» macrorecordersetup.exe
Overview
Analysis
File Details
Downloads (26)

macrorecordersetup.exe

Macro Recorder

Alexander Yumashev

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.

File name:

Publisher:

Jitbit Software (signed by Alexander Yumashev)

Product:

Macro Recorder

Description:

Macro Recorder Setup

MD5:

2b680341f375f3de123b41091d02cbd1

SHA-1:

a5ddaadefba80c14cdd070b8620b74590bf24b22

SHA-256:

5eba26a34daa0ee76fa4c38ec6d8f4cf5681c50fd576f47cf2d2458eba65a8ca

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

4/16/2024 11:01:18 AM UTC (today)

Scan engine

Detection

Engine version

Vba32 AntiVirus

TrojanClicker.MSIL.Agent

3.12.26.3

File size:

700.7 KB (717,536 bytes)

Product version:

5.6.6

File type:

Executable application (Win32 EXE)

Installer:

Inno Setup

Language:

Language Neutral

Digital Signature

Signed by:

Alexander Yumashev

Authority:

COMODO CA Limited

Valid from:

1/25/2012 7:00:00 PM

Valid to:

1/25/2015 6:59:59 PM

Subject:

CN=Alexander Yumashev, O=Alexander Yumashev, STREET="Kosygina street, 13-214", L=Moscow, PostalCode=119334, C=RU

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00D48209C4563DF0EAC268FD22EAFA0336

File PE Metadata

Compilation timestamp:

6/19/1992 6:22:17 PM

OS version:

1.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

12288:/QFaDOF9aloxYQ2Te0u4NfQ+YRDus0XyQtfbwPGDg4VFsEP7M0GD9T4ZewWBvEHZ:/QFSObtaJa0VpYAXyQt84VFz7KD98Gvu

Entry address:

0x9C40

Entry point:

55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 86, 94, FF, FF, E8, 8D, A6, FF, FF, E8, 1C, A9, FF, FF, E8, BF, A9, FF, FF, E8, 5E, C9, FF, FF, E8, C9, F2, FF, FF, E8, 30, F4, FF, FF, 33, C0, 55, 68, FC, A2, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, C5, A2, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 96, FE, FF, FF, E8, C9, FA, FF, FF, 8D, 55, F0, 33, C0, E8, 83, CF, FF, FF, 8B, 55, F0, B8, 24, CE, 40, 00, E8, 32, 95, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, 24, CE... 
[+]

Packer / compiler:

Inno Setup v5.x - Installer Maker

Code size:

37 KB (37,888 bytes)

The file macrorecordersetup.exe has been seen being distributed by the following 26 URLs.

