home

maĺ‚a ksiä™gowoĺ›ä‡ (mk) 2016.exe

Usługi Informatyczne Andrzej Ciupiński

This is a setup program which is used to install the application. The file has been seen being downloaded from s7515.chomikuj.pl and multiple other hosts.
Publisher:
Usługi Informatyczne Andrzej Ciupiński  (signed and verified)

MD5:
9fdf40d34699c79716e268860ac69b7f

SHA-1:
0f1deb17cfbd98f93fd3470ac2a13bef23da0649

SHA-256:
2d71da08e31a4375c1925aacd675079ac6cdb6f4f81b5e10383a74ce0e6837fb

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/17/2024 11:27:10 AM UTC  (today)

File size:
19.1 MB (20,040,072 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\mal‚a ksiä™gowol›ä‡ (mk) 2016.exe

Digital Signature
Signed by:
Usługi Informatyczne Andrzej Ciupiński

Authority:
COMODO CA Limited

Valid from:
12/16/2014 1:00:00 AM

Valid to:
12/17/2015 12:59:59 AM

Subject:
CN=Usługi Informatyczne Andrzej Ciupiński, O=Usługi Informatyczne Andrzej Ciupiński, STREET=Radlińskiej 9/27, L=Łódź, S=Łódź, PostalCode=91-849, C=PL

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00A23F9A0C737710072B83C1FDD6705810

File PE Metadata
Compilation timestamp:
10/11/2002 12:00:45 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
3.0

CTPH (ssdeep):
393216:y5o5YA72MmjhYCF6n08F4XxagdHanwKjqocKVmsl9HezkF6/7jWvO6:8op2L/F6n0WgaMtopl9+QFQM7

Entry address:
0x1650

Entry point:
81, EC, 0C, 04, 00, 00, 53, 56, 57, 55, 68, 60, 50, 40, 00, 6A, 01, 6A, 00, FF, 15, D8, 80, 40, 00, 8B, F0, FF, 15, D4, 80, 40, 00, 3D, B7, 00, 00, 00, 75, 0F, 56, FF, 15, B8, 80, 40, 00, 6A, 02, FF, 15, A4, 80, 40, 00, 33, DB, E8, F2, FE, FF, FF, 68, 02, 7F, 00, 00, 89, 1D, 94, 74, 40, 00, 53, 89, 1D, 98, 74, 40, 00, FF, 15, E4, 80, 40, 00, 50, FF, 15, E0, 80, 40, 00, 8B, 0D, 00, 50, 40, 00, E8, 68, FF, FF, FF, B9, 40, 0D, 03, 00, 89, 44, 24, 14, E8, 5A, FF, FF, FF, 68, 00, 02, 00, 00, 8B, 2D, D0, 80, 40...
 
[+]

Packer / compiler:
CreateInstall v2003.3.5

Code size:
8.5 KB (8,704 bytes)

The file maĺ‚a ksiä™gowoĺ›ä‡ (mk) 2016.exe has been seen being distributed by the following 47 URLs.

http://s7515.chomikuj.pl/File.aspx?e=j3unaNjeLXMYOcV4I8XJ6dWb4nnDtlDhMbLZmCXLDo8EzlfiwTu0caRdLWMuxgeSv5kkFgK4iX-1TVbRZ_BvOUGTbnuNJqPHKcf2_d_FsBy_0HKwoxqRYsDnkyvCrXK_g9iIPpxJGa2ZmFafNS5ZMpF4rh_nDA5eXKnstjODWIAacOaKVQq93vRf9JOMPagi&pv=2

http://s7515.chomikuj.pl/File.aspx?e=j3unaNjeLXMYOcV4I8XJ6UO0qmAlaLXtZkcJeh6pKRSXOs0TD23F-A0YFXKeHc2ygdbmrn9fh-12p0hH5hTFFBuvXx5etPO47os39AZ66QcTLarhVU2l8a-JrDynTJL1iG5T5ZaCGPqtIERuI6-l5gO3lXB_GzWGBt188ddSp4-qMbC43rJRwgZiwm2BK135&pv=2

