wincdemu-4.1.exe

WinCDEmu

Sysprogs OU

This is a setup and installation application. The file has been seen being downloaded from www.downloadcrew.com and multiple other hosts.
Publisher:
Sysprogs OU  (signed and verified)

Product:
WinCDEmu

Description:
WinCDEmu installer

Version:
4.1

MD5:
2331909926ba27bac6aab1fc600db594

SHA-1:
6ea5cb4fa2e058172d5bc9b3499cb0ecf0e69069

SHA-256:
7716e2e5165402bc3337147ee555bc1b4641fe5fdfdc72329e08753697fe1b90

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/16/2024 12:01:58 PM UTC  (today)

File size:
1.6 MB (1,697,808 bytes)

Product version:
4.1

Copyright:
LGPL

Trademarks:
Sysprogs

Original file name:
WinCDEmu-installer.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Digital Signature
Signed by:

Authority:
GlobalSign nv-sa

Valid from:
7/24/2013 6:58:24 AM

Valid to:
7/24/2016 6:58:24 AM

Subject:
CN=Sysprogs OU, O=Sysprogs OU, L=Maardu, C=EE

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121F7C4F04F79EA2F0DD8725F116C3AED65

File PE Metadata
Compilation timestamp:
9/26/2015 10:53:54 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
49152:vCF6JSNpswQLWIv42UJFMemx/+pplGY1aIJkVV4dDD/y:vTQNpsNv42iFV4+Fj1aIW4dDjy

Entry address:
0x5A900

Entry point:
60, BE, 00, E0, 43, 00, 8D, BE, 00, 30, FC, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 75, D1, F8, 89...
 
[+]

Entropy:
7.9874

Packer / compiler:
UPX 2.90LZMA

Code size:
116 KB (118,784 bytes)

The file wincdemu-4.1.exe has been seen being distributed by the following 24 URLs.

http://www.downloadcrew.com/?act=software.download&id=31391&t=1468996908&c=3a8fff3dcd611bf0ec810f39c9f326e7100335d5

https://applications.itslearning.com/Resource/.../DownloadRedirect.ashx?LearningObjectId=6881051&LearningObjectInstanceId=22969384

http://r2.computerbild.de/exec/r2r.pl?m=w-cobi;u=http://d.computerbild.de/downloads/.../WinCDEmu-4.1.exe

https://download.heise.de/software/ec3d6bd544f8c446cae482a7088c4372/5832f59e/.../wincdemu-4.1.exe

http://www.freewarefiles.com/downloads_counter.php?programid=53299

https://download.heise.de/software/ef6b35ca94ecfcbd89ef1381b444d40b/575d44e1/.../wincdemu-4.1.exe

https://download.heise.de/software/640d1429a12b7aab17225f7deefcb70b/57794ecc/.../wincdemu-4.1.exe

http://lb.cdn.m6web.fr/d/c/a/dee877ec036670bd20514eec816bc25f/57d712c6/soft/.../wincdemu_4-1_fr_338412.exe

https://download.heise.de/software/6bfe234a81a3a860d87edffcfe267f44/5839497a/.../wincdemu-4.1.exe

http://dl.cdn.chip.de/downloads/.../WinCDEmu-4.1.exe

http://adf.ly/N=TUhGoedlH5RSwMOuiQ8TvLc131lWzRcEHNJkvbZp3dM1uLY1219WtRLE2NZkpbbpGdV1zL

https://download.heise.de/software/f849db4e813833d54a0a0299d3adc3d6/58013137/.../wincdemu-4.1.exe

https://download.heise.de/software/aba28f10db78a7f7a6dfbee07b295907/580e3f40/.../wincdemu-4.1.exe

temp:WinCDEmu-4.1.exe

Scan wincdemu-4.1.exe - Powered by Reason Core Security