home

desktopmania-setup.exe

OOO Online Center

This is a setup and installation application. The file has been seen being downloaded from download.desktopmania.ru.
Publisher:
OOO Online Center  (signed and verified)

MD5:
61b8b25faa77e86420d0683ec572fcb8

SHA-1:
2c1a35b111e6f05f4397820c53ff5e0f7ad0827f

SHA-256:
7b71e3669a8520ec10294b8ee792176ac2e79735946754d7254654f0f952b3f7

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/18/2024 9:32:22 AM UTC  (today)

File size:
3.8 MB (3,980,648 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\desktopmania-setup.exe

Digital Signature
Signed by:
OOO Online Center

Authority:
thawte, Inc.

Valid from:
11/17/2015 3:00:00 AM

Valid to:
2/16/2018 2:59:59 AM

Subject:
CN=OOO Online Center, O=OOO Online Center, L=Yaroslavl, S=Yaroslavl, C=RU

Issuer:
CN=thawte SHA256 Code Signing CA, O="thawte, Inc.", C=US

Serial number:
456F99ACAA97D50966FC763AEF02D5E1

File PE Metadata
Compilation timestamp:
11/17/2014 1:22:18 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:C1cWu1BQA98s6AFzCtiqCrTP98OpXNHW698h/a6mX:I0Fz7nXq/a6s

Entry address:
0xC112C

Entry point:
55, 8B, EC, 83, C4, F0, B8, 00, EB, 4B, 00, E8, 90, 61, F4, FF, E8, AF, D8, FF, FF, 84, C0, 75, 16, B8, B8, 11, 4C, 00, E8, 7D, 65, F7, FF, A1, F8, 7E, 4C, 00, 8B, 00, E8, AD, 2A, FA, FF, E8, 74, D8, FF, FF, 84, C0, 75, 16, B8, F8, 11, 4C, 00, E8, 5E, 65, F7, FF, A1, F8, 7E, 4C, 00, 8B, 00, E8, 8E, 2A, FA, FF, A1, F8, 7E, 4C, 00, 8B, 00, E8, C6, 28, FA, FF, 8B, 0D, B4, 7A, 4C, 00, A1, F8, 7E, 4C, 00, 8B, 00, 8B, 15, 80, B8, 4B, 00, E8, C6, 28, FA, FF, A1, F8, 7E, 4C, 00, 8B, 00, E8, 3A, 29, FA, FF, E8, 91...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
765.5 KB (783,872 bytes)

The file desktopmania-setup.exe has been seen being distributed by the following URL.

http://download.desktopmania.ru/download.php?id=76225&name=???? ?? ???

Scan desktopmania-setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.