1410df50-12a7-4eec-bf90-36752a4add13.exe

PC Reviver

Corel Corporation

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. This is installed with PC Reviver. The file has been seen being downloaded from www.reviversoft.com and multiple other hosts.
Publisher:
ReviverSoft  (signed by Corel Corporation)

Product:
PC Reviver

Description:
PC Reviver installer

Version:
2.10.0.8

MD5:
f961fb9a83684bfc78fab459e8c92e27

SHA-1:
2d0c662e8655e2de7c3c9b7bcddda01814e17099

SHA-256:
d4b889629077c8c89bab715667bc66165630d6dcf33c4403011b929c0d4ce5b4

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/24/2024 12:03:47 PM UTC  (today)

File size:
35.6 MB (37,298,472 bytes)

Product version:
2.10.0.8

Copyright:
Copyright (c) 2016 ReviverSoft. All Rights Reserved.

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Digital Signature
Authority:
Symantec Corporation

Valid from:
8/1/2015 9:00:00 AM

Valid to:
8/1/2016 8:59:59 AM

Subject:
CN=Corel Corporation, O=Corel Corporation, L=Ottawa, S=Ontario, C=CA

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
4A1405278B355E198E080E13B0A8E885

File PE Metadata
Compilation timestamp:
4/10/2010 9:19:31 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
786432:Cs6CaoiV+Fl2lMzj7ekZQHX8D0QuGsND4aGnaOqqFG5d8MZU3Sx/:C1Vgl2mzjd2HXeHulND4JnaOe5dpZd9

Entry address:
0x354B

Entry point:
81, EC, D4, 02, 00, 00, 53, 55, 56, 57, 6A, 20, 33, ED, 5E, 89, 6C, 24, 18, C7, 44, 24, 10, D8, 84, 40, 00, 89, 6C, 24, 14, FF, 15, 30, 80, 40, 00, 68, 01, 80, 00, 00, FF, 15, B8, 80, 40, 00, 55, FF, 15, B0, 82, 40, 00, 6A, 08, A3, 98, 06, 47, 00, E8, 67, 27, 00, 00, 55, 68, B4, 02, 00, 00, A3, B0, 05, 47, 00, 8D, 44, 24, 38, 50, 55, 68, 1C, 86, 40, 00, FF, 15, 80, 81, 40, 00, 68, 04, 86, 40, 00, 68, A0, 85, 46, 00, E8, 35, 26, 00, 00, FF, 15, B4, 80, 40, 00, 50, BF, A0, 10, 4C, 00, 57, E8, 23, 26, 00, 00...
 
[+]

Entropy:
8.0000

Packer / compiler:
Nullsoft install system v2.x

Code size:
25 KB (25,600 bytes)

The file 1410df50-12a7-4eec-bf90-36752a4add13.exe has been discovered within the following program.

PC Reviver  by ReviverSoft LLC
The software is a registry 'cleaner' and junk file remover along with other features that include a task manager and uninstaller.
www.reviversoft.com/pc-reviver
39% remove it
 
Powered by Should I Remove It?

The file 1410df50-12a7-4eec-bf90-36752a4add13.exe has been seen being distributed by the following 3 URLs.

http://www.reviversoft.com/.../PCReviverSetup.exe