prodemo.exe

Proteus 8 Demonstration

Labcenter Electronics

This is a self-extracting archive and installer. The file has been seen being downloaded from www.applicationconecptclean.com and multiple other hosts.
Publisher:
Labcenter Electronics  (signed and verified)

Product:
Proteus 8 Demonstration

Description:
This installer database contains the logic and data required to install Proteus 8 Demonstration.

Version:
8.3.19906.0

MD5:
112330c6a48cd0ae6001d9b80368f7b5

SHA-1:
1fb66cd6543a81d9c682925c374df83466198948

SHA-256:
75e6ace125b767be5a2641942cc070a6dc3fc35a3d54b62acd05716dea52f20b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/25/2024 12:49:20 AM UTC  (today)

File size:
259.4 MB (272,029,096 bytes)

Product version:
8.3.19906.0

Copyright:
Copyright (C) Labcenter Electronics

Original file name:
setup_demo8.3.19906.0.exe

File type:
Executable application (Win32 EXE)

Language:
English

Common path:
C:\users\{user}\downloads\prodemo.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
7/18/2014 12:00:00 AM

Valid to:
7/17/2016 11:59:59 PM

Subject:
CN=Labcenter Electronics, O=Labcenter Electronics, STREET=53-55, STREET=Main Street, L=Skipton, S=North Yorkshire, PostalCode=BD23 5AA, C=GB

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00998D4A34793D9D0221FC3316727E1332

File PE Metadata
Compilation timestamp:
6/6/2011 11:54:16 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6291456:wMoKX48+syMvI9WO8TAqnLjzhqZcxQmxkdcjyh2IqflFhhhRr9:wiP+s7EW5TAqnLfPx6dcjy2dJ9

Entry address:
0x2C65E

Entry point:
E8, 8F, 91, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, EC, 10, 53, 56, FF, 75, 10, 8D, 4D, F0, E8, 89, FA, FF, FF, 8B, 5D, 08, 33, F6, 3B, DE, 75, 2F, E8, 3B, 2B, 00, 00, 56, 56, 56, 56, 56, C7, 00, 16, 00, 00, 00, E8, C3, 2A, 00, 00, 83, C4, 14, 80, 7D, FC, 00, 74, 07, 8B, 45, F8, 83, 60, 70, FD, B8, FF, FF, FF, 7F, E9, C0, 00, 00, 00, 57, 8B, 7D, 0C, 3B, FE, 75, 2F, E8, 04, 2B, 00, 00, 56, 56, 56, 56, 56, C7, 00, 16, 00, 00, 00, E8, 8C, 2A, 00, 00, 83, C4, 14, 80, 7D, FC, 00, 74, 07, 8B, 45, F8...
 
[+]

Code size:
246.5 KB (252,416 bytes)

The file prodemo.exe has been seen being distributed by the following 13 URLs.

http://www.applicationconecptclean.com/JnImYOWapzFIa5hnSvlQAsMoeCWzpz6mOvx0zUPjRIfj52ZjeKd84KpRFOx97w8vDyj j Dqa_fVULr9ve6nsHMy0IOZhAlVo1kHgm6MEQH5DT5BVWrjqrGTdNjnLpPQq6GeJ6Qg5a6Vs12Nq rZ4eev6RwCTGoRUg aS wn byVloRiapWv_w BWVcNv a9ICvN53dMpjx6bH4sftNACaFdhwExjxvssGa1kdocPZoFuq4lwf5OXi50967rXOetmatiSq8M6CHuyaiaa wWJ D8WapM4sCWJHviBQmgeQGTON7MVjvjCuqsLUQNqnclH4akbMGMGy2a0G8zu43d8j4M0JJaCeZxfjPh37cGUPwrZypcV5tCFIIkXBgLKY8IM6i0YUvrVDVYjd7Kyje7XbHxTG4M5XUxRKFMA25vvezQr5x6DeGSAL4r6RfKD1Khuy9YGkxZbL7lOcPjlWvLIrqGJn7neu9WnQuIyGlTjTO89QsOOW_wZA9ZKOYpgtbCM70wDNGLhbQK8NKJNn5QD_FDrGkipycpvbPP73CTc7P09NRaPAF T1seXZRDeDADb_M9RVlypoueTB7xar CMafAXSis0Mi_7XeBPYqBku1ptWBL0VY=-G0oAAGR30fO1zT1 T2qSIlkKbMCBUzjQYuNsgw4bcKB58B5vvE7HJnvWlRXgOlTqK9mQOXPk4KlfcmyXTIpgucxLkH4WT1G AA==-e