http://s7515.chomikuj.pl/File.aspx?e=j3unaNjeLXMYOcV4I8XJ6dWb4nnDtlDhMbLZmCXLDo_Jx8QqexY1Igns11ll5VX8sWCOagpTvP1_IjFf82F2nB_uK22lJkfOQiwKJw1Kx-BDXWBri7HM-LQpFTcZHiHZTMXHuTn7awkfTFNZ1wVys33_-O6RidBbI2xK22_zuDPx79ayzcnedN7bV8Jo5XAF&pv=2

http://www.sklep.rp.pl/pobierz_publikacje.php?pubId=112297

http://s7515.chomikuj.pl/File.aspx?e=j3unaNjeLXMYOcV4I8XJ6RA9b9QiccV1Sab0kZRQS3zmVFDeNw3F0Af7RtAdwOJvCg9sapa3d1d8stiJPxH82jZr5o6sT6hHSVCbgCPrC-DcKu3N4Mi71dYAm0XqcCcGie8EoJB_UzYtxbRjrhdoBtCGiBIZGhQbbp8yCfuNMH1tJo-M-C96B9G5S5B6PtIg&pv=2

http://s7515.chomikuj.pl/File.aspx?e=j3unaNjeLXMYOcV4I8XJ6dWb4nnDtlDhMbLZmCXLDo8kr-UfSKvyUit4badVnFvshMuKw2ViQ8NNtw40ixqKxEmuokA0qPyoKGaCUKMbWKozMJWFswX7m5UQu-pBEKMYO7Z7GrkzbdrAqVsYC4o-Wv992v34oaWiHyZn4ma5Z31E1AlwxtScXFN_qMNAK8sU&pv=2

http://www.sklep.rp.pl/pobierz_publikacje.php?pubId=106478

http://sklep.rp.pl/pobierz_publikacje.php?pubId=115438

http://s7515.chomikuj.pl/File.aspx?e=j3unaNjeLXMYOcV4I8XJ6cbid4JmoN_SOGxbhAU_BPV2qEq_AMzNJqdWsL-dqTdBalho7ORPNwltuXLHUiZ09v9Ka_oF60kAk8xHK4w5WPwxOunNi6HWYU9oF429viieaIWfoIqmT24pJwTqV3dxSZwtpF5CWkcF2ndU0-DgmaCTVpSMCzr9uA2YF8RN2yrh&pv=2

http://sklep.rp.pl/pobierz_publikacje.php?pubId=107606

http://s7515.chomikuj.pl/File.aspx?e=j3unaNjeLXMYOcV4I8XJ6dWb4nnDtlDhMbLZmCXLDo-dAh2vLZYFZ9pKpLD4woznEcnFAGwhAC77wUziBvjUHmT9Xp48-BtCoWq-bSCWdsUFeL52PRR9DvWHYDjLMnemPmlsIvZ4sOffD6DyJz9o4IDg69UqsE9ivPH2y9uojmH1zwProkxhk-EodPNYHST6&pv=2

http://sklep.rp.pl/pobierz_publikacje.php?pubId=112416

https://sklep.rp.pl/pobierz_publikacje.php?pubId=117370

http://s7515.chomikuj.pl/File.aspx?e=j3unaNjeLXMYOcV4I8XJ6dWb4nnDtlDhMbLZmCXLDo9dpJ-ASN66hWbdcSMR3PtqOcvS5Bg6xpSgmrdbyxKMFtOgpDYQPAVVIWJNODpJE6mYpTDZHxNl_dsiQIFAHEDs0b27DLW5iFbEg7vDHpQ_wZO_bxnYNyOiOZPuRd7fneeD8BnvIwVvadr-Lx8dTGDf&pv=2

http://s7515.chomikuj.pl/File.aspx?e=j3unaNjeLXMYOcV4I8XJ6dWb4nnDtlDhMbLZmCXLDo9L6_BoJcHjxuMG08D8GuCXCd_1HnES5_m0luwxwDKwEhkpYNoNXOUD341p8bA2XyB7BDTTuZwG31kTxgRZEsg8lGi1VEGRsL-2ezaoJ40vGdAOVbhtCg2663tzMFsiGf1nE7SGAS1Uf_13O0zdihwh&pv=2

