home

desktopmania-setup.exe

OOO Online Center

This is a setup program which is used to install the application. The file has been seen being downloaded from soft.mydiv.net and multiple other hosts.
Publisher:
OOO Online Center  (signed and verified)

MD5:
fb617e07cb93a6aa33af383a6e7408d7

SHA-1:
b11ccf9b25f29b4edd393c7ac065a897975f720c

SHA-256:
04b4f05c85423ed3f1dee896bd3c42599c3a4b40284067cd9c0bd2f4755303d5

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 11:23:02 AM UTC  (today)

File size:
3.8 MB (3,968,672 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\desktopmania-setup.exe

Digital Signature
Signed by:
OOO Online Center

Authority:
Thawte, Inc.

Valid from:
11/11/2013 4:00:00 AM

Valid to:
2/11/2016 3:59:59 AM

Subject:
CN=OOO Online Center, O=OOO Online Center, L=Yaroslavl, S=Yaroslavl, C=RU

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
4945BBB8ACAA7493A28ADEA6404F38DB

File PE Metadata
Compilation timestamp:
11/17/2014 2:22:18 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:m1cWu1BQA98s6AFzCtiqCrTP98OpXNHW698h/a6mE:00Fz7nXq/a6X

Entry address:
0xC112C

Entry point:
55, 8B, EC, 83, C4, F0, B8, 00, EB, 4B, 00, E8, 90, 61, F4, FF, E8, AF, D8, FF, FF, 84, C0, 75, 16, B8, B8, 11, 4C, 00, E8, 7D, 65, F7, FF, A1, F8, 7E, 4C, 00, 8B, 00, E8, AD, 2A, FA, FF, E8, 74, D8, FF, FF, 84, C0, 75, 16, B8, F8, 11, 4C, 00, E8, 5E, 65, F7, FF, A1, F8, 7E, 4C, 00, 8B, 00, E8, 8E, 2A, FA, FF, A1, F8, 7E, 4C, 00, 8B, 00, E8, C6, 28, FA, FF, 8B, 0D, B4, 7A, 4C, 00, A1, F8, 7E, 4C, 00, 8B, 00, 8B, 15, 80, B8, 4B, 00, E8, C6, 28, FA, FF, A1, F8, 7E, 4C, 00, 8B, 00, E8, 3A, 29, FA, FF, E8, 91...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
765.5 KB (783,872 bytes)

The file desktopmania-setup.exe has been seen being distributed by the following 5 URLs.

http://soft.mydiv.net/win/dlfile2f28c_293186/.../desktopmania-setup.exe

http://soft.mydiv.net/win/dlfile9d3d7_293187/.../desktopmania-setup.exe

http://soft.mydiv.net/win/dlfileafe0d_247843/.../desktopmania-setup.exe

http://soft.mydiv.net/win/dlfile245f8_247843/.../desktopmania-setup.exe

http://desktopmania.ru/desktopmania-setup.exe

Scan desktopmania-setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.