home

virtualcd10700demo.exe

InstallShield

H und H Software GmbH

The program is a setup application that uses the InstallShield Setup installer. The file has been seen being downloaded from lb.cdn.m6web.fr and multiple other hosts.
Publisher:
Macrovision Corporation  (signed by H und H Software GmbH)

Product:
InstallShield

Description:
Setup.exe

Version:
12.0.58849

MD5:
c5ec5b7d75facc421bed90a4f777435b

SHA-1:
fc7139fbf1a8724a289df4118eb2a2af65f2d852

SHA-256:
9cdada38559297c1e0b0e1416b4cf87687733bc915be93919ecf6e4a78e0ec10

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 7:48:13 AM UTC  (today)

File size:
108.9 MB (114,193,960 bytes)

Product version:
12.0

Copyright:
Copyright (C) 2006 Macrovision Corporation

Original file name:
Setup.exe

File type:
Executable application (Win32 EXE)

Installer:
InstallShield Setup

Language:
English (United States)

Common path:
C:\users\{user}\downloads\virtualcd10700demo.exe

Digital Signature
Signed by:
H und H Software GmbH

Authority:
Symantec Corporation

Valid from:
2/9/2015 8:00:00 AM

Valid to:
4/10/2018 7:59:59 AM

Subject:
CN=H und H Software GmbH, O=H und H Software GmbH, L=Goettingen, S=Niedersachsen, C=DE

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
0EC0069FBD5A40F755D7A07AF179F43D

File PE Metadata
Compilation timestamp:
1/20/2007 1:07:04 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
3145728:HFVahglos+Qw2PXijLBtcDD7+i4UIahK62Ccg5Rzy/:llovQwwgkDzdsCl5Rs

Entry address:
0x22D69

Entry point:
55, 8B, EC, 6A, FF, 68, 88, 76, 44, 00, 68, C0, 66, 42, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, 40, 61, 44, 00, 33, D2, 8A, D4, 89, 15, 8C, 1D, 45, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, 88, 1D, 45, 00, C1, E1, 08, 03, CA, 89, 0D, 84, 1D, 45, 00, C1, E8, 10, A3, 80, 1D, 45, 00, 6A, 01, E8, 7F, 26, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, C3, 00, 00, 00, 59, E8, 73, 23, 00, 00, 85, C0, 75, 08, 6A, 10, E8, B2, 00, 00, 00, 59, 33, F6, 89, 75...
 
[+]

Entropy:
7.9968

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
276 KB (282,624 bytes)

The file virtualcd10700demo.exe has been seen being distributed by the following 22 URLs.

http://lb.cdn.m6web.fr/d/c/a/8d51d7f80724d8c1001d8e867cf185ef/57d5abb3/soft/.../virtual-cd_10-7-0-0_fr_10597.exe

http://lb.cdn.m6web.fr/d/c/a/f139d4eff9ded72f7ce856c50de10a39/58443ddc/soft/.../virtual-cd_10-7-0-0_fr_10597.exe

http://www.virtualcd.de/vcddemog.exe

https://dw.uptodown.com/dwn/N3K-5xpiDcRjoU9K-9R3wcvQHNoQL5RNr5o5qKikstqI-UKYiy8tndmSuTix32fanMpGPHHv_EgZemEBLQ62s_RIWmmy2GQBm8I5HeEZLopH5PnNXOsOEO6TvDw_kSRh/EWz_zhimAMKemXQ3yTOto2cZ8rNNpCdH6U37on1dEnJcIMF_3reg4ddKUE0w-3am4DQzWHeOOdNbMY-xFHG4VdVGUM7ronzHU0UvMv2roYtuIr4eo6Uv92EtciaKOn4b/7Uqq56KRSfYy0b29NjfPie8aJQUcs4pHExES1f05-tOx4XBbZNGIcl_C6dUvttNKChYZaiT49wqstgtdJX4MzXbI5-KQeQzSVepOgk_RlcAKoqsja4gw_6QSoQDtpMz_/.../

