home

posprinterteste.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from eus1-api.asm.skype.com.
Version:
1.0.0.0

MD5:
4a3fa0ca14a1f00ce0c5348df3afa430

SHA-1:
c9b84dbf399397dacc4b98cc8bea2629ee53960e

SHA-256:
48dc4fdb77e8967943b5cc899005fbe70da3ce9e2318d4f940e7d2893ea5d7c1

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/1/2024 11:19:15 AM UTC  (today)

File size:
2.5 MB (2,610,688 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Language:
English (United States)

File PE Metadata
Compilation timestamp:
3/22/2016 4:10:45 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:8Ihd/nQAbiSkY2XAiCJ5NNNmTr+tr8UiWEOL5B+SZs/8Ed4gb6dzsmYXfV13MxVt:xvBidwj8UNEE5QSZi86b6BsPcbesOS

Entry address:
0x237910

Entry point:
55, 8B, EC, 83, C4, F0, B8, 38, EB, 62, 00, E8, 8C, 71, DD, FF, A1, 68, D4, 63, 00, 8B, 00, E8, 50, 3C, FB, FF, 8B, 0D, 14, D5, 63, 00, A1, 68, D4, 63, 00, 8B, 00, 8B, 15, A8, 75, 62, 00, E8, 50, 3C, FB, FF, A1, 68, D4, 63, 00, 8B, 00, E8, A0, 3D, FB, FF, E8, 87, 1E, DD, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
2.2 MB (2,318,848 bytes)

The file posprinterteste.exe has been seen being distributed by the following URL.

https://eus1-api.asm.skype.com/v1/objects/0-eus-d5-7c89f629641942c83d04fdd3eb3d0649/.../original

Scan posprinterteste.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.