home

регуляция и патология..e.exe

Adit Testdesk

Adit Software

This is a setup program which is used to install the application. The file has been seen being downloaded from rghost.ru.
Publisher:
Adit Software

Product:
Adit Testdesk

Description:
Adit Testdesk Embedded Tester

Version:
2.0.1396

MD5:
ceaf1c255d9ebe131af6a7de3d8e6b95

SHA-1:
9d782720ca6bc37dd7fd2b410c1b9c30ad28d578

SHA-256:
7d411b529fd603d0e807d81868c5ed26edd335115f36604d23a84b9848216758

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/25/2024 3:49:03 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Dropper.Gen
7.11.30.172

File size:
5.1 MB (5,300,520 bytes)

Product version:
2.0.1396

Copyright:
Copyright ©2005-09 Adit Software

Original file name:
Testviewer.c32

File type:
Executable application (Win32 EXE)

File PE Metadata
Compilation timestamp:
12/23/2009 8:28:56 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:olAJbLT7fGT0cSxXXoUXgaUpg8/XuFEpaywXX1gSKWZQ:2gLHGTsRXoUXg7B/jpayG16WZQ

Entry address:
0xCE1D3F

Entry point:
E8, 3B, FF, FF, FF, 05, A3, 25, 00, 00, FF, E0, E8, 2F, FF, FF, FF, 05, BC, 13, 00, 00, FF, E0, E8, 04, 00, 00, 00, FF, FF, FF, FF, 5E, C3, 00, 1F, FE, 0E, 8E, 8C, BD, E9, 98, 97, 60, B0, 3E, 9E, 36, 29, 32, 26, E5, AD, 7E, 64, D8, AC, DB, 3B, E0, C9, 54, 02, A8, 97, C6, 5C, 93, 8A, 0D, 0F, 96, 9B, 37, C0, EF, A4, 72, F7, EA, 01, 62, 8B, 5C, EC, 16, 00, 82, BB, 85, C1, 8C, 55, 74, A2, 68, F4, 17, 56, 7B, 39, A2, A8, B5, 1D, F1, 08, D3, 93, A6, 26, 03, 6C, 18, 93, B1, 0B, 93, 04, 7F, A7, 25, 33, 1B, 56, 96...
 
[+]

Code size:
7 MB (7,303,168 bytes)

The file регуляция и патология..e.exe has been seen being distributed by the following URL.

http://rghost.ru/download/59492284/.../????????? ? ?????????..e.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.