myroom_j8touoguinsn.exe

Launch35

Hewlett Packard Enterprise Company

Publisher:
Hewlett Packard Enterprise Company  (signed and verified)

Product:
Launch35

Version:
10.5.0.0002

MD5:
e83330a52c106ab83d221b2a7268937c

SHA-1:
948f7ed8665b8284736f311334989157f505b572

SHA-256:
f03724a609eb619e121a107e19df369148c72493e87f0e89818ad30bc3a8c263

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 2:28:22 AM UTC  (today)

File size:
47.5 KB (48,688 bytes)

Product version:
10.5.0.0002

Copyright:
Copyright © 2012

Original file name:
Launch.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\myroom_j8touoguinsn.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
4/14/2016 5:30:00 AM

Valid to:
4/15/2017 5:29:59 AM

Subject:
CN=Hewlett Packard Enterprise Company, OU=HP Cyber Security, O=Hewlett Packard Enterprise Company, STREET=3000 Hanover Street, L=Palo Alto, S=CA, PostalCode=94304, C=US

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
15E125F84433A71C13165400C2767488

File PE Metadata
Compilation timestamp:
5/5/2016 2:12:15 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
768:MqGG77vCeVBQ6wFaVNBlFLiGJQKzQiJvClrim:MvG77v1VBh6aV3H2o+yClrim

Entry address:
0xAF5E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.1923

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
36 KB (36,864 bytes)

The file myroom_j8touoguinsn.exe has been seen being distributed by the following 50 URLs.

https://www.myroom.hpe.com/attend/.../oymgt488s68h

https://www.myroom.hpe.com/attend/.../9oxzm-m009sf

https://www.myroom.hpe.com/Attend/.../u8lfqqft0cjh

https://www.myroom.hpe.com/attend/.../cvvf5-dpsgjf

https://www.myroom.hpe.com/attend/.../zfwbkpw-pyzn

https://www.myroom.hpe.com/attend/.../j3gunerpzzoi

https://www.myroom.hpe.com/attend/.../7q0n-nnlmmbn

https://myroom.hpe.com/Attend/.../aalpbe2fv6dg

https://www.myroom.hpe.com/attend/.../532xgp94r5r3

https://www.myroom.hpe.com/attend/.../z6kovz8gnyag

https://www.myroom.hpe.com/Attend/.../4z0zs95ycewz

https://www.myroom.hpe.com/attend/.../rmo44y0hrv9d

https://www.myroom.hpe.com/attend/.../gnmyvez1n72k

https://www.myroom.hpe.com/Attend/.../v5fuoaeomcp1

https://www.myroom.hpe.com/attend/.../12qpl-vdda33

https://www.myroom.hpe.com/Attend/.../scteabxcxbrc

https://www.myroom.hpe.com/attend/.../03lzc-6tbxqe

https://www.myroom.hpe.com/Attend/.../tql653k-hwq2

https://myroom.hpe.com/Attend/.../5eujsrdrrtr2

https://www.myroom.hpe.com/attend/.../vxbwm3mke1dx

https://www.myroom.hpe.com/Attend/.../7bwxozq-6stx

https://www.myroom.hpe.com/attend/.../q85gxb3e6f8p

https://www.myroom.hpe.com/Attend/.../su05x31gdkq3

https://www.myroom.hpe.com/Attend/.../2enzt3atbjrw

https://www.myroom.hpe.com/Attend/.../1tp3vjhafud4

https://www.myroom.hpe.com/attend/.../n5zwl6hzdm5i

https://www.myroom.hpe.com/Attend/.../6s0h-ptbd5gg

https://myroom.hpe.com/Attend/.../kj265kxqhki0

https://www.myroom.hpe.com/Attend/.../0-o73a-w2m6b

https://www.myroom.hpe.com/Attend/.../c83q2c2dcm8t

Latest 30 of 108 download URLs

Scan myroom_j8touoguinsn.exe - Powered by Reason Core Security