home

ActiveDossierUploader.exe

Active Dossier Uploader

vBAddict.net, Marius Czyz aka Phalynx

Publisher:
vBAddict.net, Marius Czyz aka Phalynx

Product:
Active Dossier Uploader

Version:
3.2.0.5

MD5:
8cc15138e64e75af6ed4002209fd7556

SHA-1:
b27bf9f0fbd77d5aebacc00e1014f53fee3572cf

SHA-256:
31a939a59d94534cf980a21a39851fe1ba66537da3f4e15e5882268f930ee821

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 6:31:25 AM UTC  (today)

File size:
2.1 MB (2,226,688 bytes)

Product version:
3.2.0.5

Copyright:
Copyright © Marius Czyz 2011 - 2015

Original file name:
ActiveDossierUploader.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\activedossieruploader.exe

File PE Metadata
Compilation timestamp:
1/5/2015 6:40:06 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
49152:oFJidbP1FMvyQRGHcx0C+OTpNaLPg6rKGFJiPFJi/nFJiYUE6Wy3CWYC6i+ss1lC:+JidbtFh40sPaLPzrK0Ji9Ji/FJi+li

Entry address:
0x2020CE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.3720

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
2 MB (2,097,664 bytes)

The file ActiveDossierUploader.exe has been seen being distributed by the following 2 URLs.

http://www.vbaddict.net/.../ActiveDossierUploader.exe

http://www.vbaddict.net/.../ActiveDossierUploader.exe

Scan ActiveDossierUploader.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.