http://s7515.chomikuj.pl/File.aspx?e=j3unaNjeLXMYOcV4I8XJ6dWb4nnDtlDhMbLZmCXLDo_Lvdzwpe6wh6-KN7dH3ohlohNYotRF52Iok1ZtuYEEltkdYqjzAbYwalv_WOGbAZs0hl40w48RRMbtx1UazrMo0PINAckeo9r-h7JixxkH5eBxdUEjdAmbSBNqi7Eq_LCtRGaPiHdvbPOh06G3aDSy&pv=2

http://www.sklep.rp.pl/pobierz_publikacje.php?pubId=111970

http://s7515.chomikuj.pl/File.aspx?e=j3unaNjeLXMYOcV4I8XJ6dWb4nnDtlDhMbLZmCXLDo9E2IFXuFUhJRUyHHgktpTOgP7i3MPoXHgH0R_S8l2PfuvywjbLHY280viJQc1eaM_Sd8DgNj8PMliWYFPcg4VIauzJfxWQhTEhTreYDIjdYlljBnh6mMVZGjm9stYDO1gHkEwuR7wB5CFEpVsN_Xm_&pv=2

http://www.sklep.rp.pl/pobierz_publikacje.php?pubId=104722

http://s7515.chomikuj.pl/File.aspx?e=j3unaNjeLXMYOcV4I8XJ6dWb4nnDtlDhMbLZmCXLDo_rNtYluUkYDQwNogsJQHedmM8-jbzroddi0t9Bo3NMl2937v4a1w0r7VMrQPtctwoQB1t_3Ji_-hR_cctLb49C68m4O1Gl_NmLdpBRYYO_f39evMEPuJtIAs2XnKHkpcamGQrEzCu6DysHzuiSLbLT&pv=2

http://www.sklep.rp.pl/pobierz_publikacje.php?pubId=101499

http://s7515.chomikuj.pl/File.aspx?e=j3unaNjeLXMYOcV4I8XJ6dWb4nnDtlDhMbLZmCXLDo-fqGCe1mwRo3S0aZmj3U1C3NKBCudZf1mrpjhEnUw8BP5ifWc3yWbMkn0weL4kFdtMXpcoo-ID1pCVcaI-QKVRvZtDivezPd2T6GJC1KnMXV0SJK6vdHwiuvcl1VVpCtxrEFKmqqIWoNunwe--MpwI&pv=2

http://s7515.chomikuj.pl/File.aspx?e=j3unaNjeLXMYOcV4I8XJ6dWb4nnDtlDhMbLZmCXLDo8Y48xksLX8ks3iIbmlwPOcMVYrge0faLoxueo4Cu3QVkxhU9wGc5l0CGMwbqMH4PSfI3YvOseiFXoZDfeUVBnmBO-E7gnxnm0eADna4FbRHfb7--t6mjpSsy8Gp18P9L2_5cyBb_qkppgUPuEqy_XY&pv=2

http://sklep.rp.pl/pobierz_publikacje.php?pubId=114381

http://www.sklep.rp.pl/pobierz_publikacje.php?pubId=108251

http://www.sklep.rp.pl/pobierz_publikacje.php?pubId=105491

http://s7515.chomikuj.pl/File.aspx?e=j3unaNjeLXMYOcV4I8XJ6dWb4nnDtlDhMbLZmCXLDo_4ZW27-dNRZmbEB_W4fKGXcw7uEYb-67IxLCwaKLetd15WhusRxccpVXEI17nzI1YmomzcbEiePjJWwPxeWUSGCZhdH6wpklAZRBWJ7d9tt8DlD2BQfySzt0HBPIJZgkrWXe64bekSZ71yqnBpDSUW&pv=2

http://www.sklep.rp.pl/pobierz_publikacje.php?pubId=106084

http://s7515.chomikuj.pl/File.aspx?e=j3unaNjeLXMYOcV4I8XJ6dWb4nnDtlDhMbLZmCXLDo9a3Qru8qrm11L4YcOMs5UZk39_0sPo_SgwWJSTUX7m8sE4OtdGS_suRTD2BN6WxobZJ05XuoiBgsKuJe4tv5wCnBKNJhivyfSKt-cIM-sn1tl9vnfv68egVlfHjlnK0SERPcdB1TiXTlVGL0W68vCe&pv=2

http://sklep.rp.pl/pobierz_publikacje.php?pubId=105608

Latest 30 of 47 download URLs

Scan maĺ‚a ksiä™gowoĺ›ä‡ (mk) 2016.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.