tcmd756a.exe

Ghisler Software GmbH

This is a setup and installation application. This is installed with Total Commander (Remove or Repair). The file has been seen being downloaded from letoltes.szoftverbazis.hu and multiple other hosts.
Publisher:
Ghisler Software GmbH  (signed and verified)

Description:
Total Commander Auto-Installer

Version:
7.55

MD5:
018b847fb44bbbae21236d995aca172e

SHA-1:
0771334a3620ebdca43c8e73fad3cccb321284df

SHA-256:
75733d8a571aaede68bd8e6356367e908386d6fdd90853ec9136d09de2929bc9

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/26/2024 10:13:01 PM UTC  (today)

File size:
3.1 MB (3,280,704 bytes)

Copyright:
Copyright © Ghisler Software GmbH 1993-2010

Original file name:
sfxhead.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\tcmd756a.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
5/11/2010 3:00:00 AM

Valid to:
5/12/2011 2:59:59 AM

Subject:
CN=Ghisler Software GmbH, OU=Development, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Ghisler Software GmbH, L=Bolligen, S=Bern, C=CH

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
56CBFDB3B225D4FD03C76C8EB78F3685

File PE Metadata
Compilation timestamp:
6/20/1992 1:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:cPaz0sfVVr2muAnosrzvh/HktFh5vVlgFBD44t6HE7njAoQXf3g1XiRHudgkOFOF:6azhVVSmuiTBiblVy44t6KnFOVs

Entry address:
0x77F0

Entry point:
55, 8B, EC, 83, C4, F4, 53, 56, E8, C3, B1, FF, FF, E8, 16, B9, FF, FF, E8, 0D, C0, FF, FF, E8, B0, CC, FF, FF, E8, 23, D4, FF, FF, B0, 01, E8, 98, C3, FF, FF, 68, 01, 80, 00, 00, E8, 7A, BA, FF, FF, 68, E4, 78, 40, 00, E8, 48, BA, FF, FF, 8B, D8, 85, DB, 74, 11, 68, F4, 78, 40, 00, 53, E8, 1F, BA, FF, FF, 85, C0, 74, 02, FF, D0, 68, 03, 01, 00, 00, 68, C8, A1, 40, 00, A1, 0C, 90, 40, 00, 50, E8, FC, B9, FF, FF, 6A, 0F, E8, 25, BB, FF, FF, 50, E8, 77, BA, FF, FF, A3, EC, A4, 40, 00, B8, CC, A2, 40, 00, E8...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
26.5 KB (27,136 bytes)

The file tcmd756a.exe has been discovered within the following programs.

Total Commander (Remove or Repair)  by Ghisler Software GmbH
Total Commander is an Orthodox File Manager (OFM) for Windows that features include a built-in FTP client, tabbed interface, file compare, archive file navigation, and a versatile multi-rename tool with regular expression support.
www.ghisler.com
8% remove it
 
Powered by Should I Remove It?

The file tcmd756a.exe has been seen being distributed by the following 50 URLs.

http://letoltes.szoftverbazis.hu/mzlgShU4HmCqyiFruTiXsg/1487504082/.../tcmd756a.exe

http://letoltes.szoftverbazis.hu/bZE0q3YppnYNFdJy6Y7JSg/1485458429/.../tcmd756a.exe

http://letoltes.szoftverbazis.hu/5NiUFasDgbEoodZSXYVv6Q/1480009042/.../tcmd756a.exe

http://gsf-cf.softonic.com/077/133/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4688&instance=softonic_en&type=PROGRAM&Expires=1485743484&Signature=V9bCrfMLrXTgXnfR3cM-McUtGF~8LIl2JDDZT0ILIHVtieY-dEYUv4SwY0Hs7i2D-osLjyX31B4gp6NeVgLSTrH9h9nDi1eYpV0gTTHIg2iChey11Cg9CQen4P-kb9LmKuZT7w1LtJmaccmFGrIvUGw-Ldqd9y1syDR53K4B49A_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=tcmd756a.exe

http://letoltes.szoftverbazis.hu/MUEPUhtwvOCNw93Sd0d4UQ/1488375981/.../tcmd756a.exe

http://letoltes.szoftverbazis.hu/0JqTBiunl5Mf8-gLjHZqmQ/1487187716/.../tcmd756a.exe

http://letoltes.szoftverbazis.hu/MP3-fOQOK4bViOuy59hBnA/1402876614/.../tcmd756a.exe

http://letoltes.szoftverbazis.hu/bXNmQhhhJQQXN3n2zyN0pA/1459007916/.../tcmd756a.exe

http://letoltes.szoftverbazis.hu/rQImvw6GuQJ4oe2Oo1jeAg/1483531748/.../tcmd756a.exe

http://letoltes.szoftverbazis.hu/tj_OIZdwLD4MRNVxZwlH6w/1487338938/.../tcmd756a.exe

