» epi604_3.exe
Overview
Analysis
File Details
Downloads (3)

epi604_3.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from www.lampada.uerj.br and multiple other hosts.

File name:

epi604_3.exe

MD5:

2088919d890359967147e83e388d1bf6

SHA-1:

b6754167699ef7f6b7f97f17dbf0b6eee7dc5cf7

SHA-256:

8a0423db29c389788d462540de5986ed7482790a96a07f5e808752f98ba5f2ac

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

5/18/2024 9:46:35 PM UTC (today)

File size:

1.3 MB (1,364,571 bytes)

File type:

Executable application (Win64 EXE)

File PE Metadata

OS bitness:

Win64

CTPH (ssdeep):

24576:/HLhp9/aGH5paPBmnlFFKIC/+CBV1hFOgu9Gi6pJixzwnh5Ha4e2hcl0UKRMsu:vLBBH50kz7K+CT1zOR9pnQX9hzd2su

Entry point:

4D, 5A, 2C, 01, 25, 00, 00, 00, 02, 00, 0A, 10, FF, FF, CC, 06, 80, 00, 00, 00, 0E, 00, 7B, 04, 1C, 00, 00, 00, 52, 4A, 53, 58, FF, FF, BA, 81, 05, 2E, 89, 16, BE, 02, B4, 30, CD, 21, 8B, 2E, 02, FF, FF, 00, 8B, 1E, 2C, 00, 8E, DA, A3, 92, 00, 8C, 06, 90, 00, 89, 1E, F0, 87, 8C, FC, 2E, A8, 00, E8, 84, 01, A1, F6, FF, FF, 8E, C0, 33, C0, 8B, D8, 8B, F8, B9, FF, 7F, FC, F2, AE, E3, 61, FF, FF, 43, 26, 38, 05, 75, F6, 80, CD, 80, F7, D9, 89, 0E, 8A, 00, B9, FF, 21, 01, 00, D3, E3, 83, C3, 08, 83, E3, F8, C8... 
[+]

Entropy:

7.9992 (probably packed)

The file epi604_3.exe has been seen being distributed by the following 3 URLs.

http://www.lampada.uerj.br/epiinfo/.../epi604_3.exe

http://www.epiconcept.fr/fichiers/epi6/.../epi604_3.exe

ftp://ftp.cdc.gov/pub/Software/.../epi604_3.exe

Scan epi604_3.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.