» luxor_ar_setup.exe
Overview
Analysis
File Details
Downloads (13)

luxor_ar_setup.exe

This is a setup and installation application. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.

File name:

luxor_ar_setup.exe

MD5:

1ba018476732d98c73eba636bba916f6

SHA-1:

8fc3e3f91bbd1106d95cc0e7c422ab42f4203151

SHA-256:

9cb1f46900ca6b612008b2ad3c557258980c64eeafd14b012fb2ef4987807e9a

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

11/27/2024 11:32:38 AM UTC (today)

File size:

10.9 MB (11,435,122 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\programs\luxor_ar_setup.exe

File PE Metadata

Compilation timestamp:

8/27/2005 1:18:48 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

196608:7t6BTu7uRx/buIUZtsq67UwxkmZaocrOee4yGENNmCnhmjVTsc9XYkunU2r05NZ:B6BoZtsb7U6kwfcrByGENNmVTsceENZ

Entry address:

0x3174

Entry point:

83, EC, 20, 53, 55, 56, 33, F6, 57, 89, 74, 24, 18, BD, 38, 92, 40, 00, 89, 74, 24, 14, C6, 44, 24, 10, 20, FF, 15, 30, 70, 40, 00, 56, FF, 15, 80, 72, 40, 00, 68, 28, 92, 40, 00, 68, 20, 3B, 42, 00, A3, D0, 43, 42, 00, E8, C0, 27, 00, 00, BB, 00, B4, 42, 00, BF, 00, 04, 00, 00, 53, 57, FF, 15, 58, 71, 40, 00, E8, 79, FF, FF, FF, 85, C0, 75, 24, 68, FB, 03, 00, 00, 53, FF, 15, AC, 70, 40, 00, 68, 20, 92, 40, 00, 53, E8, 9A, 27, 00, 00, E8, 59, FF, FF, FF, 85, C0, 0F, 84, 46, 01, 00, 00, BE, 00, A0, 42, 00... 
[+]

Entropy:

7.9999 (probably packed)

Code size:

22 KB (22,528 bytes)

The file luxor_ar_setup.exe has been seen being distributed by the following 13 URLs.

http://gsf-cf.softonic.com/8fc/3e3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=45546&instance=softonic_en&type=PROGRAM&Expires=1478308825&Signature=hh1dJffHSPDGKtk0POpUSL0XNgcWslNlsR5LXGFKFcXizNLqMSAR8tHHGx8UyFP3Ngfjn6IzXtjyD3kiElTQp~SCvLsC3bwRDYCYFmvkCpnnhrf12yZv7iMzP4Y1FpK5ybvXPgOyMFZ01pqozWaTNyz-mG6ByBMEc1nWA-N-rm0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=luxor_ar_setup.exe

http://gsf-cf.softonic.com/8fc/3e3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=45546&instance=softonic_en&type=PROGRAM&Expires=1478111367&Signature=QZMygCXeL4nt7cDLO05LIQVr4OlWxZT2EhM9e3jRH~wz0uROfxruQvD53ws9Ux9ZOFaInZZ7LJZoJ2AO0CXTPr8gd8GdMGBddDW0y~t5NcgD7lm~9V7XKZpmqOZs0gHchsWxXTkK7WQjyU2JKNEeTslrPM0~s37o8XzQyj3g32I_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=luxor_ar_setup.exe

http://gsf-cf.softonic.com/8fc/3e3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=45546&instance=softonic_en&type=PROGRAM&Expires=1480495751&Signature=Rg5mk1iamAA2obtnCJdLqi31B2W56j~-~6ar2UpMaUfD9zxhOptsZMaUrrWQLgO9AB8TpKbdHI7At3Kdn-R1dArNWP4R-80lp15BOsJHli~9URuEr2xNiDaCERa1~c6WafqsgAQmSM5FXvodLLv8Nr2U2cabiiQml9ErlpK4FOQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=luxor_ar_setup.exe

http://gsf-cf.softonic.com/8fc/3e3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=45546&instance=softonic_en&type=PROGRAM&Expires=1475458512&Signature=UmchI4DWHlrMkxTdhQBTdNQQX7b6ELmpqXV7RL0p5tjZxMINP-sb9wJwV8VDF-goUFT-0DMyrOavJElEMEpy6hVWYjfpmoY1Hcxw6NhOVX-ceBFYYA4AgG2fXJgU9emprfsTb0QXks6BH-NWAzYrIUWDKfODDXfkjnuYhexRqD8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=luxor_ar_setup.exe

