pdaneta300.exe

PdaNet

June Fabrics Technology Inc.

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.
Publisher:
June Fabrics Technology Inc.   (signed by June Fabrics Technology Inc.)

Product:
PdaNet

Description:
PdaNet for Android

Version:
3.0.0.0

MD5:
0add58c8811aac5aa00c8c2c86a936b0

SHA-1:
28bbeba2eb284ee114a30df368f43e76692098ba

SHA-256:
21dce1b6494e2693f3de58e0c90d552f98dcc08a66553d9210bc64e0e42c1597

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/2/2024 9:20:17 AM UTC  (today)

File size:
2.4 MB (2,542,000 bytes)

Product version:
3.0.0.0

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
7/6/2010 7:58:46 PM

Valid to:
7/7/2011 7:58:45 PM

Subject:
CN=June Fabrics Technology Inc., O=June Fabrics Technology Inc., L=Fairfax, S=VA, C=US

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
01000000000129AAA07E1C

File PE Metadata
Compilation timestamp:
6/19/1992 5:22:17 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:zaUI101oxE1fAWpIiUpEHNB3Nac3XJH8uzAQKmC8z5wRinXBgb:eUI101LAW0av3NacHXqL8zSYRgb

Entry address:
0x9C40

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 86, 94, FF, FF, E8, 8D, A6, FF, FF, E8, 1C, A9, FF, FF, E8, 53, C9, FF, FF, E8, 9A, C9, FF, FF, E8, C9, F2, FF, FF, E8, 30, F4, FF, FF, 33, C0, 55, 68, FC, A2, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, C5, A2, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 96, FE, FF, FF, E8, C9, FA, FF, FF, 8D, 55, F0, 33, C0, E8, 83, CF, FF, FF, 8B, 55, F0, B8, E8, CD, 40, 00, E8, 32, 95, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, E8, CD...
 
[+]

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
37 KB (37,888 bytes)

The file pdaneta300.exe has been seen being distributed by the following 27 URLs.

http://gsf-cf.softonic.com/28b/beb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92022&instance=softonic_en&type=PROGRAM&Expires=1452041511&Signature=KuJ-BUibtSbcCz4VEzTQA-5NifgdhKoumh0HL~82l0yuj83APDkXFMSiI4ZK3VhfrNNF-48Oflxm2srqrEQsq8CSKOpDuvBCcfqCRpVGKQZJseoinpfY4w2vQ98Da-Hk9EzWNBKAWQTpB9wk0BTM6KvOSUCP3AGHN7ez1OH8TIE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PdaNetA300.exe

http://gsf-cf.softonic.com/28b/beb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92022&instance=softonic_en&type=PROGRAM&Expires=1478386939&Signature=U-BflxM7oHXi9BZgncMe61DNahllVvSTTzDYOp-2m7Cy27o6kP0HaKpGJC-ZYQJquJaB1ZADs0CGnBih7zLHG8T6bxDsd0~yvKi~JyNFLZ0hYANHu4-3qNsJ3bdynnnRo~iKrjzvRe5PUo7G85m0oPB3pbGx9Bo0skkb01DBQrs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PdaNetA300.exe

http://gsf-cf.softonic.com/28b/beb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92022&instance=softonic_en&type=PROGRAM&Expires=1477001464&Signature=g15Xn8ePI26m4dGguilCJzCarp4meSqrdMgoC4cbj-W6SrTkVIa3dOq2ZsKuq7oiYDeyYZznstVRYMrx~lMElNHTTs-UPFQs~AW8S5NnPWCi24mh5kqg8W4PxA7VQm5YAvHuzS2FDXwpdg0XyrTYXfF~vo51RHGExB8MoI0SdPw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PdaNetA300.exe

