quickgammav4en.exe

QuickGamma

Eberhard Werle

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from softpedia-secure-download.com and multiple other hosts.
Publisher:
Eberhard Werle

Product:
QuickGamma

Description:
QuickGamma Setup

Version:
4.0.0.2

MD5:
d70b4882fa9e6fa1a88be621faeadd06

SHA-1:
eb41a6656b59b2a896db5b5a4a9c0f34ea184c4f

SHA-256:
1c4beac792889a345a3696cb26f34fc9435e5c2a48e60c91c63863314bc5d6c0

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/14/2024 9:36:46 PM UTC  (today)

File size:
1.3 MB (1,400,573 bytes)

Product version:
4.0.0.2

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\quickgammav4en.exe

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:1nahyGy8wpLQgalctSBEBFFGFC2789Dk/ztz2hGt2ybWt9lspVK4Lq/fUVogw+nm:1ahq8wpLQEJBFsQ2gQBz2hI1Wxs3hYM8

Entry address:
0x9C40

Entry point:
55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 86, 94, FF, FF, E8, 8D, A6, FF, FF, E8, 1C, A9, FF, FF, E8, 53, C9, FF, FF, E8, 9A, C9, FF, FF, E8, C9, F2, FF, FF, E8, 30, F4, FF, FF, 33, C0, 55, 68, FC, A2, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, C5, A2, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 96, FE, FF, FF, E8, C9, FA, FF, FF, 8D, 55, F0, 33, C0, E8, 83, CF, FF, FF, 8B, 55, F0, B8, E8, CD, 40, 00, E8, 32, 95, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, E8, CD...
 
[+]

Entropy:
7.9793

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
37 KB (37,888 bytes)

The file quickgammav4en.exe has been seen being distributed by the following 50 URLs.

https://softpedia-secure-download.com/dl/ae7bf8eb42ec1c6126075887b4993ba8/588fc549/100008894/software/.../QuickGammaV4EN.exe

http://www.techspot.com/downloads/downloadnow/.../?evp=0916bf02c1be30399289b475868dae34&file=1

http://download.softpedia.com/dl/f7eae364528777a236033ffad22ae9ce/5492f79b/100008894/software/.../QuickGammaV4EN.exe

https://download.heise.de/software/09c0ef9a0d2bfa10c1604094f525cc05/581c1944/.../quickgammav4en.exe

https://download.heise.de/software/0b3291216bddabcd0e56b7e1531a38bc/57f8fca8/.../quickgammav4en.exe

http://download.softpedia.com/dl/3eff346314d594d1c0f0c9eecc9fb4f3/57f56052/100008894/software/.../QuickGammaV4EN.exe

http://download.softpedia.ro/dl/be6bfe40eea78b67ae113b059294ddec/58188af4/100008894/software/.../QuickGammaV4EN.exe

http://download.softpedia.com/dl/071d7028bbe211e4894c3e7e65f420f5/57f82ef6/100008894/software/.../QuickGammaV4EN.exe

http://download.softpedia.ro/dl/46fae8771c590b2bd9a380e956e33fed/56938f3d/100008894/software/.../QuickGammaV4EN.exe

https://download.heise.de/software/ba723d43c5181a7e7b677b025726d14f/5808ff41/.../quickgammav4en.exe

http://download.softpedia.ro/dl/513c82072dba051983964449f774ca94/571e1772/100008894/software/.../QuickGammaV4EN.exe

http://download.softpedia.com/dl/299791b93f0303586cfc32dd9906fdaa/580e47ac/100008894/software/.../QuickGammaV4EN.exe

http://download.softpedia.ro/dl/6aa8479965c8464c404502f6ea18279e/582ba39b/100008894/software/.../QuickGammaV4EN.exe

https://download.heise.de/software/0d2d9c3c9b273ee3af1c8e59c5d02cc8/575d5bac/.../quickgammav4en.exe

http://download.softpedia.com/dl/5dd63c5240cf529e00d2ed00d4298876/58256f65/100008894/software/.../QuickGammaV4EN.exe

http://download.softpedia.ro/dl/48a65a2c9f5b6b6d6c9c6f8fb5f9e671/579e634c/100008894/software/.../QuickGammaV4EN.exe

https://download.heise.de/software/61f4ca71a41580c4df429d9f5eae25a5/57ad1f7b/.../quickgammav4en.exe

http://download.softpedia.com/dl/9cbd6fdf653a5bc4e08dbcba449196a3/5744c45e/100008894/software/.../QuickGammaV4EN.exe

https://download.heise.de/software/dbba297076dee99209ec0048c30bf07c/57c3357c/.../quickgammav4en.exe

http://www.techspot.com/downloads/downloadnow/.../?evp=c3e319ded6df683df0e6cc6e7a37368f&file=1

Latest 30 of 61 download URLs

Scan quickgammav4en.exe - Powered by Reason Core Security