b1freearchiver_1.2.53.exe

B1 Free Archiver Installer

Catalina Group Limited

The application b1freearchiver_1.2.53.exe by Catalina Group Limited has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup and installation application and has been known to bundle potentially unwanted software. This file is typically installed with the program B1 Free Archiver by Catalina Group Ltd.. The file has been seen being downloaded from b1.org.
Publisher:
Catalina Group Limited  (signed and verified)

Product:
B1 Free Archiver Installer

Version:


MD5:
76fe6279b0b0349e108c37b0b9d0c311

SHA-1:
6651ab419772614b2890ac4ca553ed5cefda53c6

SHA-256:
89f70097dc6dc3ea2659cf9fa975cbbc1fda9c04e72394685b2a7711d577cfd6

Scanner detections:
1 / 68

Status:
Potentially unwanted

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/23/2024 3:23:32 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Catalina (M)
16.11.30.3

File size:
495.5 KB (507,376 bytes)

Product version:
1, 1, 9, 0

Copyright:
Copyright (C) 2013

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\b1freearchiver_1.2.53.exe

Digital Signature
Authority:
GoDaddy.com, Inc.

Valid from:
9/27/2012 3:56:54 AM

Valid to:
9/27/2013 3:56:54 AM

Subject:
CN=Catalina Group Limited, O=Catalina Group Limited, L=Kwun Tong, S=Hong Kong, C=HK

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
27B940A1704DC9

File PE Metadata
Compilation timestamp:
7/4/2013 5:32:34 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:o71SgznXhrSP1q3wr2rz2LlvaTKHd3GN8sH0fjX+L:O1S+RrAq3Y2r6LYTKf2y6L

Entry address:
0x23716

Entry point:
E8, 2B, AC, 00, 00, E9, 79, FE, FF, FF, 8B, 4C, 24, 04, F7, C1, 03, 00, 00, 00, 74, 24, 8A, 01, 83, C1, 01, 84, C0, 74, 4E, F7, C1, 03, 00, 00, 00, 75, EF, 05, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8B, 01, BA, FF, FE, FE, 7E, 03, D0, 83, F0, FF, 33, C2, 83, C1, 04, A9, 00, 01, 01, 81, 74, E8, 8B, 41, FC, 84, C0, 74, 32, 84, E4, 74, 24, A9, 00, 00, FF, 00, 74, 13, A9, 00, 00, 00, FF, 74, 02, EB, CD, 8D, 41, FF, 8B, 4C, 24, 04, 2B, C1, C3, 8D, 41, FE, 8B, 4C, 24, 04, 2B, C1...
 
[+]

Code size:
235.5 KB (241,152 bytes)

The file b1freearchiver_1.2.53.exe has been discovered within the following program.

B1 Free Archiver  by Catalina Group Ltd.
Publisher's description - “B1 archive is an open archive format, where best proven solutions were improved even more with new original ideas. It's free and available for both personal and commercial use. B1 Archiver is extremely simple to use, you don't need comprehensive manuals or guides.”
b1.org
45% remove it
 
Powered by Should I Remove It?

The file b1freearchiver_1.2.53.exe has been seen being distributed by the following URL.

Remove b1freearchiver_1.2.53.exe - Powered by Reason Core Security