home

oreyitrade_webdeploy.exe

Orey iTrade

Orey

This is a setup program which is used to install the application. The file has been seen being downloaded from mitsweb.iitech.dk.
Publisher:
Orey

Product:
Orey iTrade

Version:
2, 79, 0, 0

MD5:
b2ff237ffc9b6f482e5f47a078d20665

SHA-1:
01453a66a4a41c6705b90ff9a10fc87004aef4ee

SHA-256:
12f7c26849f5ae8380f198ed892ff79db394b829e41902281c7497566680cfc4

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 4:14:21 PM UTC  (today)

File size:
354.5 KB (363,008 bytes)

Product version:
2, 79, 0, 0

Copyright:
All rights reserved. (c) Orey

Original file name:
IitWebDeploy.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\downloads\oreyitrade_webdeploy.exe

File PE Metadata
Compilation timestamp:
1/15/2013 8:34:00 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6144:zDnn8P17Z0PjWlMqG3NiZhxuKqT6EIlA1+j0+q7DfxOsw1g1AI1gAB0nuWcXbCMA:n+iWi3NiZqKqTwlv

Entry address:
0x14834

Entry point:
E8, 21, AF, 00, 00, E9, 78, FE, FF, FF, 6A, 0C, 68, 58, 75, 43, 00, E8, 66, 2A, 00, 00, 83, 65, E4, 00, 8B, 75, 08, 3B, 35, 70, 0C, 44, 00, 77, 22, 6A, 04, E8, 0C, B1, 00, 00, 59, 83, 65, FC, 00, 56, E8, 13, B9, 00, 00, 59, 89, 45, E4, C7, 45, FC, FE, FF, FF, FF, E8, 09, 00, 00, 00, 8B, 45, E4, E8, 72, 2A, 00, 00, C3, 6A, 04, E8, 07, B0, 00, 00, 59, C3, 8B, FF, 55, 8B, EC, 56, 8B, 75, 08, 83, FE, E0, 0F, 87, A1, 00, 00, 00, 53, 57, 8B, 3D, DC, F0, 42, 00, 83, 3D, 64, F8, 43, 00, 00, 75, 18, E8, 73, A5, 00...
 
[+]

Code size:
181.5 KB (185,856 bytes)

The file oreyitrade_webdeploy.exe has been seen being distributed by the following URL.

http://mitsweb.iitech.dk/downloads/sim/installations/orey/.../OreyiTrade_webdeploy.exe

Scan oreyitrade_webdeploy.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.