home

met_pr.exe

ЛекцияМай2005

Homt

This is a setup program which is used to install the application. The file has been seen being downloaded from student.gturp.spb.ru.
Publisher:
Homt

Product:
ЛекцияМай2005

Version:
1.00

MD5:
36a5a9a9a41c8c6ad4915126234359f2

SHA-1:
88dd8338c641cef3b992b0384d65ffcace838039

SHA-256:
6776271471bcc71b3a9d8b56c4915a3b478ddbdf89b054f5c29c17fd0ff617f5

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 12:25:16 AM UTC  (today)

File size:
2.3 MB (2,433,024 bytes)

Product version:
1.00

Original file name:
Начертательная_геометрия_Лекция_1.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\met_pr.exe

File PE Metadata
Compilation timestamp:
10/16/2007 10:01:34 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
24576:/dp1sEagtsirVHy5YBQuOebFdRf0GY4ierH/pLE1:TY4ierH/pLE1

Entry address:
0x1664

Entry point:
68, 2C, 34, 63, 00, E8, F0, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, E7, 5E, 4D, 94, C8, 55, D4, 42, 97, FC, 75, 68, 1A, 72, 6D, 9C, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 50, 72, 6F, 6A, 65, 63, 74, 31, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, FF, CC, 31, 00, 3C, E4, C6, 0F, 26, 74, 18, E8, 4F, A9, 41, AF, E6, B3, C6, 48, 64, 14, 28, 6E, E2, 55, 67, 01, 46, B8, 05, 21, FE, C5, B9, 86, E3, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00...
 
[+]

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
2.3 MB (2,420,736 bytes)

The file met_pr.exe has been seen being distributed by the following URL.

http://student.gturp.spb.ru/file.php/140/.../met_pr.exe

Scan met_pr.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.