» mc_setup-v2-3.exe
Overview
Analysis
File Details
Downloads (21)

mc_setup-v2-3.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from www.towerbitscenter.com and multiple other hosts.

File name:

mc_setup-v2-3.exe

MD5:

2bd95ae3f8c8057acf146c3431b9951a

SHA-1:

a6e04776e21c68ee0ab1e03685c86c036e7d1ef7

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

5/19/2024 4:06:01 PM UTC (today)

File size:

1.1 MB (1,147,442 bytes)

File type:

Executable application (Win32 EXE)

File PE Metadata

Compilation timestamp:

9/20/2007 7:34:50 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

5.0

CTPH (ssdeep):

24576:nv97fv92My3RJoUF4jkrUUvybZ6JmjoJAIsw0AzrIk5WBf0TbasLj4:vRl25JAjkrUUv6Z2mjoqQ5K2aso

Entry address:

0x1000

Entry point:

E8, 8B, 27, 00, 00, 50, E8, 4F, A4, 00, 00, 00, 00, 00, 00, 90, 55, 8B, EC, 53, 56, 57, 8B, 7D, 10, 8B, 5D, 0C, 8B, 75, 08, 8B, D3, FF, 75, 14, 68, E1, C0, 40, 00, 6A, 00, 6A, 00, 8B, C6, 8B, CF, E8, 3A, 44, 00, 00, 81, EB, 10, 01, 00, 00, 74, 05, 4B, 74, 14, EB, 57, FF, 75, 14, 6A, 66, 56, E8, A4, A6, 00, 00, B8, 01, 00, 00, 00, EB, 47, 66, 81, E7, FF, FF, 66, FF, CF, 74, 07, 66, FF, CF, 74, 23, EB, 30, 68, 80, 00, 00, 00, 68, A8, DD, 40, 00, 6A, 65, 56, E8, EA, A5, 00, 00, 6A, 01, 56, E8, C4, A5, 00, 00... 
[+]

Entropy:

7.9731 (probably packed)

Code size:

44 KB (45,056 bytes)

The file mc_setup-v2-3.exe has been seen being distributed by the following 21 URLs.

http://www.towerbitscenter.com/dggmBAajX SAUXGnz4njnKwvMw0L cVdNXmz0M8dzoL5jLgNwkW3X1fraOiLLtTs9oCP0MQCJxxXx2rwxwpm27qLwhXWV4BHANvALsyJVUNphlSqBklcXvX6Wx2aniZKBahkAgV4PLiBAwOpUI7SqAVvbsa84tNrHpr RDpciTnKaQBATKuylzefpdLVNUomtDFl6YCS43b2iUBzny3w1U0VO2kiAQ==-GyMAAMRtbL7OaTd2NBxBQ6jAFqSQXQSSGwd6Y KHLUyRng3PxT0NAg==

http://gsf-cf.softonic.com/a6e/047/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333729&instance=softonic_es&type=PROGRAM&Expires=1435910714&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=RMWCSmBPt539kAT~N6NU0iHRf6XONEHryIVVEX6TTFzc1jRRWgbYakSM3DN6BGXQrs4ByZTGYjI6JMp~13xQKiMds6OcorqWLi3ewwKpXcGZHZ4aFHGezD1fzt6QWX1~FQPE2OnNDo7yr8bAuxAK-N2R8K3AuyLq4rNLHSW9Csc_&filename=MC_setup.exe

http://gsf-cf.softonic.com/a6e/047/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333729&instance=softonic_es&type=PROGRAM&Expires=1475837935&Signature=HO1rhi9bSKj0dG7e4oiHgq7mlUReJt4La3Zn~LlZci13M8XQltRTN0dRAbParG8U87KnXR7Hs3g66pUZK44Is3jXlF6JHjC9JfKaBTFsXxoL3euW6sxZ4koqRPDNuRZbozgX1z2wXZKfbPkke4xb62NljiBNXw4-sJnN8e8n7pk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MC_setup.exe

