home

setup129_64_de.exe

Sound Recorder and Editor

PolderbitS Software

This is a self-extracting archive and installer. The file has been seen being downloaded from download4.freefiles-12.de.
Publisher:
PolderbitS Software  (signed and verified)

Product:
Sound Recorder and Editor

Description:
PolderbitS Setup

Version:
9, 0, 0, 129

MD5:
bc93abd57f336f4fe85b8f7d353e7fde

SHA-1:
d0800dd7475b481e916233bee79034e1ca90b741

SHA-256:
248beb8640afa14bc4dfed2e99a98caf0521556906d56fdcefc4b8083d019e8f

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/5/2024 9:37:28 AM UTC  (today)

File size:
1.7 MB (1,752,440 bytes)

Product version:
9, 0, 0, 129

Copyright:
Copyright © PolderbitS Software

Original file name:
Setup_de.exe

File type:
Executable application (Win64 EXE)

Language:
German (Germany)

Common path:
C:\users\{user}\downloads\setup129_64_de.exe

Digital Signature
Signed by:
PolderbitS Software

Authority:
GlobalSign nv-sa

Valid from:
12/11/2010 10:39:17 AM

Valid to:
2/26/2012 9:06:39 AM

Subject:
E=info@polderbits.com, CN=PolderbitS Software, O=PolderbitS Software, S=The Netherlands, C=NL

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
0100000000012CD4FDD71B

File PE Metadata
Compilation timestamp:
7/10/2011 4:16:31 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
24576:ycRMmJpt3mr8Mf0Gg3m9/tb2XWSH6Ec/ARtFFDokeU7u9k2eBsiRm2VAZfX/8jVj:DRMGlpG0wg6otFFPm9Z/8C7m

Entry address:
0x251B0

Entry point:
48, 83, EC, 28, E8, 9F, 66, 00, 00, 48, 83, C4, 28, E9, 52, FE, FF, FF, CC, CC, 48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 20, 41, 8B, F1, 4D, 8B, D8, 4C, 8B, D2, 8B, F9, 48, 85, D2, 75, 18, E8, 70, 18, 00, 00, BB, 16, 00, 00, 00, 89, 18, E8, 1C, F5, FF, FF, 8B, C3, E9, AA, 00, 00, 00, 4D, 85, C0, 74, E3, C6, 02, 00, 8B, 54, 24, 50, 8B, C2, F7, D8, 48, 1B, C9, 48, F7, D9, 48, FF, C1, 4C, 3B, C1, 77, 0C, E8, 3A, 18, 00, 00, BB, 22, 00, 00, 00, EB, C8, 41, 8D, 41, FE, BB, 22, 00, 00, 00, 3B, C3...
 
[+]

Entropy:
7.8359  (probably packed)

Code size:
210.5 KB (215,552 bytes)

The file setup129_64_de.exe has been seen being distributed by the following URL.

http://download4.freefiles-12.de/software/s14822/d3677/14822/.../Setup129_64_de.exe

Scan setup129_64_de.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.