home

software_esgi2black_ver_5.01.exe

ESGI

Publisher:
ESGI

Version:
1.0.0.0

MD5:
a4e846a9f473a57bf46ed41eadc70424

SHA-1:
802c0b865f8bd861cd890edbf9eb73e9bdb0a5b6

SHA-256:
1fc7e25890128df7ae649d9b09e9fcebfae7d3007ed1df1afbf64a656831b625

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 2:51:35 PM UTC  (today)

File size:
2.7 MB (2,843,136 bytes)

Product version:
5.0.1.0

File type:
Executable application (Win32 EXE)

Language:
Polish (Poland)

Common path:
C:\users\{user}\downloads\software_esgi2black_ver_5.01.exe

File PE Metadata
Compilation timestamp:
6/19/1992 11:22:17 PM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:GiQJlY4huOwyom+QRSZq4vSizoEmll2nLB/dv1+rGGfxE47ESZ3PuSFNkADHPhpR:GiQj1hKD4EVU3Eb23PuFAXYVB/YO3++

Entry address:
0x151F3C

Entry point:
55, 8B, EC, 83, C4, F4, B8, 1C, 1A, 55, 00, E8, 8C, 52, EB, FF, A1, D8, 73, 55, 00, 8B, 00, E8, 7C, F7, EF, FF, A1, D8, 73, 55, 00, 8B, 00, BA, B4, 1F, 55, 00, E8, 8F, F3, EF, FF, 8B, 0D, A8, 75, 55, 00, A1, D8, 73, 55, 00, 8B, 00, 8B, 15, 88, 3F, 53, 00, E8, 6B, F7, EF, FF, 8B, 0D, 9C, 76, 55, 00, A1, D8, 73, 55, 00, 8B, 00, 8B, 15, 68, C4, 52, 00, E8, 53, F7, EF, FF, A1, D8, 73, 55, 00, 8B, 00, E8, C7, F7, EF, FF, E8, 5A, 1C, EB, FF, 00, 00, FF, FF, FF, FF, 04, 00, 00, 00, 45, 53, 47, 49, 00, 00, 00, 00...
 
[+]

Entropy:
6.4580

Developed / compiled with:
Microsoft Visual C++

Code size:
1.3 MB (1,380,352 bytes)

The file software_esgi2black_ver_5.01.exe has been seen being distributed by the following URL.

http://www.autogas-lpg.co.uk/.../software_ESGI2Black_ver_5.01.exe

Scan software_esgi2black_ver_5.01.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.