home

10-2_legacy_xp32-64_dd_ccc.exe

CATALYST 10-02

ATI Technologies ULC

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from drivers2.driver-disk.com and multiple other hosts.
Publisher:
Advanced Micro Devices, Inc.  (signed by ATI Technologies ULC)

Product:
CATALYST 10-02

Description:
10-02_legacy_xp32-64_dd_ccc

Version:
0309

MD5:
23ea4fb7302bf4d4dc05649d17b13ef7

SHA-1:
ce94ac11201d1ac73029d20aec8fa05811c5caac

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/5/2024 10:35:40 AM UTC  (today)

File size:
75.6 MB (79,313,640 bytes)

Copyright:
Advanced Micro Devices, Inc.

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Digital Signature
Signed by:
ATI Technologies ULC

Authority:
VeriSign, Inc.

Valid from:
1/13/2010 1:00:00 AM

Valid to:
1/10/2012 12:59:59 AM

Subject:
CN=ATI Technologies ULC, OU=Product Deployment, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=ATI Technologies ULC, L=Markham, S=Ontario, C=CA

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
12D6E958F187C55BE20A875CB0D5377C

File PE Metadata
Compilation timestamp:
2/21/2009 8:46:29 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
1572864:AHmpAAHcSMQ67cSwlBazdCiOCjLxL0BgzbAmVY8erE4KW6j/ZbWyl1Beq:RpAVSMpQPPCCiLxL0BMbWkfj/ZWyDoq

Entry address:
0x30CB

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 60, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B0, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 38, 3F, 42, 00, E8, ED, 2B, 00, 00, A3, 84, 3E, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 30, F4, 41, 00, FF, 15, 58, 71, 40, 00, 68, 54, 91, 40, 00, 68, 80, 36, 42, 00, E8, A4, 28, 00, 00, FF, 15, AC, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, 92, 28, 00, 00...
 
[+]

Packer / compiler:
Nullsoft install system v2.x

Code size:
22.5 KB (23,040 bytes)

The file 10-2_legacy_xp32-64_dd_ccc.exe has been seen being distributed by the following 34 URLs.

http://drivers2.driver-disk.com/.../102legacyxp3264ddccc.exe

ftp://ftp.rtr.spb.ru/Drivers/Video/ATI/.../10-2_legacy_xp32-64_dd_ccc.exe

https://d2.driver.ru/6e852ff5ab81/ece5772b2e2733981aec112980996b1a9b1b82c67aa05ac9dcb359756b87d3c6c5c86652e96b3c95ffa4c15ea33521e558318451/1/21/1/.../10-2_legacy_xp32-64_dd_ccc.exe

http://members.driverguide.com/.../dispatch_cache_get.php?msl=23ea4fb7302bf4d4dc05649d17b13ef7,1836725_1316150437&time=1482195583&auth=ad667f0fa222a2ba880714bb7c7fa233&file=10-2_legacy_xp32-64_dd_ccc.exe

http://www.driverscloud.com/pt/services/DownloadDriver/.../key

http://dl-eu1.driverscape.com/files/.../10-2_legacy_xp32-64_dd_ccc.exe

https://d2.driverscollection.com/2b355fbd39e6d6/524f0c1d625d353b734c0c0eea887c7e145aa3feaff394aa3ef425e036999fc5a8b30ca8722f0e5ba9cd43349e803d3858020c78/1/21/1/.../10-2_legacy_xp32-64_dd_ccc.exe

https://d2.driverscollection.com/6e854eeb48f4/c6469b9946684d99b405260c1255e3165b96836b79733d64952dd7bc3db6853a540e08e7ada4eb1acc53a1b976771e6257ac6d41/1/21/1/.../10-2_legacy_xp32-64_dd_ccc.exe

https://d2.driverscollection.com/6e9cd36fc4e8/73febb06d953909b076bb37ffe718f7d2ee3313265046c303286c39757f2dfad9fe15297cb1906122bbf2e9c56d3030e54a040bf/1/21/1/.../10-2_legacy_xp32-64_dd_ccc.exe

