home

tcmd750a.exe

Ghisler Software GmbH

This is a setup and installation application. This is installed with Total Commander (Remove or Repair). The file has been seen being downloaded from s10565.chomikuj.pl and multiple other hosts.
Publisher:
Ghisler Software GmbH  (signed and verified)

Description:
Total Commander Auto-Installer

Version:
7.50

MD5:
a2ef35b1f61cf740d090d11b20ae18c1

SHA-1:
69f16ee886c2a5a1d2d4850497ae88701b0078de

SHA-256:
ff9795472ccb91b67276b064fbc88d1eca245d2473241e336dd74448cfb78bbf

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/23/2024 7:18:50 PM UTC  (today)

File size:
3.1 MB (3,211,616 bytes)

Copyright:
Copyright © Ghisler Software GmbH 1993-2009

Original file name:
sfxhead.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\tcmd750a.exe

Digital Signature
Signed by:
Ghisler Software GmbH

Authority:
The USERTRUST Network

Valid from:
8/26/2009 2:00:00 AM

Valid to:
8/27/2010 1:59:59 AM

Subject:
CN=Ghisler Software GmbH, O=Ghisler Software GmbH, STREET=Huehnerbuehlstr. 45, L=Bolligen, S=BE, PostalCode=3065, C=CH

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
37A0B91E847470CFEBB8C5A4FB26561B

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:fPnFEQ/Q3EX2VfXVzzUS0/3Zrn0XQK3bYlwQt86e9gVj++cIYqbg6voZ:fPWQNIvaScrnY3bswQ265VisbS

Entry address:
0x77F0

Entry point:
55, 8B, EC, 83, C4, F4, 53, 56, E8, C3, B1, FF, FF, E8, 16, B9, FF, FF, E8, 0D, C0, FF, FF, E8, B0, CC, FF, FF, E8, 23, D4, FF, FF, B0, 01, E8, 98, C3, FF, FF, 68, 01, 80, 00, 00, E8, 7A, BA, FF, FF, 68, E4, 78, 40, 00, E8, 48, BA, FF, FF, 8B, D8, 85, DB, 74, 11, 68, F4, 78, 40, 00, 53, E8, 1F, BA, FF, FF, 85, C0, 74, 02, FF, D0, 68, 03, 01, 00, 00, 68, C8, A1, 40, 00, A1, 0C, 90, 40, 00, 50, E8, FC, B9, FF, FF, 6A, 0F, E8, 25, BB, FF, FF, 50, E8, 77, BA, FF, FF, A3, EC, A4, 40, 00, B8, CC, A2, 40, 00, E8...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
26.5 KB (27,136 bytes)

The file tcmd750a.exe has been discovered within the following program.

Total Commander (Remove or Repair)  by Ghisler Software GmbH
Total Commander is an Orthodox File Manager (OFM) for Windows that features include a built-in FTP client, tabbed interface, file compare, archive file navigation, and a versatile multi-rename tool with regular expression support.
www.ghisler.com
8% remove it
 
Powered by Should I Remove It?

The file tcmd750a.exe has been seen being distributed by the following 5 URLs.

http://s10565.chomikuj.pl/File.aspx?e=r1ieXh_cK_J-HvSo-VSm1Y_EImwUzqw6VY7D4swpdGQHs-lzKsxCctknYqiqWDAfLL7r1wVD5GjftJzBK6lfgsgr0bGpXAmd9rGB6ITxxZodYe0ArsgSrkS241EcThHvcAJA5RESEl47muyiTw_SCQ&pv=2

http://www.winsoftware.de/.../tcmd750a.exe

ftp://10.151.70.29/UTILITIES/.../tcmd750a.exe

https://e.mail.ru/.../getattach?file=tcmd750a.exe&id=14580538090000000158;0;1&mode=attachment&notype=1&x-email=vprok_alex@mail.ru

http://downloads.hotdownloads.ru/.../tcmd750a.exe

Scan tcmd750a.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.