avg_pctuneup_917.exe

AVG Internet Security System

AVG Technologies CZ, s.r.o.

This is a setup and installation application. The file has been seen being downloaded from www.towerbitscenter.com and multiple other hosts.
Publisher:
AVG Technologies CZ, s.r.o.  (signed and verified)

Product:
AVG Internet Security System

Description:
AVG Setup Self-Extractor based on 7-Zip

Version:
15, 1, 0, 13

MD5:
fec689e593e02d9a1014a0244419bbd9

SHA-1:
8e65a4f8459401bbc108bbc103891b40a042e6b4

SHA-256:
4ad14b4f9e57202998230e75362a19c685616306b3b511d37fc94fba65c938a7

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 1:50:22 AM UTC  (today)

File size:
3 MB (3,135,696 bytes)

Product version:
15, 1, 0, 13

Copyright:
Copyright (C) 2015 AVG Technologies CZ, s.r.o.

Original file name:
7zS.sfx

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\programs\avg_pctuneup_917.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
10/22/2014 1:00:00 AM

Valid to:
1/21/2018 12:59:59 AM

Subject:
CN="AVG Technologies CZ, s.r.o.", O="AVG Technologies CZ, s.r.o.", L=Brno, S=Jihomoravsky kraj, C=CZ

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
266D333EDE17A8B472053E4FA3934572

File PE Metadata
Compilation timestamp:
3/1/2016 4:20:34 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
49152:ns1c2aJIV4imL5aiHdlmVDPLEStuIo0HXGgY/qqEIrsph07QQprusbswU5iN9nAV:sW2WoefHHyPNtuI5HWgYCHFgzvIOnAV

Entry address:
0x166A0

Entry point:
E8, CD, 2C, 00, 00, E9, 00, 00, 00, 00, 6A, 14, 68, A8, 78, 42, 00, E8, 5A, FC, FF, FF, E8, 51, 18, 00, 00, 0F, B7, F0, 6A, 02, E8, 60, 2C, 00, 00, 59, B8, 4D, 5A, 00, 00, 66, 39, 05, 00, 00, 40, 00, 74, 04, 33, DB, EB, 33, A1, 3C, 00, 40, 00, 81, B8, 00, 00, 40, 00, 50, 45, 00, 00, 75, EB, B9, 0B, 01, 00, 00, 66, 39, 88, 18, 00, 40, 00, 75, DD, 33, DB, 83, B8, 74, 00, 40, 00, 0E, 76, 09, 39, 98, E8, 00, 40, 00, 0F, 95, C3, 89, 5D, E4, E8, 58, 1B, 00, 00, 85, C0, 75, 08, 6A, 1C, E8, DC, 00, 00, 00, 59, E8...
 
[+]

Entropy:
7.9729  (probably packed)

Code size:
116 KB (118,784 bytes)

The file avg_pctuneup_917.exe has been seen being distributed by the following 11 URLs.

http://www.towerbitscenter.com/SFc4yZeeSSCBtmzR69KgpBzWe31HYCys2sedya JVj6bwdlXqEH3zoDLXnmxfAyFcA75_gnSeScQ5s3Gjvx8AWIZek9zDYHFG63P1yd MvR rlyoPntX RLaEohMLNTYisPFKuFxlODCJvSPFRwJ9udt2Fe3Cm3ZEyvzd_mbg_7VJ1tR hbcJyEOBBJB6ie8 nO6M2iKJiEVu0l67nC0z7yfZ_TuXggSpKxyDAPsRyOgV4dhQew=-GzkAAMTyFpP_SSaaoAqoP Emsd9gYCIHDi0NgK_8xjYQZY0xyuCG htH_GMfnsqhJcmx3IWq4q0jfAA=

http://www.ranchsendgift.com/EMvWs5Tl8TqlatZjlAQgiyRHif1K6EggyH8b74K1gPpgvaDss0uGxp4y5yoeFUG323l3p0G5FAygtvkDlHN12DKguGlFQxVpGMAPUiIRcpOjNgsRSrbczbhC18om3WRW4ClZQp1H7tJIqsDZkDDO6AJPShzwDL ILlwSAty mQ99wZJqxHT8UpdpAcryTfQKsCe10dmokfyCPcIzD5YIuxnDkfivIw==-GzkAAMTyFpP_SSaaoAqoP Emsd9gYCIHDi0NgK_8xjYQZY0xyuCG htH_GMfnsqhJcmx3IWq4q0jfAA=

