home

mycam-1-1-32-bits.exe

Generic Internet program

The application mycam-1-1-32-bits.exe, “Generic Internet program Setup ” has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the Inno Setup installer, however the file is not signed with an authenticode signature from a trusted source. The file has been seen being downloaded from d.downloadsfilesnow.com and multiple other hosts.
Product:
Generic Internet program

Description:
Generic Internet program Setup

MD5:
7f7f982375b5fa5aac123aeed787419d

SHA-1:
0d4f682a0074f4009393c0f750dfa3fa6c3a3276

SHA-256:
84985cb4b8c2c0002c5bc48821c0fdcf87a2afed47b01f9a1d65dab2af9704bb

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/16/2024 12:34:06 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Installer.Bundler.Installer.Meta (M)
16.1.15.19

File size:
672 KB (688,111 bytes)

Product version:
1.5

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\mycam-1-1-32-bits.exe

File PE Metadata
Compilation timestamp:
6/19/1992 7:22:17 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:nsvpdGwhWNOlNFCeKNXGvYJbpfoC6dVOq+sXtEuK4ifuRxExubHaP/kY:nsvbGwhi4FC1XnVreXtEgZRxExM6P5

Entry address:
0x9C40

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 86, 94, FF, FF, E8, 8D, A6, FF, FF, E8, 1C, A9, FF, FF, E8, 53, C9, FF, FF, E8, 9A, C9, FF, FF, E8, C9, F2, FF, FF, E8, 30, F4, FF, FF, 33, C0, 55, 68, FC, A2, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, C5, A2, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 96, FE, FF, FF, E8, C9, FA, FF, FF, 8D, 55, F0, 33, C0, E8, 83, CF, FF, FF, 8B, 55, F0, B8, 24, CE, 40, 00, E8, 32, 95, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, 24, CE...
 
[+]

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
37 KB (37,888 bytes)

The file mycam-1-1-32-bits.exe has been seen being distributed by the following 4 URLs.

http://d.downloadsfilesnow.com/?ic_user_id=9289&data=Np7Jxbl jS4LrT2D1vBpn1ecKabwPzpSctyTHWZDoPHwSqFZH0r/XcED7DLwSip4O6zy/BZccvzYIeDya/aSEDNX3a3Wa873FfKyxwy589NylRZ7jxiLc3kPprCGTv c56KM4B/AImqn9WnbvNkp/5Onj8I7fEymIXI6MO14lg8Fp7GOV0RGrzy6lcKtChGzAZl3STeKt2pk8GnxhU2myBQV9AhoiMSkwFJMzXg/cS609TEJ81zyLwqM92LvWmJaMamA15Hi4nv3pNge mPmZDArutz1d/TSechBTfalPdWpXO/kxoDYhyoM64Uki5eMQTIm53AGu9Z7T6Ar 4mMCcAzCg4GecqYZzQOGwmrV37GhFKmG78EidKsr6zLfCel94xXcv8RukYeV3HkCvjx4fFRom2420nuNjnSUxB4vQDDBWi2dZsw11cj dgWeuKy2IebotXtuS4fMis23BwSvdP3FuICW4W/GZne2wEMyKKU8A4vCx8h 0Oaaf0GAUmnN/sqTJ9knyNM2oPPPKofxkWBKqhaubNlBcDgvp6Y4JK8SjxyXLYYh0LnnQfI08kCt8Nzv4WB5JCbWioYBQ fMkG6eIHk4eGyXT32cogQ4g120PW5OvJncWFwrWNcJzNh7rfnvD8aCtjL8w8IvO1jVUQOYDvKYG0AVNIa1X4qh4usi0x49L35GH1/AkRL3JA23M061GQZoc20YjwTONisCg==&key=cgtrf5Ac0Kdq4bqqFIGHgf Acnb/gllCWRmZHO1rR2oJaYrTU1BHHlwS1aCqfTOfLWrEPj/lwJkwjtj6EITktlbbwM8UINFJWV20s6Ze74233k7pX9p5h/IKPnpmo/V2BzJ uSZcrnG8ZAp/.../XIXl72ytCZvY8qeq4JZ9CmGOY1N66QTYE7fbN4Htxd eMAGT8iBlPCbg2jyJl

http://d.highaa.com/?ic_user_id=9289&data=pLtxWuNA6nndCm9HK81eSrsuuDyz40SrLlGBuitBoYlQRHSrvZdHM6kCw0ZYSzCfDEkSwsmCzFw9vXm3JL9dURgtx6mS8opQKWQcXBUwoT6f5dlJTNmdrn6FZgc4uyaYlgY088Ts/3uc3gx0OkHZudj6I2G/Sr/TNqEVSEkjghPyjB697y mUy7DtE6 DfqST1u/of7WvzobCOkduO0zuXuX1n64T8q3/fp0Sz5VN9msGnvFL p3RjWtrerd0gSdn 4b3NhBtPMLvp4l7ABCvycERn28iojltaJsezmDZrySvt0j9mYiE8V6kLes9dF9hPQXygh90F48R438U64n45IdWYOT1qsq2qEUg1GtV JvCZO5atGGjD3oDwqvLyBISpKfyQ/Gwm5 GKHuiNJVx8NxA1ViYWBEANpKTG7yMH BisbYiVxJXA6Ztn4mH7pW PT/wVyY8klc27BC98bjXPnnMyGpCYHEI1UYcAL3k9n 40Il5mo4e35IXdEgaz9/mF1JSAYDzPNOWPXchLAx8y8gcpZPHdAFT/4phVQeFoPiR1TE7OgnPTfd0HoFr FwiE7V5Vte3uKScj2QHdPJuvwQ9AvXP3SU0moy/lJwNWNu/s7iUpUEzdJ2NBQ0KRIDm1lc7bkph7sQ9aZ5ByLsqYNfxPWAtx2HDz8c8eMsKMdPRsN045WzN6W nHCeGn1Ja0JkKQbkhIY7a4u91C vTg==&key=RcK9UZFs8tW3ACj1UbcLukud65FADcEF7a7vbm Cip54zj/auA2KQ 1b1XSYg4cB/eeTKF217k0T/WgKZ6AwuMPdzeKHl36 dbYLFIKsT8Vczd1Cfig/jjUgroSSkP6JTJEEiFLE0wRPmCH3Bb5TIJL4t7vu1OHM/.../mGJpQbodhhcUhT7TxkBlpztHHCQvx5qliw51Bvd9WUZKKOMlU3IzQeUxmGhI9e