http://www.cleandeliverytour.com/c?x=SPYsrLdabanJ/7TvV jTN5 K0 NidDF UWNH5vG4kyo=&c=Z/pWi JP4cNeUF3eFknicNcN395H/wlotgiZx8fqZ/szh2DvKBMGa6jB1nFAkdcB31ZAk4BQt6ISMg7ujtfMpLhfX5NyNgmZtXd265h09WxgWCCTYGU68SBCYfksVIPTw0o8QQB d 6Ak9PV4cLHOht9481sKUulofWCWXC5PcU=&e=0&downloadAs=proteus-8.exe&fallback_url=http://pf.benjaminstrahs.com/s/1459797380/es/.../2/226065-1792019-proteus.exe

http://www.ranchmetabits.com/nf3s20RZyBHTYzbqTtshToEAyuTI0DVxaHaUx4qoZRF7wCzm6f7fR6ES1TvdPhh7tHVspmFG6QhbH4JCcejXOcpLfPUrBq1PdaqD KBt7wB0r5CdZ7kG0J6dFwTXUqfXTC7AvC_FDOJR4ajB3i0aFQaldcRbFnIOZaW _XijFMVIgK2Dl7 W0Y KmvmdvAQ0Va7B8mIK-G_0CAGS ttEfD2wQuT pAakULz5GOoWJHLC3xRDzSey9ceDJGiM_i8Bc4T5kXX6ke7fhvdJRi8kjO1d_zG6rM7nXIuRC22f7YoFVpnu0KBlHDA5onGbWKNSQSyiLTEN03Df_fHwuuLIGvU6UGiQl6R 5SL7snLVOCMRJdpLQwIzTjmUum2Xv3hG5AzRHLWz6gDSSuBBaZNmFFAemCktdNCPjqKlR6zuUz0qF65gYSd0hZuym ECM0SNmLPRQUQnySbRzT6JFt1pL0i9uicdQbtOyTchUrbzBZvnQ21flu1whDPuMElCMASRWp3MZEOQZKb5AbW264wVqcQx5TyjDg29abTZ5ne_dE9Ev zN4OJKQ_GnJFk2 cPC Dhf0Sa9HslY_rHpKOwda9RvPFfnBBaMnheyTcfm5N4RAJ5HTlZTwsyTJaboKCZ_OR9u2nrrE77UWu6TqNxrJ9MTEphykkWKTx3s vjQijUbZqLTM79uZmSB6FTmClTSpv5r5aliEkBfcmaLHxjr8EsYZQYbXxig77nheu zyx53myFzbuy1brFt5CYhBLy5XVsW3Hi4mGG9lpn1JbUJRd_ax5xFP1LNUz7jQQm3FEI9bpUECsgIdrje0zS8ToRFI2a8KPVO_yTG20kp7hX31ng6SzU_ieAYsNHA173R7Fb_zBUqkvjuOikMHXLgOVlRCnPafnwo68rziEcOWm0luMnPY6xjQSv6kP coxwr gZlV8zyLSxzRNFlSLHkHYeyCHaV9JAnLep

