bitcomet_1.41_x86_setup.exe

Xing Wang

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from filehippo.com and multiple other hosts.
Publisher:
Xing Wang  (signed and verified)

MD5:
1c000df2aea952401809696645d87137

SHA-1:
a628f65467771641fe25452d2ba385ea5d51fc76

SHA-256:
9b9caa43b9426a420d0a3dbc9fda84fe6cc3741483f3f249e988e47bdb1aeee8

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/22/2024 4:37:20 PM UTC  (today)

File size:
15.4 MB (16,187,624 bytes)

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Digital Signature
Signed by:

Authority:
StartCom Ltd.

Valid from:
1/26/2016 3:50:08 PM

Valid to:
1/26/2018 3:50:08 PM

Subject:
CN=Xing Wang, O=Xing Wang, L=Shanghai, S=Shanghai, C=CN

Issuer:
CN=StartCom Class 2 Object CA, OU=StartCom Certification Authority, O=StartCom Ltd., C=IL

Serial number:
6361F7DDBE8B87C60D61D98A1CFFD4E3

File PE Metadata
Compilation timestamp:
4/10/2010 7:19:31 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
393216:UNCfuDRlDtBMz9jds5U6cJhwWV8cVCOdSnVe4reEXLCn5uRz6z29eEBl++zy:U42/BMzgCnJhLV9VC/V3PXLCYMGe2Je

Entry address:
0x354B

Entry point:
81, EC, D4, 02, 00, 00, 53, 55, 56, 57, 6A, 20, 33, ED, 5E, 89, 6C, 24, 18, C7, 44, 24, 10, D8, 84, 40, 00, 89, 6C, 24, 14, FF, 15, 30, 80, 40, 00, 68, 01, 80, 00, 00, FF, 15, B8, 80, 40, 00, 55, FF, 15, B0, 82, 40, 00, 6A, 08, A3, 98, 06, 47, 00, E8, 67, 27, 00, 00, 55, 68, B4, 02, 00, 00, A3, B0, 05, 47, 00, 8D, 44, 24, 38, 50, 55, 68, 1C, 86, 40, 00, FF, 15, 80, 81, 40, 00, 68, 04, 86, 40, 00, 68, A0, 85, 46, 00, E8, 35, 26, 00, 00, FF, 15, B4, 80, 40, 00, 50, BF, A0, 10, 4C, 00, 57, E8, 23, 26, 00, 00...
 
[+]

Entropy:
7.9996

Packer / compiler:
Nullsoft install system v2.x

Code size:
25 KB (25,600 bytes)

The file bitcomet_1.41_x86_setup.exe has been seen being distributed by the following 50 URLs.

http://filehippo.com/download/file/.../

http://filehippo.com/download/file/.../

http://www.slunecnice.cz/sw/bitcomet/stahnout/11345/.../?md5=X-ky2b0bzu5TZ1MwnrplwA&expires=1483812741

http://bitcomet.bg.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fm6SOpZ-hkps=

http://bitcomet.bg.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fmqeIpaCgkpU=

http://lb.cdn.m6web.fr/d/c/a/d0c03d7816bdd1bf3befc4fd5cdeeee0/57fe085d/soft/.../bitcomet_1-42_fr_12987_32.exe

http://bitcomet.bg.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fm6KIpKCml5Q=

https://dw.uptodown.com/dwn/7bi2Pnc7oD_zK9VUROwQvqmAjP92G9TgJ-vy2rE93DkoYyPyP2SgqGSF5j8TVIbPcDcSDpkO8T1x2hFFrNjWSQ2oXSS6ej3teMtvzkSZYJcwQe22Kteennrg2wr_NoC2/Fag3cA5AM5b8nKzwPS7xGpL5REy-ruo6n2NC_bYgvCR4qrzdo6OhLIGCcPwYHX9f9_zj7Ry54k3KQG7QU5j_l20_rl0VW_kAXwynT2mN7kYdED4GawBSGjMFtdHJ4ZH9/zn7ATmjDlHXqsuGJy8yPsisYtIkCkyx5Up5ymEJSelQnkjPisdHavAS2f83y9CTZH3U1DO57jvRc5zeLk_B0VPcNxdQmN76kM2PCvBe4Qes74B9ubrgB5wV7FaEz2mYp/.../

