home

pitdemo.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from s6496.chomikuj.pl and multiple other hosts.
MD5:
dc795e22ecf3d1506df3775ebc9a524a

SHA-1:
cb29d623b2647a2c348fa3ea898ddb47e1636e93

SHA-256:
00fa346fc87f31629ff664901e10ecb95a26c5b27d9b8311a518d419b95262dd

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 12:44:44 PM UTC  (today)

File size:
1.3 MB (1,399,334 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\pitdemo.exe

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:Us+outPFOvHAJnIgIrog3KXfLTThRfP0ZUll2zU1UhppXOY/wMTPMYcPO:Us+NtRnI7rogaXfLTFRfPu6SpFNTEB

Entry address:
0xECD4

Entry point:
55, 8B, EC, 83, C4, F4, 53, 56, 57, B8, 8C, EC, 40, 00, E8, 11, 65, FF, FF, E8, 70, FF, FF, FF, 33, C0, 55, 68, 67, ED, 40, 00, 64, FF, 30, 64, 89, 20, E8, E9, E4, FF, FF, 84, C0, 75, 28, 68, B4, ED, 40, 00, A1, D4, 04, 41, 00, 50, E8, 81, 66, FF, FF, A3, B0, 16, 41, 00, E8, 13, FD, FF, FF, 84, C0, 74, 0A, E8, 7A, FE, FF, FF, A3, AC, 16, 41, 00, B8, BC, 16, 41, 00, E8, 63, EF, FF, FF, A1, 3C, F8, 40, 00, 8B, 00, 50, A1, AC, 16, 41, 00, 50, E8, 8C, 66, FF, FF, A1, AC, 16, 41, 00, 50, E8, 89, 66, FF, FF, B8...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
55.5 KB (56,832 bytes)

The file pitdemo.exe has been seen being distributed by the following 2 URLs.

http://s6496.chomikuj.pl/File.aspx?e=GTuONZIj0bxKE3d3h_ruLq6IjJRNqkVO7prmSgzXg6b_6KyXStsmSKe6oiyN4741IGk-liu5TS5tf5otNbhtQsJPemAd3qbezP6VAz--qICd8kQVtUGHT7IhkE7bca4M5r90cOAhIV-Gj63xm7H3-w&pv=2

http://nahliksoft.com/.../pitdemo.exe

Scan pitdemo.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.