powder-ursmrevamped-2.1.5.exe

MD5:
e8fdfe941a4f3393be987550488975a1

SHA-1:
149e606dc044d8c104b2a976c3e100a0bd76d110

SHA-256:
9cbe3c7f005b043f9459c2a079e563104c4868b40c3f9bab87d28116f2fbe650

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 2:45:01 AM UTC  (today)

File size:
1.8 MB (1,850,368 bytes)

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
11/21/2012 10:26:45 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.21

CTPH (ssdeep):
24576:cEAcQPCPNDRFE4M7fa84FuCET+e2HVWTdxAmJ+0ws90y1krEui/yQxe60U0fH:ecQPcTj8431Wz/1krE/7MU0f

Entry address:
0x1140

Entry point:
55, 89, E5, 83, EC, 18, C7, 04, 24, 02, 00, 00, 00, FF, 15, 04, 58, 62, 19, E8, C8, FE, FF, FF, 90, 8D, B4, 26, 00, 00, 00, 00, 55, 89, E5, 83, EC, 18, C7, 04, 24, 01, 00, 00, 00, FF, 15, 04, 58, 62, 19, E8, A8, FE, FF, FF, 90, 8D, B4, 26, 00, 00, 00, 00, 55, 89, E5, 53, 83, EC, 14, 8B, 45, 08, 8B, 00, 8B, 00, 3D, 91, 00, 00, C0, 77, 3B, 3D, 8D, 00, 00, C0, 72, 4B, BB, 01, 00, 00, 00, C7, 44, 24, 04, 00, 00, 00, 00, C7, 04, 24, 08, 00, 00, 00, E8, E3, 7A, 12, 00, 83, F8, 01, 0F, 84, FF, 00, 00, 00, 85, C0...
 
[+]

Entropy:
6.0719

Code size:
1.2 MB (1,213,952 bytes)

The file powder-ursmrevamped-2.1.5.exe has been seen being distributed by the following URL.

Scan powder-ursmrevamped-2.1.5.exe - Powered by Reason Core Security