» twedge1_setup.exe
Overview
Analysis
File Details
Downloads (1)

twedge1_setup.exe

TEC-IT Datenverarbeitung GmbH

This is a self-extracting archive and installer. The file has been seen being downloaded from www.tec-it.com.

File name:

twedge1_setup.exe

Publisher:

TEC-IT Datenverarbeitung GmbH (signed and verified)

MD5:

4881bfbf9ac0858f5930537f21c8563c

SHA-1:

4ccacf7330379fbd6dd535d0359330c0f156c96f

SHA-256:

d97d6ff92615e2bdbed07d3eabc61dff374faf818809383cddf500f3f1d6b85f

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

11/28/2024 3:56:02 AM UTC (today)

File size:

1.8 MB (1,908,224 bytes)

File type:

Executable application (Win16 EXE)

Common path:

C:\users\{user}\downloads\twedge1_setup.exe

Digital Signature

Signed by:

TEC-IT Datenverarbeitung GmbH

Authority:

Thawte Consulting (Pty) Ltd.

Valid from:

5/8/2007 5:30:00 AM

Valid to:

5/8/2009 5:29:59 AM

Subject:

CN=TEC-IT Datenverarbeitung GmbH, OU=Secure Application Development, O=TEC-IT Datenverarbeitung GmbH, L=Steyr, S=Upper Austria, C=AT

Issuer:

CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:

5E68679E7C8EF2C746900699F4FAF6A3

File PE Metadata

OS version:

0.65534

OS bitness:

Win16

Linker version:

254.255

CTPH (ssdeep):

49152:i1JAjdsDZ/zw0GOycV0nJr1jwkNjuL18:bdst/MfO1V0nJGkNjS

Entry address:

0x1E0000

Entry point:

D0, CF, 11, E0, A1, B1, 1A, E1, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 3E, 00, 03, 00, FE, FF, 09, 00, 06, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 1E, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 10, 00, 00, 02, 00, 00, 00, 03, 00, 00, 00, FE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 00, 00, 7F, 00, 00, 00, 00, 01, 00, 00, 7F, 01, 00, 00, 00, 02, 00, 00, 7F, 02, 00, 00, 00, 03, 00, 00, 7F, 03, 00, 00, 00, 04, 00, 00, 7F, 04, 00, 00, 00, 05, 00, 00, 7F, 05, 00, 00, 00, 06, 00, 00... 
[+]

Entropy:

7.6252

Code size:

384 KB (393,225 bytes)

The file twedge1_setup.exe has been seen being distributed by the following URL.

https://www.tec-it.com/download/.../TWedge1_Setup.exe

Scan twedge1_setup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.