http://d.downloadsfilesnow.com/?ic_user_id=9289&data=zLBQudWoUZ9rUrBZlTUHHaFuHjCEQsf6YC5hvfe0CNtBlYpJDRptg4sAup6BrZoGqfQL4XSLdPbPj2SFUYr946KnoayIW DBof1yF7l/YcjbzWpS G7yUH20Kgrn63o26N tvhVdRC61PSVVRDEmO/jfJAfmapo8OOx2FZbg8eZRDA7UdOLEDw6ty79a5zcC dcFpRfAzvQ5j6uLS1fkEhUpzzeLVyWYQoMbvU0eM7TuCHYolZm9MYX/SH4qqwBBdfz Qd4jqf87IPrUsa2pbrjbYNGiAohKuWCnJ4TGo2ptd2m12pHMAEsZWJXBy29KEXkNfsb51IKHlsuNymF3wn0a siblUjL73gtXPvT3cFlo3QwE94z5HJduaVRqTzDkw1A/ZcMC9 5dFvdyN6lXBBaMzTz5M80nDn1xTFG/6wT9ZAivjRXnfE6cPCD6j3rjvwYQ8B7H/rVf9lmGr1uan6GJn52pu617Ukk6p6nEttaysnhbh6EFWQWsHglEHSucRd4e5cElavO2m7aDkUNtMVug BvTQhT4L720G0YkkpDQz kAL9tPe98UfcZJVABJ4onKvfyRRR64wyXnL5QhDzkSRrGjWSDOsXhsr6Gk9V2u7FWEEgIhQkN2q7Cd/UE601jP2fGgOci/z7mn5vcU9RNXgpOPUKusHEURsB pmGk2OJespZWdxb6ZhvKSpa6j8dMa dEEBZPm4y8gkrOEg==&key=nLbrJ 0XPFiyRKhcVkwp2ZfeKeqzUqDvYCVk3cMtQT53FdY3/Rj12ed5Kh4B6Uv/inIXkpp1TTgOAkDKvJ6KzklzxtNfmX3pglmu/.../6cJ62P3VRJaHXU41WtSXcXaABYPjiAdDR9KoD4DaZKok6bKFCx3UxIQ6NOJxUiLvnq3buS2h0hIxDdCljXEyQn94jsIsp7CUF3lOgu

http://d.downloadsfilesnow.com/?ic_user_id=9289&data=o1zO0zK8KK X2/KTLs2HTX10QBKN6MKP63 dkNjB0nm/t9Ay0 UVtLDCID 3Doh JlKm4NJIr03lhJ7NRwo92PJMnKbDRG15fBZaVPn2ew5e8EGL55rZMC2wBq Veg6JMitdXMUi9Yo5m3/TlCk7cAYCPsKX JwA5h6mKud6VGF35k/qLFY37TxA0mi2aeLQ5 8Bj38wsgLcklcX5dt76Wkkb6VNT4wF sEbjFxUbyHp9UyS3Zrd77XnRqutw8MyE1kshB3QYOtPdUryCbal6aEDgYo2i 0ZldE1gh65aYeS3CnoxEg9HwetJS6p1FasBqMNMX zxnxrc7FGQwghiRBV1I7RrSeMy2uK53yB0S0NeL Xzu yfHPJSSuNs1l0n/hwAz6KXRW1T9LXZ00ImgavQv/hSRkwWc2tEx49Gt5U7tVxXiESUBZJkUXL9iPRo8k82CGbxClv 6xwWcDORViOqS1GtGQ2bq/kH lIz2kdfiOjBBDyBc8WHvkTZIer4XHs9/KLeqdOJRsSd1LznHmAfl7CiHm9bR/TBJ1qHY8tAMJ2DiQc/mHsHy6vdxU/QxmCsyjuYpyJJUtHg8X Lm1quwfC4iUfVcQFwBVcDeDWssg6cV7TnlFkN4yzYWw4O2fFtwSlxiaElNa4/qOkCHwCEQAb5p0O4wuFpjd1GJA6PQOStKmuVFJLEoz5y8wo5xd4i/918zgjI6Zv5dHRLg==&key=mCGzqi3sUmdcapZN04H72adVJYcBgOLP ZsrHZlKNrDdhxjG2rfn8ok/C9aZhHVQgTnKm7B5O0jLHLK7DV guO J37gn1/N1JPEXQT293VlhKNnwPugH2oGUICfyXQW8FCJKxUhoemmVoNy40TVtOqbMfYxJpMjz0PxJhb3P/.../20TN

Remove mycam-1-1-32-bits.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.