home

photoscissorssetup.exe

PhotoScissors

teorex

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from www.photoscissors.com.
Publisher:
teorex

Product:
PhotoScissors

Description:
PhotoScissors Setup

Version:
3.0

MD5:
98f7cd6a8a9797f43f892f3f2b8337d7

SHA-1:
a6c79b40623f07e968b327e22225b36ccf26d440

SHA-256:
b5fa62e979a3e625d7f08a7216b35fc9370e2a67e35597d767c50920f5139b7a

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 12:54:32 PM UTC  (today)

File size:
9.5 MB (10,000,918 bytes)

Product version:
3.0

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\photoscissorssetup.exe

File PE Metadata
Compilation timestamp:
6/19/1992 3:22:17 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:1bQ88mivlHYDQZNov/RDMo53gz+HS558gUShHjX4mZtOknU+FoyJV6TYKe:1bYmGHMnvao53xS4gUShDX49uoyqT5e

Entry address:
0xA5F8

Entry point:
81, FD, B3, B7, 00, 00, 72, 03, C6, C1, 05, 56, 55, 0F, AF, C6, 0F, AF, FF, 8A, C3, F2, 85, F7, FE, C4, 24, 15, 13, D3, BF, FC, 41, 13, D0, FF, CF, BB, 9B, FB, 0F, 00, 8D, 35, 2B, 2F, 41, 30, 81, F3, 00, 5F, 00, 00, 34, E5, 8D, 05, 5E, B4, F9, 00, 81, EB, C2, 02, 00, 00, 75, 04, FE, C9, 8B, F3, 2B, EB, 76, 0D, 8D, 35, 10, 33, 45, 62, 35, 73, 41, 6A, 9F, 89, D8, 81, C5, 11, 7A, 0F, 00, 86, D8, 0F, B7, F8, 84, D4, 74, 06, 4F, 0F, AF, D7, FF, CB, 68, 5D, A3, 48, 00, 68, 55, F2, F4, 00, 0F, AF, E8, 8B, FA, F7...
 
[+]

Entropy:
7.9997  (probably packed)

Code size:
39.5 KB (40,448 bytes)

The file photoscissorssetup.exe has been seen being distributed by the following URL.

https://www.photoscissors.com/PhotoScissorsSetup.exe

Scan photoscissorssetup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.