stefan0912484_install.exe

Grupa INTERIA.PL sp. z o.o. sp. k.

This is a self-extracting archive and installer. The file has been seen being downloaded from dl.komunikator.interia.pl.
Publisher:
Grupa INTERIA.PL sp. z o.o. sp. k.  (signed and verified)

MD5:
2c9f7af49b712106f4dcc6e1acb02f77

SHA-1:
253e353396f24b8299d8648bf83c43a1473f041d

SHA-256:
902ba5f6171ec12ac53862d28c22d1619bcabc1a7d7291bb508af7d0e01f0950

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
12/27/2024 11:21:48 AM UTC  (today)

Scan engine
Detection
Engine version

Trend Micro House Call
PAK_Generic.001
7.2.265

Trend Micro
PAK_Generic.001
10.465.22

File size:
6.6 MB (6,904,160 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\stefan0912484_install.exe

Digital Signature
Authority:
DigiCert Inc

Valid from:
4/20/2012 2:00:00 AM

Valid to:
6/23/2015 2:00:00 PM

Subject:
CN=Grupa INTERIA.PL sp. z o.o. sp. k., O=Grupa INTERIA.PL sp. z o.o. sp. k., L=Krakow, S=woj. malopolskie, C=PL

Issuer:
CN=DigiCert Assured ID Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0DCFEA21E70D6FBF21968D565D4BD668

File PE Metadata
Compilation timestamp:
10/4/2005 4:26:31 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
196608:mVVc7pU04jd9eTpFDIL7VXumzuMz583uXE3esk/P:mVWU0CzuF0vzuMz5834J

Entry address:
0x32D3

Entry point:
83, EC, 20, 53, 55, 56, 33, F6, 57, 89, 74, 24, 18, BD, 68, 91, 40, 00, 89, 74, 24, 14, C6, 44, 24, 10, 20, FF, 15, 30, 70, 40, 00, 56, FF, 15, 80, 72, 40, 00, 68, 8C, 92, 40, 00, 68, 40, 3B, 42, 00, A3, F0, 43, 42, 00, E8, DC, 27, 00, 00, BB, 00, B4, 42, 00, BF, 00, 04, 00, 00, 53, 57, FF, 15, B8, 70, 40, 00, E8, 79, FF, FF, FF, 85, C0, 75, 24, 68, FB, 03, 00, 00, 53, FF, 15, B4, 70, 40, 00, 68, 84, 92, 40, 00, 53, E8, B6, 27, 00, 00, E8, 59, FF, FF, FF, 85, C0, 0F, 84, 46, 01, 00, 00, BE, 00, A0, 42, 00...
 
[+]

Code size:
22.5 KB (23,040 bytes)

The file stefan0912484_install.exe has been seen being distributed by the following URL.

http://dl.komunikator.interia.pl/Stefan0912484_install.exe

Scan stefan0912484_install.exe - Powered by Reason Core Security