» setuplibrocassa.exe
Overview
Analysis
File Details
Downloads (1)

setuplibrocassa.exe

CyberInstaller Suite

SilverCyberTech

This is a self-extracting archive and installer. The file has been seen being downloaded from www.programmigratis.com.

File name:

setuplibrocassa.exe

Publisher:

SilverCyberTech

Product:

CyberInstaller Suite

Description:

Extractor for CyberInstaller packages

Version:

5.1.0.443

MD5:

0917384105ae8e8014951c87fb271ada

SHA-1:

68b1b106ad447c347665b9ee88728c7b9d3991aa

SHA-256:

925a3787219899fe60e8d6cdee82c28387bd9d4b75dd7d4445347183381f296c

Scanner detections:

2 / 68

Status:

Clean (2 probable false positive detections)

Explanation:

These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:

12/29/2024 6:51:58 PM UTC (today)

Scan engine

Detection

Engine version

Rising Antivirus

PE:Trojan.Flg!1.66BE

23.00.65.141215

Trend Micro House Call

Suspici.792C221A

7.2.351

File size:

7.8 MB (8,166,261 bytes)

Product version:

2009 1.2

Trademarks:

SilverCyberTech of Pappalardo Sergio

Original file name:

CyberExtractor

File type:

Executable application (Win32 EXE)

Language:

Italian (Italy)

File PE Metadata

Compilation timestamp:

6/20/1992 1:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

196608:Kl1CTo7y376AiUhfy/5TktM7S50GjxUpcUmrWDq9XjPj:Kl14o7yW/T/5+MW5xxUpcUm59bj

Entry address:

0xFD538

Entry point:

55, 8B, EC, 83, C4, F0, 53, B8, B0, AF, 4F, 00, E8, 3B, 9B, F0, FF, 8B, 1D, D0, 72, 50, 00, A1, AC, 73, 50, 00, 33, D2, 89, 10, B2, 01, A1, 74, E8, 4E, 00, E8, 4C, 24, FF, FF, 8B, 15, AC, 73, 50, 00, 89, 02, 33, C0, 55, 68, 51, D6, 4F, 00, 64, FF, 30, 64, 89, 20, A1, AC, 73, 50, 00, 8B, 00, 8B, 40, 0C, E8, 37, 18, FF, FF, A1, AC, 73, 50, 00, 8B, 00, 8B, 40, 10, E8, CC, 22, FF, FF, 8B, 03, E8, 1D, 0E, F7, FF, 8B, 03, BA, 68, D6, 4F, 00, E8, 91, 08, F7, FF, 8B, 0D, 68, 70, 50, 00, 8B, 03, 8B, 15, 04, 98, 4E... 
[+]

Developed / compiled with:

Microsoft Visual C++

Code size:

1007 KB (1,031,168 bytes)

The file setuplibrocassa.exe has been seen being distributed by the following URL.

http://www.programmigratis.com/.../sw-top.pl?prg=508&link=1&count=1

Scan setuplibrocassa.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.