Entry point:
B8, 70, 97, 47, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, E6, F4, 21, B9, 76, FB, A3, 0A, A2, 7F, 5F, 0B, D2, 77, B7, CF, EE, CE, 77, 06, C2, 78, D6, 7D, 20, 46, 5E, 39, F0, F5, 70, 5F, 9D, 95, E5, 77, D5, DC, AA, 8C, 60, 33, 51, 3A, B1, 83, 6E, 4B, 72, 69, 69, 04, 1B, B7, B1, 21, 7D, 37, 48, 8D, 34, 4C, DD, 31, 63, F0, BC, D3, 78, 07, 08, ED, 86, CC, FE, EC, C1, 7E, 9C, D5, F4, 71, C0, 3B, D2, 2A, 8F, 46, 79, 28, 7F, 79, 5E...
 
[+]

Packer / compiler:
PECompact v2

Code size:
147 KB (150,528 bytes)

The file keygen.exe has been seen being distributed by the following URL.

Scan keygen.exe - Powered by Reason Core Security