http://magic-collage.softonic.com/download-tracker?th=8yS3 KGEYLiw7GKMHzA/trmsvRChbxdrflJq3ZIylWsJiUcRB3VrGHkuIey7s/t0iNykZHsLPFDbDxEZi7svaG2UE73FYoyIbDRnzp5MNGyqxFQ7QiHrOgfLpkNzc8vviO5astVHnrKcVYqnheJ7XXoz99PILMgOiTVzQVG5LOTFg09rsPrAdRa Ist0jk8JfkdF3st1UYwuFGOZ1f61AqUSBXmYvYaIU6E wViQQDyB2Oz/uaxNgh33wEU9fZGHoFnvIJkyyMTKDSS3op Od4ZV4uVNxM8XpeDV7BizaqYwcQonX0m2KNEo5moT0CHHuoCwd3UZds0k/WYQAsi0N83f3AW4UMbOonEIab2uCJ07NJfajNyDspU11WsTUXsINzpzXU1QvOS ZVioBguAagPc3 qxoEADljhrsF66DjiNIPiJuI6aTIkVxgqXSfP5MSjXVeBm756mMpopw0ZZErX HASH3yqheim9I7mISguUxMjmr5wRkvs8VvTmQs7ZHivZQyDXrxQZG3smar0U6jJAwPgzBJx8HrL/uJB1UPEF iwua/.../SoQjsmr7VJqBEg4jJZ48uZo39Yn3QzeBy NVZ8yILew9th

http://gsf-cf.softonic.com/a6e/047/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333729&instance=softonic_es&type=PROGRAM&Expires=1469715634&Signature=W0TOka5RWwPMgvgTYV~IPfgeFAzLh-~wx5tr2CZCtjT5wF3Jo71LCM~bgt0Eu15c66-6p-3osjXNMW-ehQTWrsKgEEw-P0yvV1jkfCfTXT-SABqVc34Sh99FJ-A8Va7mUTxbh-UTgqIK-uSlO4Z3w9gNt8~dZXfOvb3uLHBuc0A_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MC_setup.exe

http://gsf-cf.softonic.com/a6e/047/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333729&instance=softonic_es&type=PROGRAM&Expires=1477460166&Signature=OjDJ0~unmbKWWXfilq0XHAK-D5s0C5jVNSB--LncRf4DgcRCNbLZStNA4uSSHy~Y-B6J-4CQZmaTdqfdCMGBUh6nfn6gj2M1Isc0Arc-Xbfkbpn6SrN7243oG-E8QbYKzKVMs7pSviVV6X1BqzWr0nKNp1fRURf1ptJuo6~BZhI_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MC_setup.exe

http://magic-collage.softonic.com/download-tracker?th=8yS3 KGEYLiw7GKMHzA/trmsvRChbxdrflJq3ZIylWsJiUcRB3VrGHkuIey7s/t0iNykZHsLPFDbDxEZi7svaG2UE73FYoyIbDRnzp5MNGyqxFQ7QiHrOgfLpkNzc8vviO5astVHnrKcVYqnheJ7XXoz99PILMgOiTVzQVG5LOTFg09rsPrAdRa Ist0jk8JfkdF3st1UYwuFGOZ1f61AqUSBXmYvYaIU6E wViQQDyB2Oz/uaxNgh33wEU9fZGHoFnvIJkyyMTKDSS3op Od4ZV4uVNxM8XpeDV7BizaqZkigAtdAe4mbulX2kxK7Ofz7Vr7Q6L15LFmqOWIk/JOSd4pTSYXaSt849PYLfFiaHP0hhhJt8v0qEELORUcj0sb7kBhlr5nj0YrExgfoeIvVFfd8j8cFwwe HUZPzienesUXmeJCrM0A/3I3XmTqJUaRohbb3VzJ2waTV14unHrSYUMOjCSheth68OT7L5TthsZ3z3xaaU vXO ReJqFrUND1j24QoeqW oo6Qm7sdE oWeSjhbQdpsiWpxq N1aAF iwua/.../SoQjsmr7VJqBEg4jJZ48uZo39Yn3QzeBy NVZ8yILew9th

