home

sol-prep-1-4-16.exe

SOL_Updates_v2

DART Service Desk

This is a setup program which is used to install the application. The file has been seen being downloaded from learn.k12albemarle.org.
Publisher:
DART Service Desk  (signed and verified)

Product:
SOL_Updates_v2

Description:
Java 8_65 - Flash 20.0.0.267

Version:
2,0,0,0

MD5:
b2aa1cc22ef1b114af88d614dea2b231

SHA-1:
c1c988261c449ec214cb706cbe921cccfea3c719

SHA-256:
9326301571817cfc25f6171f38e89dcd5bcdda7b7f6cf9b1c7d018e04ff5afe6

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/14/2024 9:18:21 PM UTC  (today)

File size:
98 MB (102,755,560 bytes)

Product version:
2,0,0,0

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\sol-prep-1-4-16.exe

Digital Signature
Signed by:
DART Service Desk

Authority:
ACPS-SUBCA

Valid from:
9/14/2015 2:00:02 PM

Valid to:
7/13/2016 4:06:54 PM

Subject:
CN=DART Service Desk

Issuer:
CN=ACPS-SUBCA, DC=schls, DC=albco

Serial number:
6E000028416C9F8F72578362EF000000002841

File PE Metadata
Compilation timestamp:
2/7/2009 1:33:02 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
2.50

CTPH (ssdeep):
3145728:YGi5mUcU/dynvjUCmWKSVS0NNMI8MegVunIF:YY9wynrUCm3TG

Entry address:
0x1000

Entry point:
68, CC, 00, 00, 00, 68, 00, 00, 00, 00, 68, 8C, B1, 40, 00, E8, 7C, 21, 00, 00, 83, C4, 0C, 68, 00, 00, 00, 00, E8, 7B, 21, 00, 00, A3, 90, B1, 40, 00, 68, 00, 00, 00, 00, 68, 00, 10, 00, 00, 68, 00, 00, 00, 00, E8, 68, 21, 00, 00, A3, 8C, B1, 40, 00, E8, BC, 1F, 00, 00, E8, 57, 69, 00, 00, E8, E9, 5C, 00, 00, E8, 1D, 55, 00, 00, E8, 8B, 3F, 00, 00, E8, B3, 35, 00, 00, E8, 5E, 32, 00, 00, E8, D4, 28, 00, 00, E8, 28, 26, 00, 00, 68, 07, 00, 00, 00, 68, 84, A3, 40, 00, 8D, 05, 54, B2, 40, 00, 50, 68, 08, 00...
 
[+]

Entropy:
7.9997

Packer / compiler:
PKLITE32, 0x1.1

Code size:
27.5 KB (28,160 bytes)

The file sol-prep-1-4-16.exe has been seen being distributed by the following URL.

https://learn.k12albemarle.org/bbcswebdav/.../xid-540175_1?globalNavigation=false

Scan sol-prep-1-4-16.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.