lazyturn3.exe

TODO:

TODO: <Company name>

This is a setup program which is used to install the application. The file has been seen being downloaded from www.machsupport.com.
Publisher:
TODO:

Product:
TODO: <Product name>

Description:
TODO: <File description>

Version:
1.0.0.1

MD5:
219f65016f23d23436cb608eb6ed0114

SHA-1:
45e42085dc415c087c4e4c7d18a91458822bcdd8

SHA-256:
8433e7bfe8023f5b84fdc790328d89eb457f87039f89344b65884a4f7c3bc2a1

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/27/2024 11:22:14 PM UTC  (a few moments ago)

File size:
753.5 KB (771,584 bytes)

Product version:
1.0.0.1

Copyright:
TODO: (c) <Company name>. All rights reserved.

Original file name:
LazyTurn.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\lazyturn3.exe

File PE Metadata
Compilation timestamp:
2/16/2008 4:33:52 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:XOtV226JwN/Z79nj8kucb9L0E1gUnPlU1leAEbCMEPv:+H226JwNBxnj8kucb9LBPlU1EAEe

Entry address:
0x4E037

Entry point:
E8, 44, 65, 00, 00, E9, 79, FE, FF, FF, 3B, 0D, 00, CE, 48, 00, 75, 02, F3, C3, E9, C6, 65, 00, 00, 8B, FF, 55, 8B, EC, 51, 53, 56, 57, FF, 35, CC, 31, 49, 00, E8, CA, 5F, 00, 00, FF, 35, C8, 31, 49, 00, 8B, F8, 89, 7D, FC, E8, BA, 5F, 00, 00, 8B, F0, 59, 59, 3B, F7, 0F, 82, 83, 00, 00, 00, 8B, DE, 2B, DF, 8D, 43, 04, 83, F8, 04, 72, 77, 57, E8, 58, 4D, 00, 00, 8B, F8, 8D, 43, 04, 59, 3B, F8, 73, 48, B8, 00, 08, 00, 00, 3B, F8, 73, 02, 8B, C7, 03, C7, 3B, C7, 72, 0F, 50, FF, 75, FC, E8, F7, 66, 00, 00, 59...
 
[+]

Code size:
435.5 KB (445,952 bytes)

The file lazyturn3.exe has been seen being distributed by the following URL.

Scan lazyturn3.exe - Powered by Reason Core Security