http://magic-collage.softonic.com/download-tracker?th=8yS3 KGEYLiw7GKMHzA/trmsvRChbxdrflJq3ZIylWsJiUcRB3VrGHkuIey7s/t0iNykZHsLPFDbDxEZi7svaG2UE73FYoyIbDRnzp5MNGyqxFQ7QiHrOgfLpkNzc8vviO5astVHnrKcVYqnheJ7XXoz99PILMgOiTVzQVG5LOTFg09rsPrAdRa Ist0jk8JfkdF3st1UYwuFGOZ1f61AqUSBXmYvYaIU6E wViQQDyB2Oz/uaxNgh33wEU9fZGHoFnvIJkyyMTKDSS3op Od4ZV4uVNxM8XpeDV7BizaqYagEAdLcE3dDQd4EzPl6KJ/FfJ28GMUDkAfDCjoXyqi/dT6QjaMHjg 3ftdTM/G6 p6JnqbtX/yFD4Y LEkY3mfxC9a2c77CHTLWbcPA8CBfQ9Gi52r84sQokJ3C1t3cxtVunkXBjMJjxlvTOSiyG2kzeNKPBqbEAFvt4Jbab8x7KlSfZMr/ReZwqi6uvHTDRphH2P30YZKkhkXSu7KbjLHPsRTlTl hs9o98zLsnPUk4Gop1LR8dOBfj9JzL13LkF iwua/.../SoQjsmr7VJqBEg4jJZ48uZo39Yn3QzeBy NVZ8yILew9th

http://www.ranchsendgift.com/i SH8YufqpE7tC35Mv1ag9a2EKp6kbDQvRdOHGvJavfN5MHdwH99HiN7ilO2 mb7ssIUIHJbkbVqBiOu081iTAoPYsBqR487c9 wD6Bdap_486wmlM _sqnV6O_tOoqLGT6YmFHt7Pbw_P3_DNQ5k7Y7G_sa1d1EF5lHxjFSPTCvAtaISc tYyY0M6jcx33YfVL02tJyVdSd_M5UOlOxO hiukYeRg==-GyMAAMRtbL7OaTd2NBxBQ6jAFqSQXQSSGwd6Y KHLUyRng3PxT0NAg==

http://gsf-cf.softonic.com/a6e/047/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333729&instance=softonic_es&type=PROGRAM&Expires=1441773012&Signature=Or97n-Rp4xNc6jXEQvvkkgKxo6rgzuLxy5lj9ujL7M8CCuBmRZ5Y9CeeLnrM5m1UsH1McXyn8FIPrViC-DZnqhiUVViTH6Bbj1-GJI3HfPTOzBc3dmPXAaWdfBS4KhSI5p88ulyjzUjwv~VXSZ~J95E6Uz-hqbgF8kX9ehYQM~0_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MC_setup.exe

http://gsf-cf.softonic.com/a6e/047/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333729&instance=softonic_es&type=PROGRAM&Expires=1477996831&Signature=K0V1oxFyHSRaAunM717~OsF3Oo3Pk4BqhdHFZAg-1CUpp-~I9b~JIVh1EAmegtVr8Xx1wsUT2vbiYzUYLZvTj6qEgQ2LA8~zKVQ6LuLlsCiHY-Wt3dfDWNp7abQrGh8w5~qb2gGvqDX9CRiscsktWQkqVtFyeM8AqJZs-p59qn4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MC_setup.exe

