setup_coloriage2.exe

Qsc

This is a setup and installation application. The file has been seen being downloaded from www.denouvelbis.com.
Publisher:
Qsc

Description:
GP-Install

Version:
5.0.3.32

MD5:
141bea938cdae7528c566093e80d64e9

SHA-1:
8e0f7166f88d6515bf0cf291b723a83b2a34ed66

SHA-256:
9dffd408fac3e2192f3529d4ce663a5550b06820e26f7aea68ef4ce5761533ba

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 10:38:39 AM UTC  (today)

File size:
10.2 MB (10,747,118 bytes)

Product version:
5.0

File type:
Executable application (Win32 EXE)

Language:
English (United Kingdom)

Common path:
C:\users\{user}\downloads\setup_coloriage2.exe

File PE Metadata
Compilation timestamp:
6/19/1992 11:22:17 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:mKNH9zGWlQ8NdS9XhcdFdd2Nh8gqqdPDp9nz5oMdoMK+k+FSKphU/nV3M/koBP7:mKNH9HlBNU8dQr7HnFoGyxwenV3o7

Entry address:
0x11D3C

Entry point:
0F, AF, EB, FF, C1, 0C, 01, 88, C4, 89, EE, 68, 15, A4, 8D, 00, 68, 64, 5F, 34, 00, E8, 00, 00, 00, 00, 0F, AF, ED, 68, BD, 04, 00, 00, 59, 81, FD, 8E, 76, 00, 00, 72, 02, F6, DB, 81, E9, BD, 04, 00, 00, 76, 09, 69, F5, 66, 8B, 92, 32, 0F, BF, EB, F6, C5, 7D, 3B, CF, 77, 0C, 69, E8, 84, 47, 4E, 6A, 8D, 05, 75, 4C, 3E, EE, 4B, 8D, 3D, 42, 38, 0B, 00, 68, 92, FA, FF, FF, 88, CB, 5B, 81, C3, 6E, 05, 00, 00, 81, F3, 77, 00, 00, 00, 81, F3, 77, 00, 00, 00, 03, DF, 8B, FA, 81, F7, DE, 5C, 17, AA, 8B, F3, 3A, FC...
 
[+]

Entropy:
7.9974  (probably packed)

Code size:
68.5 KB (70,144 bytes)

The file setup_coloriage2.exe has been seen being distributed by the following URL.

Scan setup_coloriage2.exe - Powered by Reason Core Security