LemmeWin.exe

LemmeWin

This is a setup program which is used to install the application. The file has been seen being downloaded from cloclo38.cldmail.ru.
Product:
LemmeWin

Version:
1.0.0.1

MD5:
316883697b5eaab5414a03fe4887083b

SHA-1:
7f65d3db79a59776e7d902965aebadf74242fe5b

SHA-256:
77ab8bd1091e4f7ebac91aa73bed629700176a0d9f68e0cbcf7edc442149868b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/29/2024 1:55:18 AM UTC  (today)

File size:
182 KB (186,368 bytes)

Product version:
1.0.0.1

Copyright:
Copyright © 2016

Original file name:
LemmeWin.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\lemmewin.exe

File PE Metadata
Compilation timestamp:
7/8/2016 7:29:57 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
768:TjA0PYsrcLvrQbcLvrQIcLvrQWcLvrQA7sMRdxVyHJ76IYR1HcLvrQ:avr1vr0vr8vr5h3xsJ/Iqvr

Entry address:
0x2717E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
148.5 KB (152,064 bytes)

The file LemmeWin.exe has been seen being distributed by the following URL.

Scan LemmeWin.exe - Powered by Reason Core Security