loader_for_fiatecuscan_3.6.0.exe

Loader for FiatEcuScan 3.4.2

This is a setup program which is used to install the application. The file has been seen being downloaded from s5853.chomikuj.pl and multiple other hosts.
Product:
Loader for FiatEcuScan 3.4.2

Version:
1.0.0.0

MD5:
0ec51eaa7e99dbe0bb4a1ea8b9472440

SHA-1:
36702c556df5e940c9e1e7dec19ff0877ae74757

SHA-256:
877a1428b0c75978aceaa715fc9c73a763fb4df4bef1df61241e649189a73033

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
12/25/2024 3:22:58 PM UTC  (today)

Scan engine
Detection
Engine version

Norman
Suspicious_Gen4.CFQZJ
11.20140925

Sophos
Mal/Mdrop-CE
4.98

File size:
15.6 KB (15,982 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2012

Original file name:
Loader for FiatEcuScan 3.4.2.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\fiatecuscan\loader_for_fiatecuscan_3.6.0.exe

File PE Metadata
Compilation timestamp:
4/5/2009 11:38:32 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
384:2iTs59PeYCzYcHeWDms7x445vLS4FQ3WP8tnky:2iy89zYcHeWDmAGULILky

Entry address:
0x2DEE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 02, 00, 10, 00, 00, 00, 20, 00, 00, 80, 18, 00, 00, 00, 38, 00, 00, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 01, 00, 01, 00, 00, 00, 50, 00, 00, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 01, 00, 01, 00, 00, 00, 68, 00, 00, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
3.5 KB (3,584 bytes)

The file loader_for_fiatecuscan_3.6.0.exe has been seen being distributed by the following 9 URLs.

http://s5853.chomikuj.pl/File.aspx?e=S9xhQX6yUOlxjxEQok9aGw9tnTC3bp7AKVRMjpXGgvjYF-yN-ZJD1rCpj3BNLSY2ypVadLZ8qbGWSsnVqKDxs05W9s-AxX4mzBsvAF60oh4P7kJRcLIlAiYIvPhXkx2htfPHlVWKv0JI1yhu7rNnj2hjChAU32i0eXxvCeO3CN4&pv=2

http://s5853.chomikuj.pl/File.aspx?e=S9xhQX6yUOlxjxEQok9aGwpIjdUtY6v3e8Y1agLNy9l5BQQlztT4kvKPr836A6-C9zQwKeAyCHpFgEZrFgTql52G1MylrINR4pK-7UaN6D4UvrsdbWn23GLiZCtYIprET8rLzhsqsvSF2MUG7S-RbZMIhoEEdgVRM-CBP18s7hM&pv=2

http://s5853.chomikuj.pl/File.aspx?e=S9xhQX6yUOlxjxEQok9aGw9tnTC3bp7AKVRMjpXGgvhrsPCzzusH69b1XGtE3xuE_nNi5Bi9xN2iuqjLQG2nJakmDznbm1U0AkBVETMQa2ft5KNah1dlmeAgzCewhHDF2S0HrWYolGlskS7UrsLTE1a4_ltlzuhneFWOlUz4uzQ&pv=2

http://s5853.chomikuj.pl/File.aspx?e=S9xhQX6yUOlxjxEQok9aGwpIjdUtY6v3e8Y1agLNy9lAogCzY9vUYr3e99v-G0euHEY_zb83LMdTL1u6gSqHbET6y0xcAeUjifVwUNf9fs657kiR-St4QsF0jUroAk56Q2xQ5mqOZY6EMB0-dsjpCvCg0JHKbYPTS6aUxhKhs6w&pv=2

http://s5853.chomikuj.pl/File.aspx?e=S9xhQX6yUOlxjxEQok9aGwpIjdUtY6v3e8Y1agLNy9meSqIh1X-AfFr9gdkW8peSqQg41OAFmTg-aqqjLlYSePSMhKV-Uhznz-IgVBAdb4PATu4C4YYPRgyyUHZNriO0LmX_Tz53Zmp5uZuPqouuXOqXX_qf6xU7TridaaiHncU&pv=2

http://s5853.chomikuj.pl/File.aspx?e=S9xhQX6yUOlxjxEQok9aGw9tnTC3bp7AKVRMjpXGgvhRBYPEDw_hc1jbDdYKyot5kMgJOR5zZl7e6Sk8SL_HToHMYXZ-WzMMghhz8pZ6dxfFQgLVoUy-e2jTxCWBd67_zInAIyfA568IIn5EIfbSZ-EOK8lOsbdYj5eouBlRNX0&pv=2

Scan loader_for_fiatecuscan_3.6.0.exe - Powered by Reason Core Security