home

sgupdate110.exe

CABSFX

This is a setup program which is used to install the application. The file has been seen being downloaded from downloadani.me.
Product:
CABSFX

Description:
Cabinet Self-Extractor

Version:
1.10

MD5:
dab21e8dba67f94ef8610e35b5daf12a

SHA-1:
792bcd10a8b2529dcd7be49412927f66975a78dd

SHA-256:
c225950f17c293f13a3e525a22ad9d8a24d338e8a1c50c1c3f7f459092c9454b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 7:09:56 PM UTC  (today)

File size:
839.5 KB (859,638 bytes)

Product version:
1.10

Copyright:
Copyright (C) 1999-2000 Y.Shirakawa

Original file name:
CABSFX

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
12/18/2000 1:52:02 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
5.2

CTPH (ssdeep):
24576:Pc1SJ8Ad4kPzVapSbCam0E8qrAQoddZwVeZQH:PkI8Ad4wzVsK60E8qrCZwVeGH

Entry address:
0x1A90

Entry point:
6A, 00, FF, 15, 78, A1, 40, 00, A3, A0, 97, 40, 00, FF, 15, 20, A1, 40, 00, E8, BC, 01, 00, 00, 83, 3D, 54, 86, 40, 00, 01, 74, 24, A1, 24, 83, 40, 00, 80, 38, 00, 75, 07, 6A, 03, E8, A8, FF, FF, FF, 6A, 24, FF, 35, 2C, 83, 40, 00, 50, E8, 13, 00, 00, 00, 83, F8, 06, 75, 05, E8, 20, 00, 00, 00, 6A, 00, FF, 15, 74, A1, 40, 00, C3, FF, 74, 24, 0C, FF, 74, 24, 0C, FF, 74, 24, 0C, 6A, 00, FF, 15, BC, A1, 40, 00, C2, 0C, 00, 81, EC, 08, 01, 00, 00, 80, 25, C0, 97, 40, 00, 00, 8D, 44, 24, 04, 53, 55, 56, 57, 50...
 
[+]

Entropy:
7.9901

Packer / compiler:
FASM v1.5x

Code size:
23.5 KB (24,064 bytes)

The file sgupdate110.exe has been seen being distributed by the following URL.

http://downloadani.me/.../SgUpdate110.exe

Scan sgupdate110.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.