XmmInstaller.exe

XmmInstaller

Citrix, Inc

This is a setup and installation application. The file has been seen being downloaded from secureportal.citrix.com.
Publisher:
Citrix, Inc

Product:
XmmInstaller

Version:
10.0.0.91

MD5:
c374ab50aebe0199ef5c071bc5e22bcc

SHA-1:
4521236d17ce025a51c1820ed2d181ea3b19ee54

SHA-256:
8c81a41533d1657baf7693ae481fe161524cfd7b04031be9d9ff986c391a0623

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 4:29:20 AM UTC  (today)

File size:
5.5 MB (5,724,672 bytes)

Product version:
10.0.0.91

Copyright:
Copyright © Citrix 2014

Original file name:
XmmInstaller.exe

File type:
Executable application (Win64 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\xmminstaller.exe

File PE Metadata
Compilation timestamp:
1/27/2015 5:42:09 AM

OS version:
4.0

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
98304:qdn7BxwuD8V3wHH9vUHwGPv2KDgMb/0GQLaVuoLeDy8S5Y5NCgmqDv:SlSuD8V3kH1/pegM0ZLaBLeOohmw

Entry point:
4D, 5A, 90, 00, 03, 00, 00, 00, 04, 00, 00, 00, FF, FF, 00, 00, B8, 00, 00, 00, 00, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 80, 00, 00, 00, 0E, 1F, BA, 0E, 00, B4, 09, CD, 21, B8, 01, 4C, CD, 21, 54, 68, 69, 73, 20, 70, 72, 6F, 67, 72, 61, 6D, 20, 63, 61, 6E, 6E, 6F, 74, 20, 62, 65, 20, 72, 75, 6E, 20, 69, 6E, 20, 44, 4F, 53, 20, 6D, 6F, 64, 65, 2E, 0D, 0D, 0A, 24, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.7848  (probably packed)

Code size:
5.4 MB (5,664,768 bytes)

The file XmmInstaller.exe has been seen being distributed by the following URL.

Scan XmmInstaller.exe - Powered by Reason Core Security