home

(1_coredrive2.coredesk.com_944f410fxb1e2x49cbx8a48xf4d7ea5c4074_u)_gladedit.exe

TODO:

Connectis SPRL

Publisher:
TODO: <Company name>  (signed by Connectis SPRL)

Product:
TODO: <Product name>

Description:
GladEdit

Version:
1.0.0.1

MD5:
160ffddd699c853d70f6ff4fa9f805f2

SHA-1:
6800d5ba05f86e0a2b910890efa5ed2f78b81370

SHA-256:
78c3792216dc8687c24784434c2d6db7f0726028c29e04c7db87751de064f3d0

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/23/2024 6:40:25 AM UTC  (today)

File size:
485.8 KB (497,432 bytes)

Product version:
1.0.0.1

Copyright:
TODO: (c) <Company name>. All rights reserved.

Original file name:
GladEdit.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\(1_coredrive2.coredesk.com_944f410fxb1e2x49cbx8a48xf4d7ea5c4074_u)_gladedit.exe

Digital Signature
Signed by:
Connectis SPRL

Authority:
GlobalSign nv-sa

Valid from:
10/3/2013 11:49:07 PM

Valid to:
10/3/2016 11:49:07 PM

Subject:
CN=Connectis SPRL, O=Connectis SPRL, S=Brussels, C=BE

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11214E3FC3744CCAEB604132B5505185BC08

File PE Metadata
Compilation timestamp:
6/6/2015 11:12:42 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
6144:r4ccSUCI5EAc260EuU6T694ZS7EIrkBxVbFyCL2KZVNIIIIziYkGz0BbnIyqkDHy:r4crUD5qoZSw62VJ/L2u8YXzibMSo8l

Entry address:
0x2A251

Entry point:
E8, 80, 7D, 00, 00, E9, 17, FE, FF, FF, 51, C7, 01, 20, 7F, 45, 00, E8, 03, 7E, 00, 00, 59, C3, 56, 8B, F1, E8, EA, FF, FF, FF, F6, 44, 24, 08, 01, 74, 07, 56, E8, 5A, 26, FF, FF, 59, 8B, C6, 5E, C2, 04, 00, 8B, 44, 24, 04, 83, C1, 09, 51, 83, C0, 09, 50, E8, 6A, 20, 00, 00, F7, D8, 59, 1B, C0, 59, 40, C2, 04, 00, 8B, 44, 24, 04, 8B, D0, 66, 8B, 08, 40, 40, 66, 85, C9, 75, F6, 66, 8B, 4C, 24, 08, 48, 48, 3B, C2, 74, 05, 66, 39, 08, 75, F5, 66, 8B, 10, 66, 2B, D1, 66, F7, DA, 1B, D2, F7, D2, 23, C2, C3, 55...
 
[+]

Entropy:
6.3475

Code size:
292 KB (299,008 bytes)

The file (1_coredrive2.coredesk.com_944f410fxb1e2x49cbx8a48xf4d7ea5c4074_u)_gladedit.exe has been seen being distributed by the following URL.

https://coredrive2.coredesk.com/portal/LocalUploadPage.aspx?src=filebrowser&location=69A884C0-9F3B-4736-AF57-CCA7C3CDC1B8/.../Photos&reload=1

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.