http://gsf-cf.softonic.com/8fc/3e3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=45546&instance=softonic_en&type=PROGRAM&Expires=1477764040&Signature=KcGwbTGr5x-M6~dAKIkV6gY8EZQx-pk~aLM9QsTG2pLDkr4zRjC1szYSVxRXSAL9XTtzjxqinI8qxN5zgu0~pU9nmSW2QnhcLXAdfnL5HS-rOiFV4q7CvMJDl8fxGkomlOeu~Gj-c8Diw4zyTHaYFQSU60h8Q~qztNbgT1W4ZNQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=luxor_ar_setup.exe

http://gsf-cf.softonic.com/8fc/3e3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=45546&instance=softonic_en&type=PROGRAM&Expires=1470549783&Signature=ieXeJiCw4nbcS3oa16FB2I6uE2nbQhRtdAswi2q0IB8jk28nNQCqvqiwNBc1wNTEOIfxCX1jIWgixKH0i93iQxFXlRxjqcfNrAMfD29KS019yO2SUXeVoxXsz8Y3r4-lpBMigaGh-qleQMUYdpXc8g2M0gtPb9ajT5mwRZ~S95M_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=luxor_ar_setup.exe

http://gsf-cf.softonic.com/8fc/3e3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=45546&instance=softonic_en&type=PROGRAM&Expires=1474212250&Signature=AmRNANf1Xk3tOEGwqKARv37woSP7OMAcZot0cZa1ZkwNlcJcluXhqEidkhAxF6nKeKw3gOkPU5lkfEOmPxScPGE3GcHFP46hCrEyBg0upYKidh0dT~18~9NN~iCAY0ZlagvEdfQGcwve4TJxmLwDHCLgzLmzKrsJlaY4V7KQ1EQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=luxor_ar_setup.exe

http://www.capitalfileapplication.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

http://gsf-cf.softonic.com/8fc/3e3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=45546&instance=softonic_en&type=PROGRAM&Expires=1464892165&Signature=Pf-0gF0euQpKkkt9GQsmhNCJpaGHRgxO1ilGuPL6En4mZIMXJf72-Ai-W1TnnUkf9muY6702626sfSrZXNXCOBvndtkYYVSKPvIiSbtwXLhO0G0rYbsICcR6YaCPX7WBHWrb-7RB9UPp3fSF0J~okpmHtXKrQreToK1zyB5GP6M_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=luxor_ar_setup.exe

http://gsf-cf.softonic.com/8fc/3e3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=45546&instance=softonic_en&type=PROGRAM&Expires=1461980146&Signature=DP70pXWRBdv4DydJYuuM~cUiTa~6AH8DipjQij38xUqub5Oz-h~CTJTJG8TMYISwFJmHIFk5SVubaThztfXweNigWIOUL1aoCvYxaIrkDPuqV7oYsK7~HbkDFX4JryieYKrXz4hS~7K7JJp3lvuhYK7KfYnqtcfa5gsdvuqp3Qs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=luxor_ar_setup.exe

http://gsf-cf.softonic.com/8fc/3e3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=45546&instance=softonic_en&type=PROGRAM&Expires=1457480191&Signature=P3Byrgvq32nNduVbHRMBSqA7iKwt-UIOoP2cv2WZbr192t24-d~Vbpr4J91jUUvAOlBmhdvfvnO9AXLL~gaePyN~6BK3IlZLt2-ZVNreZHUpcC4h6j93xTscK4Fl6~maudimW0UFIIVCXX2KdTElEH9uYW56yP9QDoSOJ8QRUT4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=luxor_ar_setup.exe

http://gsf-cf.softonic.com/8fc/3e3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=45546&instance=softonic_en&type=PROGRAM&Expires=1433118806&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=V9sZyjcZfu8e5kJPuzZafSrZmK1PCEBn9xJN8qcIUoxkgMpEFWuzzPNsvOiM2OCRiR5SMHSwJLs5IqTKH-I7NX~2apQ7iEYzB-tMdtGbP8oMiXIfBk1eFXwf-5nX6VqUgE4Dm109hx94YHtfw6vqhLcb9fwlPwvaqUDGTiDjCfU_&filename=luxor_ar_setup.exe

http://gsf-cf.softonic.com/8fc/3e3/.../file?SD_used=0&channel=WEB&fdh=no&id_file=45546&instance=softonic_en&type=PROGRAM&Expires=1455778591&Signature=XFlcEgY~SsWLkrbXPG-kKkebBdztYiRdpt0zbvDFnAT~xhbSVVd~uYWNQ-MaVtF92j2RawQhkklX4hD3Qs-9x-9VOTIfFFqeWD2l0TkoXcUfkI0sAb64HX1u0MN1ydKZPPH-NU5goQhxie6Op8uoIXmg6pVo5Bv8OI3DBedoGPs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=luxor_ar_setup.exe

Scan luxor_ar_setup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.