http://www.ranchmetabits.com/DjQ2EJllzY5qx2sUmh4nqhEJ6zMGgi_bESFL3fxK7_2_JNzdOrUoxLVSlftJdWYJ49zUbAOMEAhYw7twxNt9NHFvRdXP9eLkS2hM3cWsEarmlz3ij4h2k5aEiRpY_L ZyMB7MzFxAo4R4p8zX8XG2fraI4y_uORGiBFw0ES5LZryKBF_yOc=-G_0CAGTQTWocOEH0XoFS1EoXKrgkwEQO2NtiiPkk9t448GSNkZ9FYK6ffci6_Hjv3Yb3Svqysh5gZRsI VqsKOmODEsFdkpAPb04jHoXeI5 cQGvzDiDeorc13rPH9LnraVrtxCBzeSZR13y2MjkBegm5jvregaNtL6NeJ0g9hw1kgdHt5WQXAfKnAL9HjVYqcXK6ZuH8tFDUEj 5IEUiTQJLNes9yqX WlXkCHqQeL7cKh7lYWltTE k_Dn54RvEsGvLfp xNDDVwdkF8_7p1AZlF9Pe6jwrRquwv3IpuTZI2J5HdpEyicMN9pgP9OU8q0wJduNaq6s2971rTn3rkNVHWgh4wmrsgIInkTOhYvuIEDbJ4KNmWT9GqZjeqqn0JFU1Oq3aCslDiWZeg9zms7NRPUHJDNM4Lmqj3ylnM_9DlOkR DRRpl i5G7WmbyZ L8z7FuIL78XLu4T0JqBDWgj S9s0uaIrrAVR8hYBvhLXxgJh5l_YwPUYhjPL3jNo46ZZpgAOmpOWSCiLGZ9KMJLm5ZxTOX67mMnASeBEPzNL_EtCN2T1Pfx2Rv6o9Pbk3V aQo52qNn6AKOLK7l9XTmZ1cZLaUtSqAJT05ZjdwoCBxkpOGiDG5EeQMyURnFGZxmiEqf4iKLzzoZqzbwEucyWJtzCMwMU6vPpCqIqDkt2x1eBW9OU5mz3n856eMjjwve8SwffEYhUhLza2vJaJM3EqLp9HYea7nmXzfjnMOG0MOCWNxMzB0KGC53kFyqiPNv4XG2T0suRSvPsqFI7

http://www.vaultsfarmhosting.com/WrmsErg3WQA_ywep7LjehzXPQOG TNCo6WMsd5z7HYhgURR79_tFP1rhtiP9WCJEX3rAkh9u7VEeh5GEMkS8w3TibCPY3Dx3yKL3kfPDSsFjiEIWaTCd3Y6T6BdQk11gdymCvdGYhHToCtV1vk3GAMhdFIyBitqYcYFfLCwrOVFbyXncOBbs1OSg0UcwtLFHdxYRR8eHU3FwcYPU C3LOV3RSGlsfw==-G0oAAGR3ntc2xizfSU1SpJYCG3DgFA602DjboMMGHGgevMcbrzuw21ltZwW4TZf6TjErpxxUhMyJ2VxCEYha5yVIP4vnaN8A

http://www.vaultsfarmhosting.com/c?x=BIB/Qnk6VOd7lajfxFsiubyhiARUM76x1LHI2wSf0Wk=&e=0&c=XyvRW FuunMx9xqTM2Lrldrtvj9GArS D7zESO6c0qId7uafX9SvHyxJL0GS3vw12rYF71b4FNHl5Gh5SzZNKzeLsjE56Z7Ue4PLz3cg3Ns31YNnoMKncBzwvZ5m2 rROulTLsAPflkKg0q2of4C5Q==&downloadAs=proteus-8.exe&fallback_url=http://pf.benjaminstrahs.com/s/1468423540/fr/.../2/226065-1792019-proteus.exe

http://pf.toggle.com/s/1456085291/pt/.../2/226065-1792019-proteus.exe

Scan prodemo.exe - Powered by Reason Core Security