shotcut-win32-150811.exe

Meltytech, LLC

The program is a setup application that uses the Nullsoft Install System installer. The file has been seen being downloaded from r2.computerbild.de and multiple other hosts.
Publisher:
Meltytech, LLC  (signed and verified)

MD5:
0fd28398e858dbe021efd481e52a0ab2

SHA-1:
8fd97206ca8ab01b66ed0e3232ff94441fe078c6

SHA-256:
26c39e023014447b6299802430fdb6fca557b6faac4614d1022331079f28192a

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 1:30:18 AM UTC  (today)

File size:
118.4 MB (124,169,440 bytes)

File type:
Executable application (Win32 EXE)

Installer:
Nullsoft Install System

Common path:
C:\users\{user}\downloads\shotcut-win32-150811.exe

Digital Signature
Signed by:

Authority:
DigiCert Inc

Valid from:
3/3/2015 4:00:00 PM

Valid to:
3/8/2017 4:00:00 AM

Subject:
CN="Meltytech, LLC", O="Meltytech, LLC", L=Castro Valley, S=California, C=US

Issuer:
CN=DigiCert SHA2 Assured ID Code Signing CA, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0D9AD8B00BB8B66E6D4E2289E4F7EAE7

File PE Metadata
Compilation timestamp:
1/5/2012 10:21:09 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.22

CTPH (ssdeep):
3145728:FsM2FFYFyUgP7SuW2RtJTHHbu17VccugcVhIq4C4BfPno:WFOz+SuW2R7HY7afgfqPQo

Entry address:
0x4109

Entry point:
55, 89, E5, 57, 56, 53, 81, EC, AC, 01, 00, 00, FF, 15, 74, 93, 42, 00, C7, 04, 24, 01, 80, 00, 00, FF, 15, 58, 94, 42, 00, 53, C7, 04, 24, 00, 00, 00, 00, FF, 15, 98, 94, 42, 00, 56, A3, 30, 7B, 42, 00, C7, 04, 24, 08, 00, 00, 00, E8, 8B, 3B, 00, 00, A3, 8C, 7B, 42, 00, 8D, 85, 84, FE, FF, FF, 57, C7, 44, 24, 10, 00, 00, 00, 00, C7, 44, 24, 0C, 60, 01, 00, 00, 89, 44, 24, 08, C7, 44, 24, 04, 00, 00, 00, 00, C7, 04, 24, A9, B2, 40, 00, FF, 15, AC, 94, 42, 00, 83, EC, 14, C7, 44, 24, 04, AA, B2, 40, 00, C7...
 
[+]

Entropy:
8.0000  (probably packed)

Code size:
34 KB (34,816 bytes)

The file shotcut-win32-150811.exe has been seen being distributed by the following 16 URLs.

http://r2.computerbild.de/exec/r2r.pl?m=w-cobi;u=http://d.computerbild.de/downloads/.../shotcut-win32-150811.exe

http://data2.stahnu.cz/downloadFile.php?n=c2hvdGN1dF8xNS4wOC4xMS5leGU=&s=7hcn7rpl5555mhcrqa4slgl8b6&r=f6f52656ddab0563c7ecdd3e5c7769f8

http://stahnu.cz/download/uprava-a-strih-videa/shotcut/tmq99a5s6mjcdn3nm1rsgjgma5/.../shotcut_15.08.11.exe

http://dlgbit.winfuture.de/001a67d0a7e18af24dbbef44f6fe5a7c/5805138e/software/.../shotcut-win32-150811.exe

http://dl.cdn.chip.de/downloads/.../shotcut-win32-150811.exe

http://dlgbit.winfuture.de/6e019a5ac8ecdd679eafe8c30e96864d/57e2cc15/software/.../shotcut-win32-150811.exe

http://data2.stahnu.cz/downloadFile.php?n=c2hvdGN1dF8xNS4wOC4xMS5leGU=&s=8qkm3dhm611nthgl4k87d040l3&r=ca1b7944d952a69cf7d7ece7863060a5

Scan shotcut-win32-150811.exe - Powered by Reason Core Security