pity2012.exe

PITy 2012

NEONET CONSULTING S.C.

This is a setup program which is used to install the application. The file has been seen being downloaded from dn.pit-37.info and multiple other hosts.
Publisher:
NEONET CONSULTING S.C.   (signed by NEONET CONSULTING S.C.)

Product:
PITy 2012

Version:
1.15

MD5:
1a51a6049f77bea97a808d49a5ff8181

SHA-1:
bd3946ec5c7ef70f023b96bd3e8c589289a10b86

SHA-256:
99a67ffcd841c51aa565c9fd49a239f80a3bac6f2433fafb1a813dbc7eaf6678

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 11:36:32 AM UTC  (today)

File size:
22.4 MB (23,486,288 bytes)

Product version:
1.15

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\pity2012.exe

Digital Signature
Authority:
Unizeto Technologies S.A.

Valid from:
1/31/2013 1:00:00 AM

Valid to:
1/31/2014 1:00:00 AM

Subject:
E=biuro@taxmachine.pl, CN=NEONET CONSULTING S.C., O=NEONET CONSULTING S.C., C=PL

Issuer:
CN=Certum Code Signing CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:
2E1DC88F0123661449692135622278C2

File PE Metadata
Compilation timestamp:
10/9/2012 10:48:22 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
393216:D3A9XZWXFucPybdirU6U5eBcf4wQv7YmmNmBderycIB5sEZgo25+Mt6GiMQf:MCVuc6x6ce2f4BDN/dM5ILsDo25+MtOT

Entry address:
0xF3BC

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, 64, ED, 40, 00, E8, E8, 71, FF, FF, 33, C0, 55, 68, 89, FA, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 45, FA, 40, 00, 64, FF, 32, 64, 89, 22, A1, 48, 3B, 41, 00, E8, BE, F7, FF, FF, E8, 65, F3, FF, FF, 8D, 55, EC, 33, C0, E8, F7, C3, FF, FF, 8B, 55, EC, B8, 4C, 66, 41, 00, E8, 6A, 58, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, 4C, 66, 41, 00, B2, 01...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
59 KB (60,416 bytes)

The file pity2012.exe has been seen being distributed by the following 2 URLs.

http://dn.pit-37.info/pity2012.exe

Scan pity2012.exe - Powered by Reason Core Security