http://gsf-cf.softonic.com/28b/beb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92022&instance=softonic_en&type=PROGRAM&Expires=1477985367&Signature=bfLiIfs68M~zEdVH4enluk~98tCI4mU450rIV9DnmUXFWEM9ik7KHJO9vCUHeG19MRa7U1-gdnNrBEYNpdPnmDOnM-VsYOGPM--MTAbeOFJhKAhWXkzUXpVFBdWITxizv9Y3odMqkYhNrqgzVGVLCC5us2cs~8EeoQ1c2j~VN1A_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PdaNetA300.exe

http://gsf-cf.softonic.com/28b/beb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92022&instance=softonic_en&type=PROGRAM&Expires=1449921535&Signature=Io8rmDe3tMFkWGXsZYq2oaY9IY96ljDMrpFFB5noDsP40PsT4yJOallVCEYRmUCz9ewgbEbySKT~Wmqkt3MLHqnbOro52UReyjmTSqwv6K~H6nv6Peky0jxrhxp~IN2fQZqKBFzcSjrt~CWge0sen4g4xLq7dosvqOjcjfopdoI_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PdaNetA300.exe

http://gsf-cf.softonic.com/28b/beb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92022&instance=softonic_en&type=PROGRAM&Expires=1477607665&Signature=KnfiJK86wDnnVlaW21u8jcrnGsHrRy6I~kBRKpTx1oqAzsnH0fUbWvUFCoD34iNdO2LbFaZBQ~nLKDp0JJcSYsi0DfV2PXmb3SHceTEiVLKYx9z7zNPlFSCi6Qr20ZyOd41LhZacJXtPWiyBj7lgesfkQm1lL0sHfYXCRBTLdGo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PdaNetA300.exe

http://gsf-cf.softonic.com/28b/beb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92022&instance=softonic_en&type=PROGRAM&Expires=1445053441&Signature=ewFVLvux9OBUFdWat46lCExfgRx7oAaswaN2sxm7XoEYqkOz8nLWM6iuSfcP-7y~UalE1dAFFLiwY0u10SCjP781jcQEk~YeBY5H6csNK9fEPAhY2MkYtwun8vvCZQAXUEUwHEdlEf7WzxLGtKrRfyntbB3wQANt3anDNqSiykM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PdaNetA300.exe

http://gsf-cf.softonic.com/28b/beb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92022&instance=softonic_es&type=PROGRAM&Expires=1445307185&Signature=iBDtqTCmJdxaenh7TlnN15aAC52qnzBFU4Ou8PVe1ngaJ3q4cBvdFuoJHVFLchdbHTw8NRK0sxanoeXX-v8MKkAPMIwtbIImTqW4EM2Rw02azHTdTcFnv7oNHsnCYHFnT9VcpQUgMg8Y2F-cJygkDpUHTYx1b-yj48luw0wmB6c_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PdaNetA300.exe

http://gsf-cf.softonic.com/28b/beb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92022&instance=softonic_en&type=PROGRAM&Expires=1480043781&Signature=KS~MpVZSPNWfPmpSEVgW03acfi5QtOGVeViTT8XD0dCvhWq3qjbjKIzWpKSlR5xowYu0UMqRLng0J2ycE~qyCmuAx1uK6QbNGtPRa~ssB7pveeOJnXg5nMLkSvy~drI5HksKvRGJYcU~q-hKURo5J92ZmpZn2eHk9MgDbx1njfw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=PdaNetA300.exe

http://gsf-cf.softonic.com/28b/beb/.../file?SD_used=0&channel=WEB&fdh=no&id_file=92022&instance=softonic_es&type=PROGRAM&Expires=1422677751&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=OHtkO13B5KmCAaeYWTPnapsIGLT0E2OW6fkQ~cy~QT7MKUpNFYQf7TN7bnNOBHah1Wu9of8FP3RVcCPA7bojs0X78yn4RpPexbvr8LaIOns1cbn0myDpGj2bSArriXzByhfwVi4zsIjevFGidG3nNN8aDd~2FV03FR0rnQoS7DM_&filename=PdaNetA300.exe

Scan pdaneta300.exe - Powered by Reason Core Security