» oth.exe
Overview
Analysis
File Details
Downloads (1)

oth.exe

OldTimer Tools

This is a setup program which is used to install the application. The file has been seen being downloaded from oldtimer.geekstogo.com.

File name:

oth.exe

Publisher:

OldTimer Tools

Version:

1.0.5.0

MD5:

a78ba540c1c9ddc8fdc6f57130f248d4

SHA-1:

cb103488397a9d4c63b721b16f55bd3e609ec637

SHA-256:

02f7b4263b523240584e8da0841897530e029e60f4c4707d14150ea12de47c72

Scanner detections:

3 / 68

Status:

Inconclusive (not enough data for an accurate detection)

Analysis date:

4/24/2024 12:40:04 PM UTC (today)

Scan engine

Detection

Engine version

Agnitum Outpost

Packed/PECompact

7.1.1

Bkav FE

HW32.CDB

1.3.0.4959

Dr.Web

Adware.InstallCore.53

9.0.1.094

File size:

253.5 KB (259,584 bytes)

Product version:

1.0.0.0

File type:

Executable application (Win32 EXE)

Language:

English (United States)

File PE Metadata

Compilation timestamp:

6/19/1992 5:22:17 PM

OS version:

1.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

3072:hfy8Nm0l4eoLJPFU9fMyEfOyLKnmdKVd2xqeZALCUmGAnQzFug9sDDn/pmQEIYeW:U/3vy4L+xs0L15a7BmyYb3MwCGewYF

Entry address:

0x1000

Entry point:

B8, B4, 3F, 4E, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, 2F, 9C, FE, A2, CA, 40, E3, 7E, 80, 92, 33, 4A, 51, 77, 4D, 08, AD, 53, 6A, 73, 3E, 85, 7D, 97, EA, 3F, 5E, 0E, 83, 53, 79, B4, 76, 01, 66, AA, 1F, 12, 97, F4, E1, DE, B4, 67, C2, 25, D9, 0C, 5F, D9, 16, FA, 55, 6D, 31, 77, 68, 9F, AC, E6, 9B, D9, F6, 0A, D7, 5E, 85, 10, 9C, 26, 76, B5, 38, 23, CA, 1C, FF, 16, 50, 10, 62, 8F, 8D, 4C, 25, 8C, CE, 07, 83, 5B, D6, F0, 45... 
[+]

Entropy:

7.9759

Packer / compiler:

PECompact v2

Code size:

786 KB (804,864 bytes)

The file oth.exe has been seen being distributed by the following URL.

http://oldtimer.geekstogo.com/OTH.exe

Scan oth.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.