bandwidth-installer.exe

Antamedia Bandwidth Manager

ANTAMEDIA MDOO

This is a setup and installation application.
Publisher:
Antamedia  (signed by ANTAMEDIA MDOO)

Product:
Antamedia Bandwidth Manager

Description:
Antamedia Bandwidth Manager Installer

Version:
3.0.0.0

MD5:
89b19defd845b8ed0881a515df424835

SHA-1:
5308559cd21c44e7d9cdea1d3dc4393951bf7a69

SHA-256:
dbd24ad135683ea350f7c34f400e095e229377eafea779d242b23f19e5b77b85

Scanner detections:
4 / 68

Status:
Clean  (4 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
11/25/2024 10:40:40 PM UTC  (today)

Scan engine
Detection
Engine version

AhnLab V3 Security
Win-Trojan/Malpacked5.Gen
2014.12.01

Dr.Web
Trojan.Popclick.47
9.0.1.014

Quick Heal
(Suspicious) - DNAScan
1.15.14.00

Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594
23.00.65.15112

File size:
20.1 MB (21,123,912 bytes)

Product version:
2.0.0.0

Copyright:
Antamedia

Trademarks:
Antamedia

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\bandwidth-installer.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
1/4/2012 8:00:00 AM

Valid to:
2/24/2013 7:59:59 AM

Subject:
CN=ANTAMEDIA MDOO, OU=Secure Application Development, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=ANTAMEDIA MDOO, L=Belgrade, S=Serbia, C=RS

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
0B4422DE83868A3EC054C9F5595A7BBF

File PE Metadata
Compilation timestamp:
1/23/2013 8:57:45 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
393216:Qv+0FB/YJ7ZvihvrdrBESUwAdqH8tWKQst4dA7ZWj8WZ822x1:QvlYJ7BGhrB3oZIuyao8Wa/1

Entry address:
0x1CD7000

Entry point:
68, 80, 70, 0D, 02, 68, D6, 0E, 4F, 03, 68, 00, 00, 00, 00, E8, C2, 9E, 41, 01, E9, CB, 9D, 48, FE, 40, 28, 23, 29, 50, 4B, 4C, 49, 54, 45, 33, 32, 20, 43, 6F, 70, 79, 72, 69, 67, 68, 74, 20, 31, 39, 39, 38, 20, 50, 4B, 57, 41, 52, 45, 20, 49, 6E, 63, 2E, 2C, 20, 41, 6C, 6C, 20, 52, 69, 67, 68, 74, 73, 20, 52, 65, 73, 65, 72, 76, 65, 64, 20, 28, 24, 52, 65, 76, 69, 73, 69, 6F, 6E, 3A, 20, 24, 29, 00, 50, 4B, 4C, 54, 33, 32, 00, 00, 10, 01, 00, 00, 6C, DE, FF, 50, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC...
 
[+]

Entropy:
7.9937

Packer / compiler:
PKLITE32, 0x1.1

Code size:
20.1 MB (21,079,040 bytes)

The file bandwidth-installer.exe has been seen being distributed by the following 3 URLs.

temp:bandwidth-installer.exe

Scan bandwidth-installer.exe - Powered by Reason Core Security