home

idc2_setup.exe

Identity Cloaker

TFR Technology s.r.o.

This is a self-extracting archive and installer. The file has been seen being downloaded from www.identitycloaker.com.
Publisher:
Tomas France  (signed by TFR Technology s.r.o.)

Product:
Identity Cloaker

Version:
2.0.53.0

MD5:
4a32101d3b162e0906c92d94cb96cdcb

SHA-1:
36242c0a3b6d8fef5a45255e21d12fd2ed2b88dc

SHA-256:
a608c8dfd472b324ebb5d8e75f6bde3db018610fbc0147b8fc0bfc84e83f0684

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/25/2024 9:05:31 PM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Agent-AVRP [Trj]
2014.9-150325

File size:
12.8 MB (13,472,680 bytes)

Product version:
2.0.53.0

Copyright:
Copyright (C) 2015 Tomas France

Original file name:
IDC2_Setup_2.0.53.0.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\inetcache\content.ie5\412ktw6u\idc2_setup.exe

Digital Signature
Signed by:
TFR Technology s.r.o.

Authority:
Unizeto Technologies S.A.

Valid from:
10/16/2014 6:52:29 AM

Valid to:
10/15/2016 6:52:29 AM

Subject:
E=tomfra@centrum.cz, CN=TFR Technology s.r.o., O=TFR Technology s.r.o., C=CZ

Issuer:
CN=Certum Code Signing CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:
0141A2F0D667C610FBC1629823A23395

File PE Metadata
Compilation timestamp:
11/17/2014 3:09:06 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
393216:Cs7CN5wIGeqstCu50s+OLqdlkZn6fx86wO:v7CN5+eqYCu+sgdlq6fS6wO

Entry address:
0xC8DAC

Entry point:
E8, 46, CC, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 51, 53, 56, 8B, F0, 33, DB, 3B, F3, 75, 1E, E8, 5D, 4D, 00, 00, 6A, 16, 5E, 53, 53, 53, 53, 53, 89, 30, E8, C5, D5, FF, FF, 83, C4, 14, 8B, C6, E9, C2, 00, 00, 00, 57, 39, 5D, 0C, 77, 1E, E8, 39, 4D, 00, 00, 6A, 16, 5E, 53, 53, 53, 53, 53, 89, 30, E8, A1, D5, FF, FF, 83, C4, 14, 8B, C6, E9, 9D, 00, 00, 00, 33, C0, 39, 5D, 14, 66, 89, 06, 0F, 95, C0, 40, 39, 45, 0C, 77, 09, E8, 0A, 4D, 00, 00, 6A, 22, EB, CF, 8B, 45, 10, 83, C0, FE, 83, F8, 22, 77...
 
[+]

Entropy:
7.8768  (probably packed)

Code size:
1023.5 KB (1,048,064 bytes)

The file idc2_setup.exe has been seen being distributed by the following URL.

https://www.identitycloaker.com/.../IDC2_Setup.exe

Scan idc2_setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.