https://d2.driverscollection.com/1b015bc7cc32564/f07fa35103ad007ffed5353eda4740fb4a6b5a544a184d23dec2b7b801f377875519ac52aef1dd076f9c999a9e4b745d58297a99/1/21/1/.../10-2_legacy_xp32-64_dd_ccc.exe

http://d2.restore.solutions/.../102legacyxp3264ddccc.exe

http://www.driverscloud.com/es/servicios/DownloadDriver/.../key

http://www.driverscloud.com/fr/services/DownloadDriver/.../key

https://d2.driverscollection.com/2b355de6aee947/c394870bf740dcb09a15499c97b8b48ccd60aa60394a2d8e7e479eebba84503f266d4cdcf1fbddf6f963b56d7ac9ed1058226511/1/21/1/.../10-2_legacy_xp32-64_dd_ccc.exe

http://driver.3dpchip.com/new/gc/.../10-2_legacy_xp32-64_dd_ccc.exe

https://d2.driverscollection.com/_7_14192142192242292342a01115f4130dd0025b6e652f225e28e/350d93bdaa988f46acd4138b5129f55cb37ba6c47f31b7e21e9a46564e52d90ea6c2088c96f8a4983491896933d0cdf957fb870b/1/21/1/.../10-2_legacy_xp32-64_dd_ccc.exe

https://d2.driverscollection.com/1b015bda8365b24/7483c61150be3dd8e94ee64e263f61a4b236ff51cc0afd314c24fa816b0586b7131dc88abf450c11b464e29b51170b3b57e4d02e/1/21/1/.../10-2_legacy_xp32-64_dd_ccc.exe

http://radeon-9600-pro-sec.soft32.com/get/file/id/.../?no_download_manager=true

http://fichiers.touslesdrivers.com/.../10-2_legacy_xp32-64_dd_ccc.exe

https://d2.driverscollection.com/b0d5b06f319/f51a2f416ad1f8b51630b9d7159b14d1a584b097a20e06001d164b826461b89ab8fa02ca0a7d9ca085a2d7c5cc21202c565362f0/1/21/1/.../10-2_legacy_xp32-64_dd_ccc.exe

http://driver3.3dpchip.com/new/gc/.../10-2_legacy_xp32-64_dd_ccc.exe

http://atherosdrivers.blob.core.windows.net/.../10-2_legacy_xp32-64_dd_ccc.exe

http://download.driverscollection.com/6e6de73f4d9d/8c067815896d30075fdd81f46835796d44d890000c495600724b68add5a7bd74c64a09936d7e028faa377b7cf49a916f518f5f41/1/21/1/.../10-2_legacy_xp32-64_dd_ccc.exe

http://www.3dpchip.com/new/gc/.../10-2_legacy_xp32-64_dd_ccc.exe

https://d2.driverscollection.com/1d3f79150d50aab/6bc728898a6f5a29d35f35e77a2a0f9871b01c7563039c130fc6a2a05a5de3def2daf6a8933f7c831a984af5b73953f4567c25a3/1/21/1/.../10-2_legacy_xp32-64_dd_ccc.exe

http://driver2.3dpchip.com/new/gc/.../10-2_legacy_xp32-64_dd_ccc.exe

https://d2.driverscollection.com/6e859026273f/3a7ee49899c25f1c020140f0c08f7c54bb00dce1c787eef3560511640e2348e18579ba85a3553ac83c9b44a45ff81a8e56c88008/1/21/1/.../10-2_legacy_xp32-64_dd_ccc.exe

http://fichiers3.touslesdrivers.com/.../10-2_legacy_xp32-64_dd_ccc.exe

https://a248.e.akamai.net/f/674/9206/0/www2.ati.com/.../10-2_legacy_xp32-64_dd_ccc.exe

https://d2.driverscollection.com/4ad11c9be51cf/095923b1a2e0fe7e15605e4813a15b80e3f7a316a788cd502acb6c864772786627cc9108813b5a50fdb64c98f6acb6bf569ac958/1/21/1/.../10-2_legacy_xp32-64_dd_ccc.exe

Latest 30 of 34 download URLs

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.