always-on-top.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from mega.nz and multiple other hosts.
Version:
1, 0, 47, 06

MD5:
474d3ccc8fd26131a5f948fce2cbe758

SHA-1:
5bf8da535ef54a71e3740b2d1d0ce21322753400

SHA-256:
f87f3e56d9a0f2e955d365b03ad0bcbd9395ddeaa5b34d40ce00973d864b727e

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

False Positives:
A number of engines detected this file but were erroneous detections (false positives).

Analysis date:
12/26/2024 5:13:55 AM UTC  (today)

File size:
199.2 KB (203,965 bytes)

Product version:
1, 0, 47, 06

File type:
Executable application (Win32 EXE)

Language:
English (United States)

File PE Metadata
Compilation timestamp:
3/9/2008 10:12:03 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
6144:OrTUGXDncBO9CRvpnWA2Q4qLpBZFQNmmN7Am14loSe:CzcmEnv2QHTZFajhAmWloSe

Entry address:
0x6F1C0

Entry point:
60, BE, 00, 00, 44, 00, 8D, BE, 00, 10, FC, FF, 57, 89, E5, 8D, 9C, 24, 80, C1, FF, FF, 31, C0, 50, 39, DC, 75, FB, 46, 46, 53, 68, A7, D8, 06, 00, 57, 83, C3, 04, 53, 68, BD, F1, 02, 00, 56, 83, C3, 04, 53, 50, C7, 03, 03, 00, 02, 00, 90, 90, 90, 90, 90, 55, 57, 56, 53, 83, EC, 7C, 8B, 94, 24, 90, 00, 00, 00, C7, 44, 24, 74, 00, 00, 00, 00, C6, 44, 24, 73, 00, 8B, AC, 24, 9C, 00, 00, 00, 8D, 42, 04, 89, 44, 24, 78, B8, 01, 00, 00, 00, 0F, B6, 4A, 02, 89, C3, D3, E3, 89, D9, 49, 89, 4C, 24, 6C, 0F, B6, 4A...
 
[+]

Entropy:
7.9648  (probably packed)

Code size:
192 KB (196,608 bytes)

User Start Menu Item
Name:
always-on-top.exe


The file always-on-top.exe has been discovered within the following program.

Vuze  by Azureus Software, Inc.
Vuze is a BitTorrent client used to transfer files via the BitTorrent protocol. Vuze is written in Java, and uses the Azureus Engine. In addition to downloading data linked to .
www.vuze.com
9% remove it
 
Powered by Should I Remove It?

The file always-on-top.exe has been seen being distributed by the following 7 URLs.

https://mega.nz/temporary/.../H8YAySQK

https://doc-04-70-docs.googleusercontent.com/docs/securesc/d38s1ii5n28ra03ibsp3g1hhqbr08ms2/afeinofojjjhodeio791b815i384hkcc/1429812000000/06344687339363384652/.../0ByfontQImZKYR2M4WVVkNXMzcTQ?e=download&nonce=768aaham2mvvi&user=12561834635714621285&hash=ouvggbf83b3saa1ndtk1r9lhd77usggf