81504-83580-myvirtualhome.exe

InstallShield

Acresso Software Inc.

The program is a setup application that uses the InstallShield Setup installer. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.
Publisher:
Acresso Software Inc.

Product:
InstallShield

Description:
InstallScript Setup Launcher

Version:
16.0.328

MD5:
7d62671a7ca61944468a6bb65edfb852

SHA-1:
bba22b99ea65f4ce7674ed5a6fa23aa4fd29a617

SHA-256:
82328c5e0deb81a94f83d298b640d4f991e888904de4bb852e6dc306063439c9

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 12:44:44 AM UTC  (today)

File size:
40.2 MB (42,119,176 bytes)

Product version:
16.0

Copyright:
Copyright (C) 2009 Acresso Software Inc. and/or InstallShield Co. Inc. All Rights Reserved.

Original file name:
Setup.exe

File type:
Executable application (Win32 EXE)

Installer:
InstallShield Setup

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\81504-83580-myvirtualhome.exe

File PE Metadata
Compilation timestamp:
6/10/2009 8:24:16 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
786432:ePG+Y6f/T/j7H1bUpYaeIoA//u4ux2jtOlukIPXdkdHWcpBGhFgjF2VO:ePNYW/73H2pJto6/ugOU/0HWcvd

Entry address:
0x3D474

Entry point:
55, 8B, EC, 6A, FF, 68, 48, 85, 46, 00, 68, 98, F0, 43, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 58, 53, 56, 57, 89, 65, E8, FF, 15, 24, 73, 46, 00, 33, D2, 8A, D4, 89, 15, 88, DB, 47, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, 84, DB, 47, 00, C1, E1, 08, 03, CA, 89, 0D, 80, DB, 47, 00, C1, E8, 10, A3, 7C, DB, 47, 00, 6A, 01, E8, A3, 37, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, C3, 00, 00, 00, 59, E8, 28, 15, 00, 00, 85, C0, 75, 08, 6A, 10, E8, B2, 00, 00, 00, 59, 33, F6, 89, 75...
 
[+]

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
406 KB (415,744 bytes)

The file 81504-83580-myvirtualhome.exe has been seen being distributed by the following 6 URLs.

http://gsf-cf.softonic.com/bba/22b/.../file?SD_used=0&channel=WEB&fdh=no&id_file=85241&instance=softonic_fr&type=PROGRAM&Expires=1429511348&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=ft8J~re5~7rhr28xiK9mmJFK3W5tJGUaX4NyRF68bN4Bw5gMNXI6PizCf-TpqTf2Z8jM-RKrK8NKwAHS-Sqga3U9i79Yf7Hs0vVIjfLZDJannurezg2iS1r~lrEMYkY7RbKQkk1BFLp7SKdcCVMcyl2NpmJB09wYPh92i8FRWvE_&filename=MyVirtualHomeSetup_3.0.2.exe

http://gsf-cf.softonic.com/bba/22b/.../file?SD_used=0&channel=WEB&fdh=no&id_file=85241&instance=softonic_fr&type=PROGRAM&Expires=1444358815&Signature=ZWvK-j30mI0N0DblrNyHAiCvqW0tvF29xXmkP-r4x4kZ9KTQSf-XGmRxbXilKyXxPBbYsPkAWxwUAkq1uZqyJY6RRG5C-sQ706vV6d8mDqd2IlfIGvlCcvEeKCjFCzUG84VCLgdXY8o0ioGWJ9FfkWYfdn4XTq0Qqq5uhcSABFY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=MyVirtualHomeSetup_3.0.2.exe

Scan 81504-83580-myvirtualhome.exe - Powered by Reason Core Security