home

xperienceapp_2153741455117580053.exe

STREAM BOW - PROGRAMAÇÃO INFORMÁTICA LDA

Publisher:
STREAM BOW - PROGRAMAÇÃO INFORMÁTICA LDA  (signed and verified)

MD5:
6f05d1e7d996e0ac2a89cc2ab0f0fc50

SHA-1:
4d54bbe331cd534e7ef4607213f9ec1b0af676f5

SHA-256:
24534be4b014fde382b8bc7db1ed3fb195f6c6858ced5e85f61a91d5893617f6

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/16/2024 12:33:22 AM UTC  (today)

File size:
349.6 KB (358,032 bytes)

Common path:
C:\users\{user}\downloads\xperienceapp_2153741455117580053.exe.part

Digital Signature
Signed by:
STREAM BOW - PROGRAMAÇÃO INFORMÁTICA LDA

Authority:
DigiCert Inc

Valid from:
2/4/2016 12:00:00 AM

Valid to:
2/8/2017 12:00:00 PM

Subject:
CN=STREAM BOW - PROGRAMAÇÃO INFORMÁTICA LDA, O=STREAM BOW - PROGRAMAÇÃO INFORMÁTICA LDA, L=Oeiras, S=Lisbon, C=PT

Issuer:
CN=DigiCert SHA2 Assured ID Code Signing CA, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
079B90EDBF07A6AE5EA404EC88E1C30C

File PE Metadata
Compilation timestamp:
5/28/2014 11:40:14 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
10.0

CTPH (ssdeep):
6144:ZOG5ro8Ja4byfMHXR37V/MOy0UD1iWiX10+:Do8DHXRLV/MOhUD1iC+

Entry address:
0x345D1

Entry point:
E8, C5, 94, 00, 00, E9, 95, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, 7D, 08, 00, 75, 0B, FF, 75, 0C, E8, B5, EE, FF, FF, 59, 5D, C3, 56, 8B, 75, 0C, 85, F6, 75, 0D, FF, 75, 08, E8, 7B, EC, FF, FF, 59, 33, C0, EB, 4D, 57, EB, 30, 85, F6, 75, 01, 46, 56, FF, 75, 08, 6A, 00, FF, 35, 7C, 44, 45, 00, FF, 15, 18, 61, 44, 00, 8B, F8, 85, FF, 75, 5E, 39, 05, AC, 4A, 45, 00, 74, 40, 56, E8, 1F, 72, 00, 00, 59, 85, C0, 74, 1D, 83, FE, E0, 76, CB, 56, E8, 0F, 72, 00, 00, 59, E8, 9B, 04, 00, 00, C7, 00, 0C, 00, 00, 00, 33...
 
[+]

Code size:
275 KB (281,600 bytes)

The file xperienceapp_2153741455117580053.exe has been seen being distributed by the following 19 URLs.

http://testeinternet.noa.pt/.../OTT_Teste10?getDiagnosis&tkn=2440261477041807053&XENC=1477042183189

http://testeinternet.nos.pt/.../OTT_Teste10?getDiagnosis&tkn=2284881462800193053&XENC=1462800447745

http://testeinternet.nos.pt/.../OTT_Teste10?getDiagnosis&tkn=2418051474381653053&XENC=1474382044605

http://testeinternet.nos.pt/.../OTT_Teste10?getDiagnosis&tkn=2445621477604369053&XENC=1477604684133

http://62.169.69.76/.../OTT_Teste10?getDiagnosis&tkn=2318931465846666053&XENC=1465846971680

http://testeinternet.nos.pt/.../OTT_Teste10?getDiagnosis&tkn=2436071476477609053&XENC=1476477987955

http://testeinternet.nos.pt/.../OTT_Teste10?getDiagnosis&tkn=2334701467055584053&XENC=1467055844873

http://testeinternet.nos.pt/.../OTT_Teste10?getDiagnosis&tkn=2337471467218216053&XENC=1467218515843

http://testeinternet.nos.pt/.../OTT_Teste10?getDiagnosis&tkn=2232771459361419053&XENC=1459361852912

http://testeinternet.nos.pt/.../OTT_Teste10?getDiagnosis&tkn=2402891472659811053&XENC=1472660160991

http://testeinternet.nos.pt/.../OTT_Teste10?getDiagnosis&tkn=2434211476298750053&XENC=1476299114732

http://testeinternet.nos.pt/.../OTT_Teste10?getDiagnosis&tkn=2446671477753487053&XENC=1477753890586

http://62.169.69.76/.../OTT_Teste10?getDiagnosis&tkn=2191371457130470053&XENC=1457130678721

http://62.169.69.76/.../OTT_Teste10?getDiagnosis&tkn=2350771468433302053&XENC=1468433601468

http://testeinternet.nos.pt/.../OTT_Teste10?getDiagnosis&tkn=2216171458592381053&XENC=1458591967829

http://testeinternet.nos.pt/.../OTT_Teste10?getDiagnosis&tkn=2193281457293999053&XENC=1457294210482

http://testeinternet.nos.pt/.../OTT_Teste10?getDiagnosis&tkn=2204931457981593053&XENC=1457981817794

http://testeinternet.nos.pt/.../OTT_Teste10?getDiagnosis&tkn=2209141458166630053&XENC=1458166841929

http://testeinternet.nos.pt/.../OTT_Teste10?getDiagnosis&tkn=2165691455729481053&XENC=1455729672101

Scan xperienceapp_2153741455117580053.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.