https://magic-collage.softonic.com/download-tracker?th=8yS3 KGEYLiw7GKMHzA/trmsvRChbxdrflJq3ZIylWsJiUcRB3VrGHkuIey7s/t0iNykZHsLPFDbDxEZi7svaG2UE73FYoyIbDRnzp5MNGyqxFQ7QiHrOgfLpkNzc8vviO5astVHnrKcVYqnheJ7XXoz99PILMgOiTVzQVG5LOTFg09rsPrAdRa Ist0jk8JfkdF3st1UYwuFGOZ1f61AqUSBXmYvYaIU6E wViQQDyB2Oz/uaxNgh33wEU9fZGHoFnvIJkyyMTKDSS3op Od4ZV4uVNxM8XpeDV7BizaqaRYMIyc3uX1LHsbJPA2AW4nH4RwuV52N8jSoiIohM1mPnYXmgyb4I4gNEe9XxlTe1u3tU6h6icRdBIo4BabeRq2dvFGT mJBvqOyyO1fvO0sjc3txQTkBx6RLFcR8d6gxY6B5WR01QSTw0dfF35OfxYJxC2aJqVf8xlkphA7oqrx7ZkVEnsY6lJuw/ 27PBHHP77DJIuh9J7bMJalVFX3IsT4CBIRDn1Dj7f9OwDqAznZ9XLvkes8K2LN6EXBlalgF iwua/.../SoQjsmr7VJqBEg4jJZ48uZo39Yn3QzeBy NVZ8yILew9th

http://files.downloadnow.com/s/software/11/37/32/.../MC_setup.exe

http://gsf-cf.softonic.com/a6e/047/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333729&instance=softonic_es&type=PROGRAM&Expires=1460026101&Signature=IN94jmORUnPObcavqLz9iBLO5fZDW7bj~l62qxVHzQAAn6AV8hn7LCFlezROY7LqrgtDeCAvGs4XjU4M0M7Xf1-Kii9NL6RZ0txO1asH81yqXNFFvn~0JlbZv-j0Xwp1IFhZ5Jz4rUlDvG8ekaBtO44Xge-UeCQI-U68I8SGCig_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MC_setup.exe

http://gsf-cf.softonic.com/a6e/047/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333729&instance=softonic_es&type=PROGRAM&Expires=1461636679&Signature=Gs3nPJD6i0usGYcx25wl8R6-le22S-DM6lSMTarV0tjp8F7FQEmLnVNX-XOs1rmGR88h~GPUWBT-vYer1flYk-e6YqPvVNoIzD3T1t-nUBfB-UJYgjeSLaX3maZEvHB6uwUe86bh3WIpvpG565rDjdrRcxyn1en37YHlbAya3VE_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MC_setup.exe

http://magic-collage.softonic.com/download-tracker?th=8yS3 KGEYLiw7GKMHzA/trmsvRChbxdrflJq3ZIylWsJiUcRB3VrGHkuIey7s/t0iNykZHsLPFDbDxEZi7svaG2UE73FYoyIbDRnzp5MNGyqxFQ7QiHrOgfLpkNzc8vviO5astVHnrKcVYqnheJ7XXoz99PILMgOiTVzQVG5LOTFg09rsPrAdRa Ist0jk8JfkdF3st1UYwuFGOZ1f61AqUSBXmYvYaIU6E wViQQDyB2Oz/uaxNgh33wEU9fZGHoFnvIJkyyMTKDSS3op Od4ZV4uVNxM8XpeDV7BizaqZ5vqTsCARCFz82zdW2rD25AEhpjjiLz02t2YM2q 61kKTpMUmdrqy 5IjllNKktjz8g0Re/TBp6yAwEUMaB5eFBzGsfnlnBkgiYUnl31ToyWEDatwM2YGGXqgpTEcx27TuBJYDKb4SG6APh71Bh6ZeFCW75Jdf1HNArhA1FhxvdAHlmOXFHuthDAAqmlVwALn3tClLlc 0NcKiWyQkayYoD0Y vLpTV 9q2PQ4OkYQiGtWWP ki0q0r/9Fz8qeyuwF iwua/.../SoQjsmr7VJqBEg4jJZ48uZo39Yn3QzeBy NVZ8yILew9th