http://www.softportal.com/getsoft-37-virtual-cd-1.html

https://www.netzwelt.de/.../5252_2-virtual-cd.html?sig=2315886b285b29c7e5e9551ae9578652

https://dw.uptodown.com/dwn/_umfrRSrYevZ1omux_lDsdl4aPxYiaEVRFDcF3otN7j0OdF-3UbzOFx5w4JsxbP0llQ1xCBShDoNaqUV4yNP1W1uXcDio2kx5F1wTtcyxdCSiYBtM6TKmbhimQedaAWf/gonxq1JEyzprma8BRHdtrs4FS-oCuIeKPs2Ym2sVnfjM9ATocRWD9SHaTWssn_-5Uz8kttHxLr4QHYFRA-Xk6bJ-_onJqDn1eQw67dPG2aPkwNcUybDxhHI1vHsqmEA6/YH_4Nbf8RIWLhBJz9EpyxWTXFtV_eTVGP278LLfGAtXCQDDD0WgBLZfegN3v3wNKFnV5-wTwtuJrbVZHeQkUVUtB1CsOwoSVyIJYgpsc8GIarLT0kvj0OWWClq9EGDwP/.../

http://lb.cdn.m6web.fr/d/c/a/468b2f05bdfc3fbdf1487e301d82c272/57a89488/soft/.../virtual-cd_10-7-0-0_fr_10597.exe

http://dw.uptodown.com/dwn/S2iB7SnicY06R-BdG0TLzHvgl8I2VeigoHb0aJr30m3dTkeqftc2U2bHHfx80RqoDYiLAApNL9DRthheM586Ijmkt_Sj6G8NdRzwOtNC8GRof-xResH4bP0f6ZrSppB7/tYOQ6z46HMt1SETBGVaL9vS3YLoz_iQgPsbdY3C0HEN2L3AYtVJD_xaLxuaGF0GompCSGqpl2Lb4KcoTi1Q5cMGyztWSgp7pHsL3m_b8Hl7-HisJfqvxMox9TCgBq5E9/.../

http://indir.gezginler.net/i/74/.../

https://download.heise.de/software/bd287dc56d637064cc181ddc9f707b17/56bae115/.../virtualcd10700demo.exe

http://lb.cdn.m6web.fr/d/c/a/89d05238f0e1bf3e5339fc396dc3e498/5634f24d/soft/.../virtual-cd_10-7-0-0_fr_10597.exe

http://lb.cdn.m6web.fr/d/c/a/c33f0012f605bbc9b491b4745ec50297/567944b1/soft/.../virtual-cd_10-7-0-0_fr_10597.exe

http://lb.cdn.m6web.fr/d/c/a/507cfbf68dfd8120841d605065b7e866/571a6cf5/soft/.../virtual-cd_10-7-0-0_fr_10597.exe

http://www.netzwelt.de/.../5252_2-virtual-cd.html?sig=5df957f56065b15eb47ce620a2277a66

http://download.hh-software.com/download/VCD/v10/.../VirtualCD10700Demo.exe

http://www.programosy.pl/.../pobierz,virtual-cd,2.html

http://dl2.netzwelt.de/.../VirtualCD10700Demo.exe

http://dw.uptodown.com/dwn/68ANNBPB2cEjqz2Thwssun2WrcmlyHXTGx_z4JF5xBG-VZ0gymI0_88MHgBPdad7sS2mH6SgG-yu5vx9RxyYICsDGqFEs6Sf_U1SAbjmfBWGxCY_i0LAfqEuGLsowQeC/8p3_bpUqrY7q0B6NZ4y7rITuj88q4yI6V5RKsjjVqfEHdJXhpgvGI2TPZAJlIDVa7ZDWTTu_3aZxYJD_8_Ja2-n3sqEeCvQ-SHrHBp92P63cmguLD8AGDkNlQUZErDi1/.../

http://lb.cdn.m6web.fr/d/c/a/0a9d08b8c13b1ad7e6e6726b150833f7/56ca40aa/soft/.../virtual-cd_10-7-0-0_fr_10597.exe

http://soft.oszone.net/download-file/.../

http://www.virtualcd-online.com/vcddemog.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.