http://letoltes.szoftverbazis.hu/YxIcS8QPD8W_0-Kiofh5Yg/1483349392/.../tcmd756a.exe

http://gsf-cf.softonic.com/077/133/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4688&instance=softonic_en&type=PROGRAM&Expires=1440187153&Signature=EapMMenIK9MwGrkIS6Hmf3sp~4AaAWkw84x9Lr39IQM2DIBrNYm2btVWPs9YvmsQ-NjWKfs-jDk41C432vple7U3b26dCBJ4IBqa56fPsxApsEfZy9~dFZlbmjiFt-GNI2RW7BrIwIJ56O4e5OesLAdemqeL3Fu8sOwFt8N--Yk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=tcmd756a.exe

http://letoltes.szoftverbazis.hu/bP3cq-1f9JGtxYCteHqheA/1487617582/.../tcmd756a.exe

http://letoltes.szoftverbazis.hu/qY6RMFi7yWubs6QQNL6xfQ/1458745646/.../tcmd756a.exe

http://letoltes.szoftverbazis.hu/F5wxX1vnQVXEpiVX-dN9gQ/1475997351/.../tcmd756a.exe

http://letoltes.szoftverbazis.hu/WhgJQsQHZDmMabmMxWsXng/1483109906/.../tcmd756a.exe

http://letoltes.szoftverbazis.hu/jCa7IqmmpTlfCDIZIMT48Q/1481982668/.../tcmd756a.exe

http://gsf-cf.softonic.com/077/133/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4688&instance=softonic_en&type=PROGRAM&Expires=1473672059&Signature=RfLPaoCpf2dMESx3NUyA3aRy8Hc8qLsFVuXAiWzaApQcj0q5VCok4MST3hY4TRt0xX~0-oqnuf-ZHN5-IHWlDUXobqe-9uIIMAc6vRnSrrtYVov2bpoHg1Pe99vy1EsxFqaCHQcfUJRxAKSJ97~25o48vjCi-mfTCXuCTfldS1E_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=tcmd756a.exe

http://letoltes.szoftverbazis.hu/YUr9foywaYLQnhyk8bQijg/1485641877/.../tcmd756a.exe

http://gsf-cf.softonic.com/077/133/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4688&instance=softonic_en&type=PROGRAM&Expires=1430192565&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=R8zqkPOxsYjql0SyqnWA9eChBW6lsSCVJh0GC-iPznYkRrdYKrspS2J-4jX~hrb9iaqMYN3393HJhckDZMJ9Ex~jxHsjP9KfLwkn~EXqMBA-u-hOVNLMk5PVZfHy02cRkzzoBe62OCLf-E89h0~4BGfsPffdbvX683VnKKmg6cg_&filename=tcmd756a.exe

http://letoltes.szoftverbazis.hu/BI3P27b8RCsycPXnPzJ0ew/1459877469/.../tcmd756a.exe

http://gsf-cf.softonic.com/077/133/.../file?SD_used=0&channel=WEB&fdh=no&id_file=4688&instance=softonic_en&type=PROGRAM&Expires=1464743924&Signature=F0x-tlqL0~FmYVPSBKAuz0CLF2YgCqIKa~SzRzM7pxULRbD1R6D~zpYo-jlNAp~VTm1L-07GN6NBkca98Q-ADFb73kC91~iVa2HBw824QRj879WEJYijhXZFtM27OE5p14dJvTOq--nCGdHtbWUuJNLT~two-MjJB95s5bpml~Q_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=tcmd756a.exe

http://letoltes.szoftverbazis.hu/DyXsFKE0EpzOq1ajv8fjpg/1464963926/.../tcmd756a.exe

http://letoltes.szoftverbazis.hu/bO7H7XlovGAGRpiXVE_owg/1477521581/.../tcmd756a.exe

http://letoltes.szoftverbazis.hu/GNBJnispJ5SijG9WfrnUSg/1475428487/.../tcmd756a.exe

http://letoltes.szoftverbazis.hu/nCSx_g23OOqWDL0Y2sZHog/1479840386/.../tcmd756a.exe

http://letoltes.szoftverbazis.hu/HiYS9qZJRq-rdzTkKperCw/1457370968/.../tcmd756a.exe

http://letoltes.szoftverbazis.hu/rWUztjFHpqlRv82UJKr1zg/1457202454/.../tcmd756a.exe

http://letoltes.szoftverbazis.hu/_tt3xcqclYqjK5Tv9a3Tgw/1465738405/.../tcmd756a.exe

http://ddlp3.data.hu/get/e71078b5acbfee1feb6d3989ba995a295ffa1f687510dc50c344f5d08cca13e9/.../tcmd756a.exe

Latest 30 of 262 download URLs

Scan tcmd756a.exe - Powered by Reason Core Security