http://magic-collage.softonic.com/download-tracker?th=8yS3 KGEYLiw7GKMHzA/trmsvRChbxdrflJq3ZIylWsJiUcRB3VrGHkuIey7s/t0iNykZHsLPFDbDxEZi7svaG2UE73FYoyIbDRnzp5MNGyqxFQ7QiHrOgfLpkNzc8vviO5astVHnrKcVYqnheJ7XXoz99PILMgOiTVzQVG5LOTFg09rsPrAdRa Ist0jk8JfkdF3st1UYwuFGOZ1f61AqUSBXmYvYaIU6E wViQQDyB2Oz/uaxNgh33wEU9fZGHoFnvIJkyyMTKDSS3op Od4ZV4uVNxM8XpeDV7BizaqYEYc0Y90eszZSo1sO3SpQl F80GmkdbL8EvrrB6w0e jKMgoXSOm5RyxQXbUjj5TQLYQ441aT41ORasKeCRRypOhE9oeBRevy0OlUl34mc49kBIWemu0hlDIkwRSYPnpeGJFBwot7CDzECPZ6Z TBelrox2ZGKMHIr4PUTZWa4Vr0h abuOromee/U7j9luQc2aHfMtlkaZnxyAXmsMWvjaE5cFVE iFhRzd4N3vzxyYBJGW5LKZ/yJAEh4MFJJywF iwua/.../SoQjsmr7VJqBEg4jJZ48uZo39Yn3QzeBy NVZ8yILew9th

http://www.pixelapp.com/MC_setup.exe

http://magic-collage.softonic.com/download-tracker?th=8yS3 KGEYLiw7GKMHzA/trmsvRChbxdrflJq3ZIylWsJiUcRB3VrGHkuIey7s/t0iNykZHsLPFDbDxEZi7svaG2UE73FYoyIbDRnzp5MNGyqxFQ7QiHrOgfLpkNzc8vviO5astVHnrKcVYqnheJ7XXoz99PILMgOiTVzQVG5LOTFg09rsPrAdRa Ist0jk8JfkdF3st1UYwuFGOZ1f61AqUSBXmYvYaIU6E wViQQDyB2Oz/uaxNgh33wEU9fZGHoFnvIJkyyMTKDSS3op Od4ZV4uVNxM8XpeDV7BizaqbcXwmtJ9hSHxKgDUWJEoOf58 B5uexi1TVLLeN7vLcrUCoBT/6g7oG2TXcV0ij9miG2T9EyqgKVFTu66Nl55MaqpETjTIIuQiduBFQICp rdNOTaQsrYyYgybzyZtF/gP7MJE2eMpt0JAfr0dXGN HbZR8GpDeydAvtzynSUj1mI m5yotx2ZeI077F Gi9zGG8J0ta5563Gp80iZQp1wt8Q3PPMvZEz4 jKV45ETE M5Fi6gpNlmjofvUp/9yNBkF iwua/.../SoQjsmr7VJqBEg4jJZ48uZo39Yn3QzeBy NVZ8yILew9th

http://gsf-cf.softonic.com/a6e/047/.../file?SD_used=0&channel=WEB&fdh=no&id_file=333729&instance=softonic_es&type=PROGRAM&Expires=1455388544&Signature=DXPNVQnaB9df1XKwjL6T5VIx0kd7u78rugimscir~f8eRGYJElaZLsDOm0GtEaCFIzJHAIz9gD7Pg9BRTkmAmip~NrxlK4Zpo5qcWH1m2iM3Hf3Hkl2czlsobtGeqt2-iWt1hQ~LDUKkhYg8OhvhvArJ9DBobFKFwGrS25hnXQw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MC_setup.exe

http://es.kioskea.net/download/.../descargar-9271-magic-collage

Scan mc_setup-v2-3.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.