home

untc239.tmp.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from bdls.getportal.net.
MD5:
84bd159141a52895bfbe3816a1d78eaa

SHA-1:
8df825e0453b6a7ae935f667facc3d76c20da1f5

SHA-256:
a4f7f5c1631130dfc36e50261d32a0e7f96f008accdc2141d33f1f5511b2b224

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 12:06:42 PM UTC  (today)

File size:
462.6 KB (473,736 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\appdata\local\temp\untc239.tmp.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
12288:ZNzY/M3KrvdUGSHzTFm3AcHpqMMoqyFXA9uhWx+A4g3ga:Z61dUGAzTF2A+FXA9OR4r

Entry point:
14, 2E, E4, EE, 44, A5, A4, B2, 55, 56, DD, F3, 0D, 2A, 83, EC, 5D, C9, 27, 5C, 33, 69, 0B, 7E, 10, 08, 25, 8E, 69, 45, 60, ED, 59, 74, 74, EE, 47, A5, A4, B2, 51, 56, DD, F3, F2, D5, 83, EC, E5, C9, 27, 5C, 33, 69, 0B, 7E, 50, 08, 25, 8E, B1, 45, 60, ED, 57, 6B, CE, E0, 47, 11, AD, 7F, 70, EE, DC, BF, 3F, F4, D7, 84, 8C, BA, 07, 2C, 41, 06, 6C, 0C, 31, 65, 05, ED, 08, 2B, 0E, 82, 2D, 54, 16, 8B, 67, D7, D1, DC, 71, 3F, B3, D3, B6, 9A, D0, CC, 88, A6, 43, 39, 1D, 64, 06, 74, 74, 08, 25, 8E, 69, 45, 60, ED...
 
[+]

The file untc239.tmp.exe has been seen being distributed by the following URL.

http://bdls.getportal.net/smart-download/.../bundle.exe

Scan untc239.tmp.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.