» idcloakvpn-install-2.2.1.exe
Overview
Analysis
File Details
Downloads (4)

idcloakvpn-install-2.2.1.exe

idcloak VPN

idcloak Technologies Inc

This is a self-extracting archive and installer. The file has been seen being downloaded from free-vpn-unblock-youtube-facebook-hide-ip-proxy-anonymous.en.softonic.com and multiple other hosts.

File name:

Publisher:

idcloak Technologies Inc. (signed by idcloak Technologies Inc)

Product:

idcloak VPN

Description:

idcloak VPN installer 2.2.1 for Windows

Version:

2.2.1.0

MD5:

9d3fcc82062a1cd755be1ce45394a432

SHA-1:

be420aa501195a8b6a10cf59d5ec7e3b74e02e00

SHA-256:

3fd5a6e20ffca218dda8c71c55ad12ad8c19862ffba8e562a3de63dae1a24fec

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/24/2024 3:48:04 PM UTC (today)

File size:

24.1 MB (25,266,280 bytes)

Product version:

2.2.1.0

Trademarks:

idcloak

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\programs\idcloakvpn-install-2.2.1.exe

Digital Signature

Signed by:

idcloak Technologies Inc

Authority:

COMODO CA Limited

Valid from:

9/5/2013 6:00:00 AM

Valid to:

9/5/2016 5:59:59 AM

Subject:

CN=idcloak Technologies Inc, O=idcloak Technologies Inc, STREET="3824 Cedar Springs Rd #801-1395", L=Dallas, S=Texas, PostalCode=75219, C=US

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00BA7E94A115F5BE6B5AE952B713C39270

File PE Metadata

Compilation timestamp:

6/30/2015 3:44:40 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

8.0

CTPH (ssdeep):

393216:DUio274dHnb2hC8yMzjQY7zU79xWnnDySXxuFEI1vsy7/TJyXsS9a+5sEtSb8ux5:Djo274dHaAkDKAnnDySh7I+yg5PtS7Yi

Entry address:

0x387A98

Entry point:

E8, E9, CC, 00, 00, E9, 16, FE, FF, FF, 6A, 0C, 68, B8, 97, C2, 00, E8, DA, CA, 00, 00, 83, 65, E4, 00, 8B, 75, 08, 3B, 35, 6C, 8F, C5, 00, 77, 22, 6A, 04, E8, CC, CE, 00, 00, 59, 83, 65, FC, 00, 56, E8, 0E, D7, 00, 00, 59, 89, 45, E4, C7, 45, FC, FE, FF, FF, FF, E8, 09, 00, 00, 00, 8B, 45, E4, E8, E6, CA, 00, 00, C3, 6A, 04, E8, C9, CD, 00, 00, 59, C3, 55, 8B, 6C, 24, 08, 83, FD, E0, 0F, 87, 9F, 00, 00, 00, 53, 8B, 1D, A0, 13, 7B, 00, 56, 57, 33, F6, 39, 35, F4, 89, C5, 00, 8B, FD, 75, 18, E8, CA, C0, 00... 
[+]

Entropy:

7.7891 (probably packed)

Code size:

3.7 MB (3,866,624 bytes)

The file idcloakvpn-install-2.2.1.exe has been seen being distributed by the following 4 URLs.

https://free-vpn-unblock-youtube-facebook-hide-ip-proxy-anonymous.en.softonic.com/download-tracker?th=1/6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAO N1L82hIbILqpi63Iod4d22YAeUsCLOEq761uaqnHvZ1zUgm2TpB3Eguc V5EMALQvpwlhqXP1qKG8gHI8F5EeyCed ujR9ROn6qlPe3fx36MuxTbfbakHSGqQ7lKYk0ESfgvIqy1vwrL/0I/.../LjA==

http://proxies-1.idcloak.com/clientsoftware/download/.../idcloakVPN-install-2.2.1.exe

http://gsf-cf.softonic.com/be4/20a/.../idcloakVPN-install-2.2.1.exe

http://free-vpn-unblock-youtube-facebook-hide-ip-proxy-anonymous.en.softonic.com/download-tracker?th=1/6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAO N1L82hIbILqpi63Iod4d22YAeUsCLOEq761uaqnHvZ1zUgm2TpB3Eguc V5EMALQvpwlhqXP1qKG8gHI8F5EeyCed ujR9ROn6qlPe3fx36MuxTbfbakHSGqQ7lKYk0ESfgvIqy1vwrL/0I/.../LjA==

Scan idcloakvpn-install-2.2.1.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.