http://www.ranchsendgift.com/VGkL7xELpsgPiup flBLwSYXuHTH12tkbeNJ0tFtLzqwdxCceBUqBFv2GB0CsQf9AHXprygvALyKyu6Xvg1tbLtNZbxZazym3KXCOctkP0P_ImmXhS6g2wicQ81wuHOamc42JwtvsYG1VssfSM8J3MQS9aTrA14RHtDLYvCMIDPoa5KRYkNTVeTkyKNmyOrSXbsfBggcbFImCl7PpAaMASSb9_RyCdqD5doh_KSVlYy2yGDuB2Wvzt_i5FsAbcTUxYeqV4 97aSWAfTnTxi5DuF5J4YC6Fmmpkb0ajrDd PDGdfPWWRn6X9htSN2xMCWx9N1iIJzMUnRDrlo2LIBXVHaWzmVKHH44MG0TRLD27h8PFT EXpxZFkeBKq4q6sSWo2o_5j qUbFotPNDpUJMv6HzUO5A0UAtgBLsw54mXukymTLaKIUjXHw_XT9bO7EqdvBUt7FwRBMSbt y2Ema_bw4YsCpIYun6kXjuRhTSTaMIv3RTNJqDl7Om_K5RVQofzBu_TabL8JMKOOoKK 66aY piVNTxQikQvLOYSO9Og6prx4R5F5F4kTorN6pFuTTv5vjBU-GzkAAMTyFpP_SSaaoAqoP Emsd9gYCIHDi0NgK_8xjYQZY0xyuCG htH_GMfnsqhJcmx3IWq4q0jfAA=-e

http://www.towerbitscenter.com/HGTgtjnfh7n32b BZeW6 TsAPrDinGFte1FwVDDIOAEsYW0 b 2reO7YPAuKuLxcC0jftPJRiPMmXAiOauO0EAJ23bhqi8BCEakJCVxy7ncNW70PrbNXeLjaboL8Igs9_oNdROZXuziWN DxSgXLbdN899kenNx9SlLIsASAO1bTVwTRuYgAqY4_6wmX9W GZ6LrSgLsnY04YqexJ7OSihwh8zan znSsWRff5_tMEJ82csxPNo=-GzkAAMTyFpP_SSaaoAqoP Emsd9gYCIHDi0NgK_8xjYQZY0xyuCG htH_GMfnsqhJcmx3IWq4q0jfAA=

http://www.towerbitscenter.com/brVkGuSA11_0t6t6w6Eb7QcHVobW9lbtI0zRPMP jH93hcg7h8uiqtKB9AMkbICvWIclwMg0RIjCR6gdQOUkEPGKe6dvGLIZvAlDHw1A1sT7NpCicl pkYhu_3c9bGaD5rog7 FLaiCsrCMX1Kr1Qgd_pjNU3seTUOySolPza5YbMbKNujiwULO_PpQMC49fuWvqCR8fPnsJoiAlwPPaLrg20OsLHA==-GzkAAMTyFpP_SSaaoAqoP Emsd9gYCIHDi0NgK_8xjYQZY0xyuCG htH_GMfnsqhJcmx3IWq4q0jfAA=

http://www.towerbitscenter.com/t37RGqeguxy2G2WKPwCeRMFFlakIAHTCrjzT4CINZytdxP Z7r19clcBZcAZn9CTh33fFNxQ0gWZZR1ekQWhoEesQiUbbTrkp7dcruL2ThhuCjniMQSf97rFXStn9ebowDw2RhSss9rfHi0Q Bybla1C6sx4O4NkIQrBpDClY ps_xSIGZBCA0FkOoRJ5chRN6QROvhmQ5Z0rzMwvtRH2gov3pFTKw==-GzkAAMTyFpP_SSaaoAqoP Emsd9gYCIHDi0NgK_8xjYQZY0xyuCG htH_GMfnsqhJcmx3IWq4q0jfAA=

http://www.ranchsendgift.com/kkwpfnxUn7aQ9fMO_rxWODZ6OrPH15FU44BEPnAucnbCFIdmqnxRv2UcLYFtzPucJtjX8HtjtmN0oykf45WLXyE2xLvkdBdD 8DpMz5bsBmXerqfWAuE1RpBVJri_pY6p7TO8D84a6uggPsjVBFcfyDHvRRmOvhQnAKtE2zM96rvpd73Uxbppgj9HBlvrxhypA0_ZtUjJIEeYagvxfr7oVkBEHf3yQ==-GzkAAMTyFpP_SSaaoAqoP Emsd9gYCIHDi0NgK_8xjYQZY0xyuCG htH_GMfnsqhJcmx3IWq4q0jfAA=

http://www.ranchsendgift.com/TTP4B Oy7x6cXKDL8oJ ZLtzt8CHGyC7zQlOOHvwQ5bctha90zRNcmsm8pMxBj3T7IPEGnRSy7uPeFQHOikBT39DxPNl0En2Vy2osMqszHjUOL8ln1e VOaxFqeKEhhG_Agv7CiFCFvhbwaYdXbObGZiXqSYMZ_K_QYnv D1wvswP 2mn3N_Cy5AHffSYCpuoaC2ullzFRSPAM7aRn8XQISlkDpCvQ==-GzkAAMTyFpP_SSaaoAqoP Emsd9gYCIHDi0NgK_8xjYQZY0xyuCG htH_GMfnsqhJcmx3IWq4q0jfAA=

Scan avg_pctuneup_917.exe - Powered by Reason Core Security