home

screentogif.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from www.filemissed.com.
MD5:
71660a815895890488d4ee32e2eb705c

SHA-1:
f4a87a6b76c2ab336766388b360f96684628675e

SHA-256:
c8cfcf1cdd0f4d1de0cf1ddc028cf4eeb74b0a61d55de945205d025d40ec597d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/16/2024 12:39:21 AM UTC  (today)

File size:
817.3 KB (836,952 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\downloads\screentogif.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
24576:FkVQrmJRRRRRRRRRRRyC3HVfWLajdGu7jvJzJsafpB:F6QrkRRRRRRRRRRRPVfWeT1D

Entry point:
50, 4B, 03, 04, 14, 00, 00, 00, 08, 00, 7B, A1, 84, 45, AC, B9, F7, 08, B4, C4, 0C, 00, 00, 56, 7E, 00, 0F, 00, 00, 00, 53, 63, 72, 65, 65, 6E, 54, 6F, 47, 69, 66, 2E, 65, 78, 65, B4, 3A, 69, 78, 5C, D5, 75, 77, DE, 7B, 73, DF, 32, 33, 92, EE, 3C, E9, 8D, 16, 5B, 1A, D9, B2, F4, 3C, 33, 96, E4, 11, 8B, C1, B6, 64, 9B, 35, E0, 0D, 63, 40, B2, 01, 9B, 35, 78, C1, CF, CC, 18, 1B, 2C, 4B, 38, 69, 20, 61, B1, C1, 25, 21, 40, ED, 94, B8, 69, 49, 08, 5B, 08, 6D, 80, 2C, 40, 20, 34, D0, 50, 96, D0, A6, 6D, 40, 09...
 
[+]

Entropy:
7.9821  (probably packed)

The file screentogif.exe has been seen being distributed by the following URL.

http://www.filemissed.com/.../1671_screentogif.exe

Scan screentogif.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.