» TelenorhjelpenSetup.exe
Overview
Analysis
File Details
Downloads (4)

TelenorhjelpenSetup.exe

Telenorhjelpen Setup

Emotum Pty Ltd

This is a self-extracting archive and installer. The file has been seen being downloaded from www.telenor.no and multiple other hosts.

File name:

Publisher:

Emotum Pty Ltd (signed and verified)

Product:

Telenorhjelpen Setup

Version:

1, 0, 0, 6

MD5:

6d24ecd20d9ed6bc33b4dffc793f15f1

SHA-1:

b12fb72b9d40a9e53fe7c1e8a2d4b4cdbd25a8c9

SHA-256:

c0da4e6a62ecad72f7e723b891368754970bc634814b3fe72854bcbbbe0323c4

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

4/23/2024 8:25:08 PM UTC (today)

File size:

33.4 MB (35,013,640 bytes)

Product version:

3, 2, 1, 0

Original file name:

TelenorhjelpenSetup.exe

File type:

Executable application (Win32 EXE)

Language:

English (Australia)

Digital Signature

Signed by:

Emotum Pty Ltd

Authority:

Symantec Corporation

Valid from:

2/20/2015 1:00:00 AM

Valid to:

4/21/2016 1:59:59 AM

Subject:

CN=Emotum Pty Ltd, O=Emotum Pty Ltd, L=Sydney, S=New South Wales, C=AU

Issuer:

CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:

45072A3B56EB8D2D528189F709A5FD7A

File PE Metadata

Compilation timestamp:

7/30/2015 8:40:37 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

786432:Vj05Dv1ktxcRpUaqBBhIB/HOE0OgKrFL5jq4w0anCoxyrkLewlUesIFN:Vj05DyqpUaqHKB/uE0OgG7jq4lmCvr6b

Entry address:

0x13693

Entry point:

E8, A6, 7B, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 8B, 45, 08, 33, C9, 3B, 04, CD, 48, 14, 43, 00, 74, 13, 41, 83, F9, 2D, 72, F1, 8D, 48, ED, 83, F9, 11, 77, 0E, 6A, 0D, 58, 5D, C3, 8B, 04, CD, 4C, 14, 43, 00, 5D, C3, 05, 44, FF, FF, FF, 6A, 0E, 59, 3B, C8, 1B, C0, 23, C1, 83, C0, 08, 5D, C3, E8, 16, 53, 00, 00, 85, C0, 75, 06, B8, B0, 15, 43, 00, C3, 83, C0, 08, C3, E8, 03, 53, 00, 00, 85, C0, 75, 06, B8, B4, 15, 43, 00, C3, 83, C0, 0C, C3, 8B, FF, 55, 8B, EC, 56, E8, E2, FF, FF, FF, 8B, 4D, 08... 
[+]

Code size:

158 KB (161,792 bytes)

The file TelenorhjelpenSetup.exe has been seen being distributed by the following 4 URLs.

https://www.telenor.no/privat/minesider/abonnement/.../downloadService?subscriptionId=I-2527338&serviceId=S-telenorHjelpen

https://www.telenor.no/privat/minesider/abonnement/.../downloadService?subscriptionId=I-6439618&serviceId=S-telenorHjelpen

http://hjelpen.telenor.net/telenorhjelpen/.../TelenorhjelpenSetup.exe

https://www.telenor.no/privat/minesider/abonnement/.../downloadService?subscriptionId=I-7779888&serviceId=S-telenorHjelpen

Scan TelenorhjelpenSetup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.