home

logomocja imagine 2.0 pl demo.exe

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from www.bytesendclear.com and multiple other hosts.
Description:
Logomocja-Imagine Demo Setup

MD5:
77bbeead2b448b1290179c03a9fb1ae4

SHA-1:
2ba9351726ba0c5a8fbf654231d6dbad321bc998

SHA-256:
b5f2d722eee1b38306e79ef01ffcf981fad18c7c3bcfcf9a8aa74c11ec246bca

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 9:46:40 PM UTC  (today)

File size:
11.4 MB (11,907,020 bytes)

Copyright:
Copyright (C) 2002 Ośrodek Edukacji Informatycznej i Zastosowań Komputerów

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
English (United States)

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:9UjhXUKxdQlU/PtYLXkfqEiYs3PKtNb03tXNCULdQqSoGWssh7liT/X56PKNVo:k5/PeXREiYs3PKtoiULdsoGWsshuXUi+

Entry address:
0x9A54

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 72, 96, FF, FF, E8, 79, A8, FF, FF, E8, A4, CA, FF, FF, E8, EB, CA, FF, FF, E8, 12, F3, FF, FF, E8, 79, F4, FF, FF, 33, C0, 55, 68, 02, A1, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, CB, A0, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 9B, FE, FF, FF, E8, 06, FA, FF, FF, 8D, 55, F0, 33, C0, E8, B0, D0, FF, FF, 8B, 55, F0, B8, E4, CD, 40, 00, E8, 23, 97, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, E4, CD, 40, 00, B2, 01, B8...
 
[+]

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
36.5 KB (37,376 bytes)

The file logomocja imagine 2.0 pl demo.exe has been seen being distributed by the following 14 URLs.

http://www.bytesendclear.com/2j5gZvHVIY0ZMXeXk 5JEppjXU2uFL4biT3Gl4dot5c3kypAoX9GfdMOJyTW8IFZSjLdMO79hyumPIXgB1VdC1MdS5H72dBKmhPME_kpkCZ5cOFGyDZBzRATtByfn8vggLQZO_PvD2vfqksudw6QaZ3bwP_BK529yk4WbvKWVQqJ 0G raGkdSU8KVRB mW5xq0lsVQ8PMo79p sdaHwRJOflhY84w1E6H oGcAGKH_D6lFSSExX2apSzwqXCM9DNXNAQhmFNdDSmIWrD2sg5P1uS9w barY4DpcbVWUuyXZcFnpf 7S0aZnrVhQaPGQcH2ChUW7q0mZqdNwOtVKXn5HVkSa5E5g7dwjItBxT0PXuoBoZEkqDpIF rCylqdLTm4wzODz_0VP _z7VXC74z1_KDGzgQ0bw4s1zylakq9YyB7esjJs3 eXV 8dA4UlGyaNNjPFCh3nc3Do_7Nyvb0lQkocQDzeRR6re2ZM4swiEANc5yDWEUSv2gFEltsuRCjfYMyhSsmqG4ptD oVFQTLXU S9Vhibyni5XdXhVeqtWGDTfqWgaSPhKXG99wA1g87Tj-GysAAEQ3F9uM2TBEFfZyPO9CGpFlIrmBKTU oxDEzN9YX5wxpDbQyC3wEQ==

http://www.bytesendclear.com/nO93c1e7NlTkmVp3p4ueTdNXbbYkXXpW_qMgOjub4gdeVFoM4PTcnXSIsetIcld3jgoqbKBbbDaGshtg2FjQS_dtO1mXvaodUn1egm_3jLRoBxQBWYSXnXz56ZAM5tG1oc2MQRpyUb7Gyt8bdPK59pHrQJjSvS eiGeOgSw0mgUlzVUZHdHjSsOlswLHzOogTd XKH3kRIC bqUfE75nrIhX79sklNtxQRUF3cq9D47rTGLXRqI20FrOXZOgowNHGyjYoAoF_xsdwPcNFAdofFqcWewAVBFxmrPqJ m_zJ7G33zaMdReBHpd5pdaihroY7Oz3OO7GoMVFJZkiyemobYUWanUK0vg2SytUbWiVffngFS7LWHCftNfZbIhlm7ukODn179GWGhs7keGE0s2uqRHIxKIIEMeIYWPCeUS7iZ9_mCxDE3CclV3TJnRKr42q7GzINUEIzWPT7LdUlQv6fop_jpnXmoN3QLnBPYliY6p kfRrIvy0MH_Gr2K4uvq_bx1gN0iKHB5QEGAj brApObYq7D5mXH2GCzszkZeSULh1W81D t_IZFtDz8AOvtL7ca1WDhZh woyw9qo22g3tHkb_4Mw==-GysAAEQ3F9uM2TBEFfZyPO9CGpFlIrmBKTU oxDEzN9YX5wxpDbQyC3wEQ==-E