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_br&type=PROGRAM&Expires=1484552462&Signature=MOKUctVym-~2UBI3HVIB4iPahB9HN7uROZL7rLFgcIArJQXNdAOlBZJUpN-T2m7ZKyAJ~fvz53Y6tuQOEX7dcMHhlhlXfndID-vagSC4e0gIfJSm73UanY8IHAdFT4rR645MuLczgDE4sFPVpR70ng6QeoQSk9GLG1rCHmdgm04_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_es&type=PROGRAM&Expires=1484921036&Signature=fhFLHVeFV1F2Iz7121kQDgoBPmfUACn5bR4jy581ShiyeTgVyhc1JU7nJGIJ8Ye-3pp6y1coS1rr9A-q~COkLLPqeiICQNxH2V1JKB4rFzH-SVsc~kOO7iqYwcSUSwB8S15kM-k0~XP-VL209v9QG9Y0FVEg~5VCQgDCZnOgaqY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_pl&type=PROGRAM&Expires=1480900058&Signature=Drj9NKxj~hdHsvgByGYlpxsnk2oeU0nrU2gNT3O8FRWD0WPU2m5j2~r5bWgu8gzl8Rkt6JO91HdSVLizRHPKMeK6DatJgIs8hVrNNHbF~K7ll~vlPZMuNu8tVTEXGU1CpxRPdbFMzn-5jewTwNFJqm6oar5eSYiIxlCqyJi9Cns_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_en&type=PROGRAM&Expires=1472028761&Signature=M4dQxLTE2CzAJLQdYEXy9hnGiHLOkOFj1zqk~1hiU3z0Mgq3YnjGpNWiJcSYo0Kj1wRIhtiCKFvtecWyiRVIGt4H-ZzmrLjKqhyZ1m5GjxXyDWDEo5t2FJw89cgNIV5e5NO2hcbYPZBN6dM4x-Sci0yTLPTT2N~Mrakk9X0iN5k_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_br&type=PROGRAM&Expires=1483409394&Signature=dI6yXnHzvB1G18msDj4ARuqYqZHWHXBCx9o7bz3KtPC4VD2qd4xYNebTvcI1kPqhJ4Wv4A6RbhJfXINRBlyk7VMv-aWQ94VCmVWk6txSrXCBcPQ1kOESUcbNhCR2AAVslYyi0niOwAointrpIbRSEVxqjwzTndmZ4rZa7lmWOwk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_en&type=PROGRAM&Expires=1462376856&Signature=HgB6063x9NrlPhnR7WaJf9TjA-H6M~LmGjsBjD0uD6crJR03eStygdz7zvbDgDerJ-VqaQVUrI9ghmUMN8jNlWY3ciOFOOeapPlrjs2WmqgElnN5jmnlx6z5YstYBON1GXtSIfpk-k6J8GgL1upbd3NRZjmcufWKu7U3SGO3egs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_br&type=PROGRAM&Expires=1478069123&Signature=QuBEWD-XdfUHWoL-FmsA9pdaAzvELlJCk9J4EY48pn2ZNBIRcmhTn1ARo-lPbxBj7VlLYzES3ybYwPi3fkEa419e2YzAY5n8QWwS91ezvspxIWPgBeJ9Pk4r4yAA6wq5GwvwLfoQ5RW0BGcg2LenuA9IhkFYrewBgAO25XRXuSE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_en&type=PROGRAM&Expires=1476092160&Signature=RBoBv9rVCPOuc4IwHc8FGNtfT~gVUG15iRo3V1IxrgAi9frExwplBOwiMojSbZvu~XM87anRGpUIXUdnCRmsPuh3R1NsiKJnB0MLsDXdj6x~rjcfu7E44XPtbUIdXwdzZtf~fq2cvVFDF-FEU1q80-xr20hO8RuqNtYhr-aeUtc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_es&type=PROGRAM&Expires=1469036799&Signature=Gd4ebLFBEf2o5fkZyRyyCsAPDeX~4dCf5JspFmy6DlztK-PvReDt-oylQAer3bi6mOP8Ro~QYcwAlhAazqDOs2sM3eO~wMzTCfRRET07yGeBOB3c0AxbFt0SoZvlYsYPy9tb042PA8wkpy1apYKsCn9y6hQ-7YFa3Hfa~j-8CXc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_en&type=PROGRAM&Expires=1434588740&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=Xcll171CphS7QNQ2vZJB8tb0jD24R13TW5xn85pp8v8Kg8XWQdzsF-m5tMsLi45yypqd7sHxvvKwOnstSNuLeo3b1A~UR1WGFrZ8dB6Z5lSU45jvzMMaRjrlAygZDlc3l8DG8lzkcbhUDIc69SQ0p9B8TBulo6PbZDVO-Bq-0h4_&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_en&type=PROGRAM&Expires=1473774734&Signature=czRZnmO6JguHe132R8EtrGGzCeqAQQYOXGbml5KghTPDlXdnPExiiJA4Jx4YEQvVvvRg0q5qJ5~vPiNiBmDkZW8QRSNH5BwtOwNoDb8vstTyci2olye47KbJf3rgAS~f3tsUQWMN74CLbZu-VFpStKK~HjAri1Vvm9xRza8QuvY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_en&type=PROGRAM&Expires=1468046378&Signature=c~RlJdReQ~jDbFkWYQuTGiUb60AQERIgGb4coSVQ8nOyL5eYagoOoi9zRxWMJUA9Ih4gPuMJDj762rSQ8eEhlpa8itYGLPYahcwO0kUNfNHfSgPl0jZ4YxNOZZ4g6jb6LVfzSGv5Q0URWYk5Pku1KSrpXdWEavPh-plAc-dk2C8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_en&type=PROGRAM&Expires=1458942529&Signature=KMUVbJ2MkBchHQVe5TEmjsIQscxhGUUm7jC~2UJrJwV4wFobTB9DOINGRE8KRro5PDoQTG7bj2Gdzfica7b42OFVIzWZp6X1QEdcvdQIQXS2Q3