smac20_setup.exe

KLC Consulting, Inc

This is a self-extracting archive and installer. The file has been seen being downloaded from www.laboratorycenterconecpt.com and multiple other hosts.
Publisher:
KLC Consulting, Inc

Description:
SMAC

Version:
2.0.5

MD5:
66a629b0bc2218ce489a64ff380ee5a9

SHA-1:
9433f43b30088b8a9fba37ebcb76289ad02f23fd

SHA-256:
8244555babb6c9ae022b6fcb11532ed2c21367fa4d7f18a059a4bb06adb2b81e

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/24/2024 3:08:52 PM UTC  (today)

Scan engine
Detection
Engine version

Emsisoft Anti-Malware
Gen:Variant.Buzy.3509
8.14.02.11.05

File size:
4.4 MB (4,630,617 bytes)

Copyright:
Copyright 2003-2007 KLC Consulting, Inc

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\smac20_setup.exe

File PE Metadata
Compilation timestamp:
10/25/2001 9:47:11 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:YnzshYuCIGSgA1tJwYxEUMo9rS8mC1rwZ9+plJVc9F5QTL3Lri:Jm3BA1nxxEkhwZ9YlJVc9IXLri

Entry address:
0x21AF

Entry point:
55, 8B, EC, 81, EC, 2C, 05, 00, 00, 53, 56, 57, 6A, 01, 5E, 6A, 04, 89, 75, E8, FF, 15, 54, 40, 40, 00, FF, 15, 50, 40, 40, 00, 8B, F8, 89, 7D, F4, 8A, 07, 3C, 22, 0F, 85, CC, 00, 00, 00, 8A, 47, 01, 47, 89, 7D, F4, 33, DB, 3A, C3, 74, 0D, 3C, 22, 74, 09, 8A, 47, 01, 47, 89, 7D, F4, EB, EF, 80, 3F, 22, 75, 04, 47, 89, 7D, F4, 80, 3F, 20, 75, 09, 47, 80, 3F, 20, 74, FA, 89, 7D, F4, 53, FF, 15, 6C, 40, 40, 00, 80, 3F, 2F, 89, 45, F8, 75, 64, 8A, 47, 01, 3C, 53, 74, 04, 3C, 73, 75, 06, 89, 35, 58, 53, 40, 00...
 
[+]

Entropy:
7.9989  (probably packed)

Code size:
8.5 KB (8,704 bytes)

The file smac20_setup.exe has been seen being distributed by the following 13 URLs.

http://www.laboratorycenterconecpt.com/WleD6zLG7pkKMsRVnbXelehHwMuZJS4VjI7IAjrr23QyBse VbkvrCCSYORQzN1K0YPVJ0_8x5gbWccNyOVG9dmytTB4KcWdRAjOQVKW4FEfEZfkcNUpwcBOR5BQLqoCCiZAZ4oSSJMw0ERTn77h5n05cosDMREkc aqxW9f l1YhBmwqxoaj0Gbcq_WDO3DRY3E254jXiqbnjBpl7p8GXKBioauTddsgr8htaxryoJhSAqk3SqF9QIOo8O3Tw9gLmRDMmmO5Vt2nUDn_kv3CeLW35XBpbkJQYA7ZM4_fxDGc84Y0q2Yuvl4JOwMpcKkdLiMaGxw_iM suE_ysin1oPD35V3s02E9UepZSURdaygRLgRXHucGfXxXEeXsxAZg9NG7gjWiGNH_8r5OFCuRtkxDItRHXHXG9 0waVwg5xW2dPhxJHEQKcvqIq47 lh52uZf6LFjaHvLpHIiqKtW6Sn_26PTiycAWPmXS6ghynStBXSe7BlawOgBITJycpvlPvVqiRRfNYMXb1k5cDUIfTHjewmKoj QGF3rVy4lA2s5AxgkV7k6vY2waOlpE4UsX r FEWtTj5O2hw3LvAuGamZDU6zw==-G0EAAMS89fwlPT_JOUlrxW0EDjlg_1aCSWK5Bhtj44snKEhvTPl_G3BdabF8zledAUirPcpuxchX Ak=-e

&onid=2085&oid=3001-2085_4-10536535&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=networking/network-tools&topicbrcrm=&pid=10796334&mfgid=6283147&merid=6283147&ctype=dm&cval=NONE&devicetype=<!--esidesktop&pguid=02c4aec777f0c38770cec85f&viewguid=fxJqy6gg2x55d5dhCKdJsJFvhqbybwK1Qa@d&destUrl=http://files.downloadnow.com/s/software/10/79/63/.../smac20_setup.exe

&onid=2085&oid=3001-2085_4-10536535&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=networking/network-tools&topicbrcrm=&pid=10796334&mfgid=6283147&merid=6283147&ctype=dm&cval=NONE&devicetype=desktop&pguid=63a4d2e6e17d048850138614&viewguid=eHiJvUH7gJ0hx38EYMwT8zOFTqvgGQ2GqKsj&destUrl=http://files.downloadnow.com/s/software/10/79/63/.../smac20_setup.exe

http://www.laboratorycenterconecpt.com/sAj9aNWs5fu93Rrz6RStAARYyejibB8vpQUfDXqEq3j124uZc18k_a1MLz8Ig1rOybxONyw3xJ9DcCGdNJyrd2mRRndkXQj0RebZrkc2kuQQIakU7L2ulR0f OcZkG4UiDHclGj1NQDaN4CoG9Ymvgg5Ad8DUa_1wxaVwhq a9QyA5N 2afwTrGIGSdM4xe N7LDGxZBVZ7xGjauGEqO4GvK_yN5lD 8DI2cX8dsJ5X5WM9DQwTWAXBsQiVinh7azOe_LErfrXKXA4_v23f7LUSI4iN6uoGlXTQsFo6glY 72DkxudI1ytxsnsbI9hgwviPVEWipSBca0JXDu_zOyKq o6aVkrpKpAIjudMrc9ARtXsQvHqNwsoO boh26tY93hixPUSFe_Z9dhI78c3jD3Q0kfgzA0IZc62jPFAMIsSnTUaACqsr7fFId20TcKdOEg4k5N336cd0O9WrEtlwLV_dV3jb635jOOGB7Fy6NhBgD9EEhE_DnbpmFUzpVDHhSJH17Swz10jnAs8C2Jx02vYOHiU69tR9Dxb_PCtZLjrDK6KI2JGM5iM1RvZI5BPRdggbChy3Uy71 OeYCPa4HClo0zd4Q==-G0EAAMS89fwlPT_JOUlrxW0EDjlg_1aCSWK5Bhtj44snKEhvTPl_G3BdabF8zledAUirPcpuxchX Ak=-e

Scan smac20_setup.exe - Powered by Reason Core Security