home

128-connecta.exe

GALI DURAN

This is a setup program which is used to install the application. The file has been seen being downloaded from connecta-2000.softonic.com and multiple other hosts.
Publisher:
Connecta2000.com  (signed by GALI DURAN)

Description:
Connecta 2000 v7.50.3

Version:
7.50.3

MD5:
851d3a4aa8a583b6f97d02a236a0ceab

SHA-1:
8775b9f17f51dcd4fdc7155302b8d2191ac4568a

SHA-256:
8b635997bf634f9347f498b2b4e380c3301587db0287c63256b18ae0c850229f

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/23/2024 10:46:17 PM UTC  (today)

File size:
63.8 KB (65,312 bytes)

Copyright:
Connecta2000.com

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\128-connecta.exe

Digital Signature
Signed by:
GALI DURAN

Authority:
DIRECCION GENERAL DE LA POLICIA

Valid from:
11/10/2008 1:38:04 PM

Valid to:
5/10/2011 1:08:01 PM

Subject:
CN="GALI DURAN, JOEL (FIRMA)", G=JOEL, SN=GALI, SERIALNUMBER=45474330H, C=ES

Issuer:
CN=AC DNIE 003, OU=DNIE, O=DIRECCION GENERAL DE LA POLICIA, C=ES

Serial number:
4440CE28

File PE Metadata
Compilation timestamp:
11/20/2007 6:52:34 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
768:jCwB6VQp1plqHukpblxQdWRm5pnTG2cJJbmwFIqFuELZGuU:DfpcHukpxRKn8JlB9NU

Entry address:
0x4387

Entry point:
55, 8D, 6C, 24, 88, 81, EC, 7C, 0F, 00, 00, 53, 56, 57, 33, FF, 68, 00, 01, 00, 00, 57, 89, 7D, 14, 89, 7D, FC, 89, 7D, F4, FF, 15, F8, 80, 40, 00, 6A, 04, 89, 45, 70, FF, 15, 24, 81, 40, 00, 89, 7D, 00, 89, 7D, F8, 89, 7D, 18, 89, 7D, F0, 89, 7D, 0C, 89, 7D, 04, 89, 7D, 08, 89, 7D, 40, 89, 7D, 1C, 89, 7D, 24, 89, 7D, 20, FF, 15, B8, 80, 40, 00, 8B, F0, 8A, 06, 3C, 22, 89, 75, 50, 75, 24, EB, 04, 3C, 22, 74, 0E, 46, 8A, 06, 84, C0, 89, 75, 50, 75, F2, 3C, 22, 75, 14, 46, 89, 75, 50, EB, 0E, 3C, 20, 74, 0F...
 
[+]

Code size:
24.5 KB (25,088 bytes)

The file 128-connecta.exe has been seen being distributed by the following 4 URLs.

https://connecta-2000.softonic.com/.../trmsvRChbxdrflJq3ZIylWvxO9Ap7G Xrp1sbmp 8tpGVGSulDy0A41mcRqedbgVh6OxcqUrD4NGxHOZks4qtC81z3wNekQXN2ow3uYY6DXZ6XhFcZumy6AyYoYbop8pKHfF5w7i 2F4oyK9kMSkoU8=

http://gsf-cf.softonic.com/877/5b9/.../file?SD_used=0&channel=WEB&fdh=no&id_file=9180&instance=softonic_es&type=PROGRAM&Expires=1477742258&Signature=BwWfRv6ZabPv2W0Cq89myS42lBwB6Hxb2nZL--BupKCu1aXgqCqHhpqSRF8xgm8XvK4kAOyWfN0gKQ4IubrSEb94gd02tVj35KEVFq7teAwfzTELKa0XGgvuWkbVxeLN~pATITYxxssI5Xwxih84gkdhOHy3BXybRA99HPPssXI_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=InstalaConnecta.exe

http://connecta-2000.softonic.com/.../trmsvRChbxdrflJq3ZIylWvxO9Ap7G Xrp1sbmp 8tpGVGSulDy0A41mcRqedbgVh6OxcqUrD4NGxHOZks4qtC81z3wNekQXN2ow3uYY6DXZ6XhFcZumy6AyYoYbop8pKHfF5w7i 2F4oyK9kMSkoU8=

http://www.connecta2000.com/.../InstalaConnecta.exe

Scan 128-connecta.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.