home

w2pdf_setup.exe

Win2PDF

Dane Prairie Systems, LLC.

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from download.win2pdf.com.
Publisher:
Dane Prairie Systems, LLC.

Product:
Win2PDF

Description:
Win2PDF Setup

Version:
10.0.06

MD5:
c5826b305db324345e75c63149ffd6a8

SHA-1:
15f37b629a4a2c32a89783efe736a2b74e1912df

SHA-256:
eae98904776502cc564400ca8ae16713d2aff069ba92323dc32ec0d4a2c2cb7c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/23/2024 4:28:41 AM UTC  (today)

File size:
13.7 MB (14,350,064 bytes)

Product version:
10.0.06

Copyright:
Copyright © 2016 Dane Prairie Systems, LLC.

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\w2pdf_setup.exe

File PE Metadata
Compilation timestamp:
6/20/1992 5:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:Ay30jV38Mpvd8zhD2tX/lEWRLVCIe/WVF/zH+q+am6isSMDfiLtIc3+erzx3:Ay3sV3jd4ShTFFr1mns5fiLtBnB

Entry address:
0xA5F8

Entry point:
F6, C4, 07, 73, 03, 0F, BE, D7, F6, DF, 0F, BF, EB, 87, F2, 05, 12, A0, F0, FF, 11, D3, 05, 9E, 8A, 0F, 00, 89, D6, 33, C1, F6, D1, C6, C6, 1C, 87, D0, 68, CF, 0B, 00, 00, 89, C5, 5B, 88, E9, 81, F3, 5A, 04, 00, 00, C7, C2, 04, F2, 4C, 9C, 8B, FB, 25, C8, 80, 39, 96, 4F, 0F, BF, D6, 81, FF, 90, 04, 00, 00, 73, F4, 80, EA, 18, E8, 17, 00, 00, 00, 88, E5, C7, C7, E6, 7A, 15, BE, F6, D6, 8B, EB, 0F, BF, F0, 8D, 1D, 91, F8, A9, 92, 03, C5, 8D, 35, BB, 97, E0, 22, 8D, 35, 3E, CE, F7, 72, 81, E9, 6D, 73, 00, 00...
 
[+]

Entropy:
7.9996  (probably packed)

Code size:
39.5 KB (40,448 bytes)

The file w2pdf_setup.exe has been seen being distributed by the following URL.

http://download.win2pdf.com/w2pdf_setup.exe

Scan w2pdf_setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.