home

install.exe

Oriolus Lernprogramme GmbH

This is a self-extracting archive and installer.
Publisher:
Oriolus Lernprogramme GmbH  (signed and verified)

MD5:
a08497446197b268bcbb1df12fcb7b22

SHA-1:
e620d91e3d0a133ca9678415d540590a27592043

SHA-256:
d2cc4eb06ed815dff2cdde4966c6d9598ec02f60864a0e4e5f4072f846934b71

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/26/2024 11:48:10 AM UTC  (today)

Scan engine
Detection
Engine version

IKARUS anti.virus
Trojan.Win32.Delf
t3scan.2.2.29

Kaspersky
HEUR:Trojan.Win32.Generic
14.0.0.-1010

File size:
496.5 KB (508,440 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\orioulus - lernsoftware schule\cd-inhalt\install.exe

Digital Signature
Signed by:
Oriolus Lernprogramme GmbH

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
1/31/2007 1:00:00 AM

Valid to:
1/31/2009 12:59:59 AM

Subject:
CN=Oriolus Lernprogramme GmbH, OU=Secure Application Development, O=Oriolus Lernprogramme GmbH, L=Kleinsendelbach, S=Bayern, C=DE

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
559CDD3954D65E1EBBAB4C6F35D8E5E2

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

Entry address:
0x4ABEC

Entry point:
55, 8B, EC, 83, C4, F0, B8, 5C, AA, 44, 00, E8, F4, B4, FB, FF, A1, 54, C4, 44, 00, 8B, 00, E8, 0C, DC, FF, FF, 8B, 0D, 28, C5, 44, 00, A1, 54, C4, 44, 00, 8B, 00, 8B, 15, 78, 98, 44, 00, E8, 40, CB, FF, FF, 8B, 0D, D0, C3, 44, 00, A1, 54, C4, 44, 00, 8B, 00, 8B, 15, 60, 94, 44, 00, E8, 28, CB, FF, FF, A1, D0, C3, 44, 00, 8B, 00, 8B, 10, FF, 92, 14, 01, 00, 00, A1, 54, C4, 44, 00, 8B, 00, E8, 6D, DC, FF, FF, E8, 24, 93, FB, FF, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
295.5 KB (302,592 bytes)

Scan install.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.