ot131-EIAQTYwZjrHQOVvQgz3Sgo4dP2P3mecuvXILSPVuKC~MG8nfIXuwHes_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_en&type=PROGRAM&Expires=1455207112&Signature=ap342AcioA4CmAdt0FW8hR-w80jCFfGa1QpuEC1FoXJHp3k2hikbWdZLwd9~2TZNuCs-9~nijxl9rpvcHJRfMAKh-lUIjtLeE94yIB4kUiNckA-DXPWhZCqe2On0W8VtFkBWs-vl0MlDqlJme4mTJS5QDBSWo9wz0CppWDUcl8U_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_en&type=PROGRAM&Expires=1464886860&Signature=VM~ZRM5NsB5F9p9nBqu21ur5x79oAlQdEAaN3DQGYRz-YmdGnLrPrcaHz0TOb2EUYF~rf-DwLt4z375Ro0pnmY-dQSvQVpGahErOZOLsSRKP3kPvvbrv5-o0kdRXwy~SWtj-1MsrI~bOlqU543ACuVkjz2E4x-I9-IhAqGPB5rI_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_en&type=PROGRAM&Expires=1460928092&Signature=go4nrBsStme3e845RIEhUnOFxjSgQiX0MuYlgAt--JDxr0nJt3JVfkexKOSVQ4izpidDwGR8ri6SURysMZe4Es~74rD5NB8X~auIgzpcJd7uI7pcoWXcsA4CcdvP1mZUOSuwZZnZjbKjWLgfNeAd18fy7JmqMU36yltqDI8XeAo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_en&type=PROGRAM&Expires=1459171990&Signature=Npnaps7ZnBorX1IJ~2bo99jIUwdZlOTQ-zAYTyw3~xMa-lWAD42Sf~jo415Q6EvenTA-a7PmtKZo5-pJbqNyQ0nnUp-BB8DCVXh0VUjsJGrxNy0IH5wQ4FlHYxjSMHybVPO3i8c~7~foz~T~cvsMLmkiyAJZYTAcJjQys5mYt8s_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://static.jitbit.com/MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_es&type=PROGRAM&Expires=1454919658&Signature=Ma-D-NPwq3~mjubZkT4z6vXHUrPmeyjHKUKFL5O3ggbggdd1ozHErD37lrQ~s1VIt2O5YRVTO4EJ4-HFiZ1M3K2NSIhaTO5AYZ8LYbxAGfFbcPdl8AyH-XpUyspm9e8kZWYuJL8HnkddEwLZTKohCvzXsq8T0XeBymlrDiVeIxo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_en&type=PROGRAM&Expires=1461243235&Signature=II-zo-8sAbhYQHMgRvh0VdOFdi~zc8e~1BF7mLbEHj1Oe6Z1XbNSbpba9NYOYn2JcETMvNF1hK3qgnOVAVACFJUnx5bMnBixFPx0lN-SwKWenL5NirzVNaBt6Cu5Wui~MCyUS~xal0EFetvzdG0h5L2uBjmrp-mlnTSgQFDzybw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://download938.mediafire.com/5pegwgntdiag/.../MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_br&type=PROGRAM&Expires=1459611928&Signature=AjBJ~CD~wYQPIaAKxhtycxdok3bsshEGsFmsH7191JpyiV6GXzKmjUdoF13JfpbG0YPVV-YcHuDtiqFM8EAm8FimqBH1Lc7TZ~B3AKq4cAj05GMPUfpABNn8vIrUnA97l0EoUJUkSkMhuIWZPR2ynfcM3KCBMHec~qPBlNHqGX8_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_en&type=PROGRAM&Expires=1457739968&Signature=gYHqUJrY1EbrJdop4OZ-lOUuy10EPc7oU31GifUAcXDkujNUPECYSYoRIen9gGIO78SjzkV~3veKhj8tVGGfM34AqUZ-7~yD7G9koEARkcY4THKO2cmHzFCURGDn4pJ7FnnVONARzItHrSHZvQ~cGNRPCsU~IP4bmWHShofie5c_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_en&type=PROGRAM&Expires=1455503013&Signature=afcS~u-k4oyPQ4fY~mK9NdkwRb6Y-sbrmiqbIWSRKCGX-GaP5C3HPkJlzgz9vWKcVQKS17PAgDv2lsBCQTLIBOB1IHSHtQpib~-Kp78IIgmkD6SjkJX5-GL89CIeeKzkiY1OZz9Ahj-P60zor5IBgbPlWHrt0pQPInbngTNR634_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_es&type=PROGRAM&Expires=1450784364&Signature=RQSjF1z3-I76ayIzJO0jolcEhOsp8WWKzZw0sYzKAZhU6Yu3MgpE8hzrQXUz6RMsRk7PjhoHPV7z5Ltr4TUHKlWMsl0dTqYw-pj9702shBhfH~gPJDA0T-B04f19N~Xmi8bJZghuP5YtX~0B~v~5xt-b3f7XfIn1oIS-LHDWoyU_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MacroRecorderSetup.exe

http://gsf-cf.softonic.com/a5d/daa/.../file?SD_used=0&channel=WEB&fdh=no&id_file=65012&instance=softonic_en&type=PROGRAM&Expires=1430711107&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=FvVtX3gGhJW950S8nWCtPM4wXQVJM3SsTF61~vgWtGilb6JtCs7DFju4qg0swe24ZLKTjxfRc6me8R2JZw3re9ztIRow8Dma7qbS1RmNTbiyXBcoTXHgkCvLOrPtssWD8IUjIX-zPTvuXklFPIka44jG10RzctJFNR8EhxYuTfY_&filename=MacroRecorderSetup.exe

Scan macrorecordersetup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.