http://bitcomet.bg.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fm6SMnqWhlpc=

http://filehippo.com/it/download/file/.../

http://bitcomet.bg.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fm6SJoKSfkZ0=

http://filehippo.com/download/file/.../

http://bitcomet.sv.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fm5-HppyjkZ0=

https://www.slunecnice.cz/sw/bitcomet/stahnout/11345/.../?md5=cKAxlSwJCjvGTAFE5NHGkg&expires=1487363364

http://filehippo.com/download/file/.../

http://filehippo.com/download/file/.../

http://www.techspot.com/downloads/downloadnow/.../?evp=1c762c66efcf7145c947091d155f3a4a&file=1

https://dw.uptodown.com/dwn/pBD5H0YwwebxNlIfTNzrTmsk4kUWsilxnaWDZtfZ4wHExEbmu4T3sfNGgA7GOkD-aVeaM34b7PHoHAZQYWkVZ-HLfKOoK3ijGp69QZjhq_gy3Rd2CcC5DJplGV0HLIXt/FMkC71av2ryzUpmx53qtM0O7B7bO_DeRnHjxNTlW9Zs-TA3WnN1NRn6NEcOga6ZrPE1-Pg2p5gjaoCNr0r8fGoa-BwXofvWHvC4ViIsskZAq2WcXs2ywHEWjnYnV4XYp/VJ3zD7mCix-qffRA--6yTtuMb5ahE7N86sUF_nZPgpuf-Iyrp374OC4bkHGOVg0xw6HytkSHsk_reK3GpQGT2yUrx6Qqp8cUhq8uVhM7Q_ESBrsMdRaT_r7Phe0fj9nF/.../

http://bitcomet.bg.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fm6SOo6Kkl5Y=

http://bitcomet.bg.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fmqeLoaKilpc=

&onid=2196&oid=3001-2196_4-10296306&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=internet/file-sharing&topicbrcrm=&pid=15559186&mfgid=6257627&merid=6257627&ctype=dm&cval=NONE&devicetype=<!--esidesktop&pguid=3666314b00826277299653a8&viewguid=f-5XCGUYYRPZRszEoD8iSU0AxiDwQmJulYEl&destUrl=http://files.downloadnow-2.com/s/software/15/55/91/.../BitComet_1.42_x86_setup.exe

http://bitcomet.ru.softonic.com/start-download/.../a08ac3e79cd2798eec427a2e08dd1b0b

http://bitcomet.th.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fm6OQpqWkkZU=

http://filehippo.com/download/file/.../

http://filehippo.com/download/file/.../

http://filehippo.com/download/file/.../

http://filehippo.com/download/file/.../

http://bitcomet.bg.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fm6SIpKKhk50=

http://bitcomet.ro.softonic.com/.../3tjQyeLV3cjDp-Hw3sCixsiGa5-fm6GKnqSnlJk=

http://dw.uptodown.com/dwn/0hgvP5Q7hyItJQIX4Y4xBU7Rligpdwz5vLVjcfTm97C221pfQk_5qCFiu0IQ32ubLfA0_ySgftxJE4GpoFMspb-6G81-jpMbkZKuO5ziaaWVaJO2KHAznbOn8BpH7r0a/KQa5DR6kpIzI-842-vl_CuTfSm7HjN0xb4vg86eX5ns5Lg-ni_LzDuX2Q2JMMYSZtS-U9j4B8toSLUjLJwRy8g0gfU8kAuzZ3GAwtIDxQ4LrNIBEAlbadR0kvuTBkev9/Pkphv0_xauO8QW7UUxTIzKNoPqkGAMEFkYUTZZpmrmHBk0MCvFLk83Rp24twXw27s5JsecBH8lPk4fi8bJwnfwczK81Nu6a8rMMgT3I9mZcmH7AGUgSO3ig0uZyFObzs/.../

Latest 30 of 846 download URLs

Scan bitcomet_1.41_x86_setup.exe - Powered by Reason Core Security