home

sogsav10311-f4-4e-portatili.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from sicurezza.finanze.it.
MD5:
057b779838bf53a9238d057e321db2bd

SHA-1:
8e92ad056ce9f97c4b5059a9d8cff619d1b56531

SHA-256:
f393060cd1a5551b12621399a64c2fbeff5bd53231852f8cea812de16cbbfe23

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/6/2024 2:21:21 AM UTC  (today)

File size:
10.7 MB (11,258,880 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\inetcache\ie\{random}\sogsav10311-f4-4e-portatili.exe

File PE Metadata
Compilation timestamp:
4/6/2011 2:43:53 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
2.25

CTPH (ssdeep):
196608:XV3iT8bpJwLTKgRAgivpCU8xC3xULvgtfZ22qmWgTjJNpFTiPHLjO5iPZYs4IkBa:XFPgT0vpCncBzZ223WgjfTiPHLOprIkY

Entry address:
0x152C8

Entry point:
55, 8B, EC, B9, 0A, 00, 00, 00, 6A, 00, 6A, 00, 49, 75, F9, 53, 56, 57, A1, 10, 6C, 41, 00, C6, 00, 01, B8, B8, 4D, 41, 00, E8, 80, 0C, FF, FF, 33, C0, 55, 68, C8, 5A, 41, 00, 64, FF, 30, 64, 89, 20, A1, 9C, 6A, 41, 00, 33, D2, 89, 10, 8D, 45, E8, E8, CD, 10, FF, FF, 8B, 55, E8, B8, D4, C9, 41, 00, E8, 78, F0, FE, FF, 8D, 55, E4, A1, D4, C9, 41, 00, E8, C7, 0F, FF, FF, 8B, 55, E4, B8, D4, C9, 41, 00, E8, 5E, F0, FE, FF, 8D, 45, E0, E8, EE, F9, FF, FF, 8B, 55, E0, B8, 24, CA, 41, 00, E8, 49, F0, FE, FF, A1...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
83 KB (84,992 bytes)

The file sogsav10311-f4-4e-portatili.exe has been seen being distributed by the following URL.

http://sicurezza.finanze.it/antivirus/.../SogSav10311-F4-4E-Portatili.exe

Scan sogsav10311-f4-4e-portatili.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.