http://www.bytesendclear.com/U1FNr3eUAQKDimWkAYe5s5ZZTyGqkIOqtu3Ze4Izl_qfGWJjTUpEjhI3RVyakXgj1xRLPjNG_MlXDVdNbWWv1CXru40GNhZFLel1gnBYa0nJTc2uPnqRpvTfv7Wkzl9 V9Mjsv5 mVMYNgjBsLKWmCF m2e8kn6kJZwqJLsSYLKmNuFvS4strdt9xeX nUnrBM0OW_YeP6hTwEOkkIx2vD5ucuK57YhHUMl1hhGgqLxdVksREDTq_OBLG_mTorQCt twnQbWyghA4Y68FOVcB0DRtyPwX8h8qA9tVvuLRFa5sSOKeMzSCSNtM2DB0RodnscuXtcBon0ED_0hWxzlqjq1OmcHWs2HiO7yPFhUiPSx8IMqtdBZgIqJgyhReGSOSGE_oKpEND8lEC_XC jlLmSxX1jN6 sbGeGJWax4b_KuHE5ZVgs AJNX7PRBJlR8YEbgdvLpZK7PbZguUKyLewAYmmGRq_9bLN004nagQh3KSSYURvsRSleN9JzFdX_78OL8uU_rlW0gs9yMbfmchGbbPL1RDhF1YKbSa4lojS0eX3OFASqq_uIMcaKexdQpVD07ZLaXiONsdmU2GI1ri6Cc2g1z6w==-GysAAEQ3F9uM2TBEFfZyPO9CGpFlIrmBKTU oxDEzN9YX5wxpDbQyC3wEQ==-E

http://s7716.chomikuj.pl/File.aspx?e=p5w9pXpx45tDzRmui4qd4ZMjCRAahaXEiAGWZUFG8ySWTzqeAoUrL0GJJZQspcFbazuOtmCAw6jj82M8b2uMDxY6_IMrUA6s_dgB2xw-zEz8U4SCYDWMm1w7V4Vabu95aSYqlj-FdbWgMeKPb0kBLg&pv=2

http://www.bytesendclear.com/1yLx9iQExtU_oBYd wQAaa41g_hJLG1huwk4VLLb_ELAHzPw8rCPjBg_K74zx8SpxTCs4TKJwUsxAtLsk6FQH u6nc8ixLz_0hEIInXf5PRVvkuEiMnzIYXL70uMoK_4tnkUyYm_FhMSR8v7TquDFqIq8ksBvb41wX1p83X 6XpDQJGiQaEhVdFZyfbUVtHMFnwd0fZksZ_Gb_TOmaqCCA34jMj6tLNV0pjgeoS2FK0VaD FjdYfMhs700qsNWXSLPY2ZA4FN61LNRZQdzj1hPAUt07pzJ9gSgn4MqiTLXNCU4hoSBCsxOCOitDZQKrhEMXIRNgmAB2TWVK5d hE4BRdAwgg1EkHTN_0UQAJaMymjRWci1KVna56g0fR9iMzrcpJ5Pvr2KkKQGXIHQvksHc0OeAYmGdWjR8moQApqM2eD7PX4HnTvI43hlmAr vinbTK8y_Pxr8D2glhz5JOcBK8E 5rf7rULeH9dzha Gm XwpV6fmsB2hbJ4SmI zZsaVCbmWuimKRIRlAdmOTlRuttGcE7tCy0G4TJf3Wk238SVAryih8HY6YwAWDdjuE8tEMVBA7Jf6TP3sZWvYjHOVew5AKng==-GysAAEQ3F9uM2TBEFfZyPO9CGpFlIrmBKTU oxDEzN9YX5wxpDbQyC3wEQ==-E

http://www.bytesendclear.com/gFTxCNOzDbNX0TZ O_ilYjO5oaGc0GhJT8SLkljTRbHW1JfJP6yCEpEILMtGUiZKUTNzOe2_WOIwW3kJ3WBwqGWlet_phhf3OOJomvXt8ms_R jfnWoYXd7CpwCBSgM5Sl27nMvrJ62QG4AyEeyS81ITXtrO2h3pXmy7BpqfiH62HMFNK3FCU3h3aJCGEOM NJFnfTJVVmjar15nvzKmgMtNLVTdp3 xkszJ4yYh9zxJ03jd9OpYlUS0UJEqWAZL46_7M5XZx8T xYFO0qi99zNwyoIMVGXC_jrFxRNES1roecWXml5hoM7IBxkTc_xD987sOhXAarTqbcrd QDtGwTrKfAP5CwG_dqbVwnbPFAGOlS18f8KamHBtw_xRSDAmDWZdfBo3JdyEH9n7Q6eYk1jFpUTE0yJUTrCPg4YseZIXtd496wbMr16jbeMeZ7TWq6dBvQqp8o9KMy0peuWMHMv NkxxbOXRqhOxofBivAu YUKUYwgyGL5kd1ADl1y6FMmeK1u3O6wNj_4Ilvxt FnwjJsCotTc_bJGndNbZ37NEA7lk43eoudrxT8TsTjdQ1MSiYufUGZV11mkn0Eu7B6cKJkiw==-GysAAEQ3F9uM2TBEFfZyPO9CGpFlIrmBKTU oxDEzN9YX5wxpDbQyC3wEQ==-E

http://spbrzozowka.pl/moodle/mod/.../view.php?id=153

http://zspwarta.pl/szkola/dokumenty/.../instaluj.exe

http://www.tp.webserwer.pl/programy/.../instaluj.exe

http://spbrzozowka.pl/moodle/file.php/8/.../instaluj.exe

http://poczta.onet.pl/download.html?kid=52372884

http://zsojedlnia.edu.pl/.../instaluj.exe

http://www.dobrepliki.pl/Download-Pobierz-396.html

http://logo.oeiizk.waw.pl/.../instaluj.exe

Scan logomocja imagine 2.0 pl demo.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.