home

touchmousepointer1701.exe

decode zip unicode version.

LoveSummerTrue

This is a setup and installation application. The file has been seen being downloaded from www.lovesummertrue.com.
Publisher:
LoveSummerTrue

Product:
decode zip unicode version.

Description:
TouchMousePointer Installer

Version:
1.7.0.1

MD5:
dd0994cb324675b3c3a52229270902c4

SHA-1:
4d05af96faed77245f294372a889e06a3a6f0529

SHA-256:
bcccdf76b218d61f01c092b07f86bfbaf30e10e5f740a3cec85d8597f3f6b449

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 11:53:37 AM UTC  (today)

File size:
948.7 KB (971,500 bytes)

Product version:
6.05

Copyright:
Copyright(c) 2013-2014 LoveSummerTrue

Original file name:
deczipW.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\touchmousepointer1701.exe

File PE Metadata
Compilation timestamp:
10/16/2010 11:01:36 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
24576:dB6y8CSEyMlMFVmd8zCJrjD2pnwXgyKZQdp+LdO/qtCWK:P8CdlMSdUC9j65wXgZGdsLd0q4WK

Entry address:
0x334A

Entry point:
55, 8B, EC, 81, EC, 1C, 03, 00, 00, 8D, 85, 6C, FF, FF, FF, 56, 50, C7, 85, 6C, FF, FF, FF, 94, 00, 00, 00, FF, 15, 78, A0, 40, 00, 6A, 00, FF, 15, E0, A0, 40, 00, A3, 9C, FB, 40, 00, FF, 15, 00, A0, 40, 00, FF, 15, 54, A1, 40, 00, 8B, F0, 6A, 02, 59, 66, 8B, 06, 66, 3D, 22, 00, 75, 1B, 66, 8B, 04, 0E, 03, F1, 66, 85, C0, 74, 06, 66, 3D, 22, 00, 75, EF, 66, 83, 3E, 22, 75, 12, 03, F1, EB, 0E, 66, 3D, 20, 00, 76, 08, 03, F1, 66, 83, 3E, 20, 77, F8, 66, 8B, 06, 66, 85, C0, 74, 06, 66, 3D, 20, 00, 76, E0, 39...
 
[+]

Entropy:
7.9139

Developed / compiled with:
Microsoft Visual C++

Code size:
36 KB (36,864 bytes)

The file touchmousepointer1701.exe has been seen being distributed by the following URL.

http://www.lovesummertrue.com/touchmousepointer/.../touchmousepointer1701.exe

Scan touchmousepointer1701.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.