home

neonvisual_setup_014.exe

NeonVisual

Neon Soft

This is a setup program which is used to install the application. The file has been seen being downloaded from oformi.net and multiple other hosts.
Publisher:
Neon Soft

Product:
NeonVisual

Version:
0.14.0.6

MD5:
41f2191f06c49d829fd4e7a65dbcf25b

SHA-1:
9c89e6a2ec139fbfa080d344e58bd33ba9e6d777

SHA-256:
fbbf372196270ac0198d898c26865036122d7b3c6811aae1caeafcb8444771df

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 8:31:47 PM UTC  (today)

File size:
23.6 MB (24,774,144 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\neonvisual_setup_014.exe

File PE Metadata
Compilation timestamp:
9/14/2015 3:46:16 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
393216:yfwD2C2IuM4Wg6n4zoplcMDnDlobmqo168tVWL7XleIuRF:yfOMM4FY9DnDlobmPLKbleIsF

Entry address:
0x338B94

Entry point:
55, 8B, EC, 83, C4, F0, B8, 54, E1, 72, 00, E8, AC, 53, CD, FF, A1, 74, 5E, 74, 00, 8B, 00, E8, 28, F5, EB, FF, 8B, 0D, BC, 60, 74, 00, A1, 74, 5E, 74, 00, 8B, 00, 8B, 15, A4, BF, 72, 00, E8, 28, F5, EB, FF, A1, 74, 5E, 74, 00, 8B, 00, E8, 80, F6, EB, FF, E8, 7B, 03, CD, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
3.2 MB (3,372,032 bytes)

The file neonvisual_setup_014.exe has been seen being distributed by the following 2 URLs.

http://oformi.net/.../download.php?id=9501

http://neonvisual.ru/download.php?name=NeonVisual_setup_014.exe

Scan neonvisual_setup_014.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.