download.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from download2139.mediafire.com.
MD5:
fadbf52dee31fe06b01ef015a8018909

SHA-1:
1c8ac9a672fc2fa4138d6331a17a68e18c573b10

SHA-256:
b5eaf15f0238d73c85e58c4c0127f1623384e054989c1e1148648dfdf714c6c7

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2017 10:34:10 AM UTC  (today)

File size:
28.2 KB (28,927 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\download.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
384:LvfytZ+SjbhQ44Myr1/uQtylXSbefw3axTWlB:LvyH/HyrDyxS6jTy

Entry point:
3C, 21, 44, 4F, 43, 54, 59, 50, 45, 20, 68, 74, 6D, 6C, 3E, 0A, 3C, 68, 74, 6D, 6C, 20, 6C, 61, 6E, 67, 3D, 22, 73, 72, 22, 3E, 0A, 3C, 68, 65, 61, 64, 3E, 0A, 20, 20, 20, 20, 3C, 6D, 65, 74, 61, 20, 63, 68, 61, 72, 73, 65, 74, 3D, 22, 55, 54, 46, 2D, 38, 22, 3E, 3C, 6D, 65, 74, 61, 20, 63, 6F, 6E, 74, 65, 6E, 74, 3D, 22, 49, 45, 3D, 65, 64, 67, 65, 22, 20, 68, 74, 74, 70, 2D, 65, 71, 75, 69, 76, 3D, 22, 58, 2D, 55, 41, 2D, 43, 6F, 6D, 70, 61, 74, 69, 62, 6C, 65, 22, 3E, 0A, 20, 20, 20, 20, 3C, 6D, 65, 74...
 
[+]

The file download.exe has been seen being distributed by the following URL.

Scan download.exe - Powered by Reason Core Security