avira_en_avprodl_5745e0a71f3e5__ws.exe

Avira Launcher

Avira Operations GmbH & Co. KG

This is a setup program which is used to install the application. The file has been seen being downloaded from www.avira.com and multiple other hosts.
Publisher:
Avira Operations GmbH & Co. KG  (signed and verified)

Product:
Avira Launcher

Version:
1.1.63.21885

MD5:
59e40d11bb208303df4281dd60ae2328

SHA-1:
dce8b79012326fe2033c70cc9644c402e2258c02

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/24/2024 11:50:12 AM UTC  (today)

File size:
4.4 MB (4,630,840 bytes)

Product version:
1.1.63.21885

Copyright:
Copyright © 2015 Avira Operations GmbH & Co. KG and its Licensors

Original file name:
Avira.OE.Setup.Bundle.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Documents and Settings\{user}\My documents\downloads\avira_en_avprodl_5745e0a71f3e5__ws.exe

Digital Signature
Authority:
Symantec Corporation

Valid from:
5/12/2015 3:00:00 AM

Valid to:
5/12/2018 2:59:59 AM

Subject:
CN=Avira Operations GmbH & Co. KG, O=Avira Operations GmbH & Co. KG, L=Tettnang, S=Baden-Württemberg, C=DE, SERIALNUMBER=HRA 722586, OID.2.5.4.15=Private Organization, OID.1.3.6.1.4.1.311.60.2.1.1=Ulm, OID.1.3.6.1.4.1.311.60.2.1.3=DE

Issuer:
CN=Symantec Class 3 Extended Validation Code Signing CA - G2, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
44CAA3C1CDC91B80F216480A0C834A69

File PE Metadata
Compilation timestamp:
5/19/2016 12:36:57 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
98304:HU43V8EH1Id6izTDMk4VLjRhKa32KGyMjcTWFvFMXi:HSuifpcLjmiVGyMaoMXi

Entry address:
0x2C134

Entry point:
C3, C3, C3, C3, C3, C3, C3, C3, FF, FF, 55, 8B, EC, E8, 0F, 00, 00, 00, 83, 7D, 08, 00, 74, 05, E8, 03, 59, 00, 00, DB, E2, 5D, C3, B8, B6, 0F, 43, 00, C7, 05, A8, 51, 46, 00, A2, 18, 43, 00, A3, A4, 51, 46, 00, C7, 05, AC, 51, 46, 00, 33, 19, 43, 00, C7, 05, B0, 51, 46, 00, 8D, 19, 43, 00, C7, 05, B4, 51, 46, 00, 12, 1A, 43, 00, A3, B8, 51, 46, 00, C7, 05, BC, 51, 46, 00, D7, 0F, 43, 00, C7, 05, C0, 51, 46, 00, 4B, 19, 43, 00, C7, 05, C4, 51, 46, 00, B3, 18, 43, 00, C7, 05, C8, 51, 46, 00, 9E, 19, 43, 00...
 
[+]

Entropy:
7.9697  (probably packed)

Code size:
279.5 KB (286,208 bytes)

The file avira_en_avprodl_5745e0a71f3e5__ws.exe has been seen being distributed by the following 2 URLs.

https://www.avira.com/downloads/.../defaultDownload?product=avira-free-antivirus

Scan avira_en_avprodl_5745e0a71f3e5__ws.exe - Powered by Reason Core Security