home

loveme_mail.exe

ODSsoft

This is a setup program which is used to install the application. The file has been seen being downloaded from cloclo26.cldmail.ru.
Publisher:
ODSsoft

Description:
Автоматическая рассылка сообщений

Version:
2.15.12.11

MD5:
c04f78840a84425cec34501a8839c746

SHA-1:
4cb00dfaf2b6dc82d51776583566bdbe32153495

SHA-256:
5b501c95828654c81ec57394585b010056788c050e7c6518bbd0a4a25a11d49b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 12:11:46 AM UTC  (today)

File size:
948.5 KB (971,264 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\love me\loveme_mail.exe

File PE Metadata
Compilation timestamp:
6/20/1992 1:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:bAcbbLJe1yInvuTskoajWBrgmTRgkXYpm4IQI7uk0e2eLpd4XJJkYlBCh:bBUMvTp6BcmTRvXYpm4Id6mkk8B6

Entry address:
0xBD62C

Entry point:
55, 8B, EC, 83, C4, F0, B8, D4, D1, 4B, 00, E8, 90, 94, F4, FF, A1, 28, 09, 4C, 00, 8B, 00, E8, D0, 2A, FA, FF, A1, 28, 09, 4C, 00, 8B, 00, BA, A4, D6, 4B, 00, E8, A7, 26, FA, FF, 8B, 0D, 90, 07, 4C, 00, A1, 28, 09, 4C, 00, 8B, 00, 8B, 15, 3C, A4, 4B, 00, E8, BF, 2A, FA, FF, 8B, 0D, F8, 08, 4C, 00, A1, 28, 09, 4C, 00, 8B, 00, 8B, 15, 10, A2, 4B, 00, E8, A7, 2A, FA, FF, A1, 28, 09, 4C, 00, 8B, 00, E8, 1B, 2B, FA, FF, E8, 3E, 6E, F4, FF, 00, 00, FF, FF, FF, FF, 0B, 00, 00, 00, 4C, 6F, 76, 65, 6D, 65, 20, 4D...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
754 KB (772,096 bytes)

The file loveme_mail.exe has been seen being distributed by the following URL.

https://cloclo26.cldmail.ru/HpCKk4HLSpUr7MNkjT7/G/.../PSj1dCTuq?key=8a8036bdb46dec1ee1ef133c367ee93819dffafa

Scan loveme_mail.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.