home

EasyImageModifier.exe

Easy Image Modifier

Kevin Schneider

This is a setup program which is used to install the application. The file has been seen being downloaded from 203.71.152.11 and multiple other hosts.
Publisher:
Kevin Schneider

Product:
Easy Image Modifier

Description:
Easy Image Modifier 4.8

Version:
4.8

MD5:
7c452df005f845d7e83e22d13034f1d2

SHA-1:
fc511881ae5d4874be0074fa5fa2892f54398641

SHA-256:
759c3bc9c08ead54c1d21a6c7ee692af2b6c97d859e5ac43d2c56002afbdc1be

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/18/2024 4:06:20 AM UTC  (today)

File size:
1.2 MB (1,237,504 bytes)

Product version:
4.8

Copyright:
Kevin Schneider

Original file name:
EasyImageModifier.exe

File type:
Executable application (Win32 EXE)

Language:
Spanish

File PE Metadata
Compilation timestamp:
11/23/2013 7:07:06 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.50

CTPH (ssdeep):
24576:BmT5C16W3PiF71uaae1MY9ndjKQU7mdykj+WdZaNTTrZrkKu+GA:25C1eFJ+C9/eyBkTNrkKLX

Entry address:
0x1000

Entry point:
68, FC, 02, 00, 00, 68, 00, 00, 00, 00, 68, C4, 72, 51, 00, E8, CE, D6, 03, 00, 83, C4, 0C, 68, 00, 00, 00, 00, E8, CD, D6, 03, 00, A3, C8, 72, 51, 00, 68, 00, 00, 00, 00, 68, 00, 10, 00, 00, 68, 00, 00, 00, 00, E8, BA, D6, 03, 00, A3, C4, 72, 51, 00, B8, 00, 83, 4F, 00, A3, 04, 73, 51, 00, E8, 92, 71, 06, 00, E8, F5, 4D, 06, 00, E8, 78, 46, 06, 00, E8, 8B, 41, 06, 00, E8, D6, 3F, 06, 00, E8, 1B, AD, 05, 00, E8, 93, 92, 05, 00, E8, ED, 82, 05, 00, E8, 39, 74, 05, 00, E8, E9, 65, 05, 00, E8, 56, 63, 05, 00...
 
[+]

Packer / compiler:
PKLITE32, 0x1.1

Code size:
817.5 KB (837,120 bytes)

The file EasyImageModifier.exe has been seen being distributed by the following 2 URLs.

http://203.71.152.11/mail.service?id=f8ec4c52-95e2-45e4-802e-1342ff8f8a92

https://c34.pcloud.com/.../EasyImageModifier.exe

Scan EasyImageModifier.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.