home

wesola_szkola_3.exe

TODO:

TODO: <Company name>

This is a setup program which is used to install the application. The file has been seen being downloaded from s10214.chomikuj.pl.
Publisher:
TODO:

Product:
TODO: <Product name>

Description:
TODO: <File description>

Version:
1.0.0.1

MD5:
2f28d6d73f94befa9b78cb1e7b72a947

SHA-1:
ee8371341c5e68211d4748c088bc8477efcbb65b

SHA-256:
6f0814dc5c267de49670a80cb2ea6da9b4baf262d4e7ae4e6ded368ec0d91c3c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/13/2024 4:31:31 PM UTC  (today)

File size:
2.7 MB (2,850,816 bytes)

Product version:
1.0.0.1

Copyright:
TODO: (c) <Company name>. All rights reserved.

Original file name:
cdexe.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\wesola_szkola_3\wesola_szkola_3.exe

File PE Metadata
Compilation timestamp:
3/11/2006 2:03:50 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
24576:u/iwgLZZIWkzCommUO76Ti+XePXiXnJ5bBhj6RDrkYMnpuLcBCHmz:u/G0mHXUi7RtnALu8m

Entry address:
0xDCC07

Entry point:
E9, B4, BE, 13, 00, E9, 8F, 48, 0F, 00, E9, 0A, 6C, 0E, 00, E9, 75, 9F, 0A, 00, E9, 60, FF, 02, 00, E9, 0B, AE, 12, 00, E9, D6, 16, 07, 00, E9, 41, 58, 06, 00, E9, 0C, FC, 04, 00, E9, D7, EC, 03, 00, E9, 42, 21, 07, 00, E9, 6D, 67, 03, 00, E9, 78, 7F, 06, 00, E9, F3, 76, 0F, 00, E9, DE, 12, 0F, 00, E9, 79, 53, 08, 00, E9, C4, D9, 07, 00, E9, 2F, 0E, 03, 00, E9, 4A, 4F, 12, 00, E9, 15, 0F, 07, 00, E9, 10, 76, 18, 00, E9, 4B, 04, 0C, 00, E9, 66, CF, 05, 00, E9, D1, E5, 12, 00, E9, 2C, FB, 0F, 00, E9, B7, 80...
 
[+]

Developed / compiled with:
Microsoft Visual C++ 8.0 (Debug)

Code size:
1.8 MB (1,851,392 bytes)

The file wesola_szkola_3.exe has been seen being distributed by the following URL.

http://s10214.chomikuj.pl/File.aspx?e=PD9SAB6O3MoY-vIpJd1vfSyxKyU2Ib6HEFGcgHjtgDSxKXX9RSQv217A9ElkdD0eot8lCV_hLLI2qh29MHzCuPVeTnjk8uJA_ReYqkpN1ExLDsMVwh37_ielrdmiPQ1n2cQg06uirC5Xt3fIpf0wtA&pv=2

Scan wesola_szkola_3.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.