» breakaway_setup_1.40.02.exe
Overview
Analysis
File Details

breakaway_setup_1.40.02.exe

Claesson Edwards Audio LLC

The executable breakaway_setup_1.40.02.exe has been detected as malware by 8 anti-virus scanners. The program is a setup application that uses the Nullsoft Scriptable Install System installer.

File name:

Publisher:

Claesson Edwards Audio LLC (signed and verified)

MD5:

5034419a4d6bc654d1765f4893351c22

SHA-1:

c30f5d4771160c93a4061ca5c7544062f3e91598

SHA-256:

1c84a5180f5b93ce5036a946e1168a7a500d66b3a932530d5592748e886fcf19

Scanner detections:

8 / 68

Status:

Malware

Analysis date:

1/10/2025 6:48:54 PM UTC (today)

Scan engine

Detection

Engine version

avast!

Win32:Vitro

160518-2

AVG

Win32/Virut

2015.0.4568

Dr.Web

Win32.Virut.56

9.0.1.05190

ESET NOD32

Win32/Virut.NBP virus

7.0.302.0

F-Prot

W32/Virut.E.gen

4.6.5.141

Microsoft Security Essentials

Threat.Undefined

1.219.2347.0

Norman

Win32.Virtob.Gen.12

19.05.2016 05:17:13

VIPRE Antivirus

Threat.4737366

48878

File size:

4.6 MB (4,867,072 bytes)

File type:

Executable application (Win32 EXE)

Installer:

Nullsoft Scriptable Install System

Common path:

C:\Documents and Settings\{user}\My documents\downloads\breakaway_setup_1.40.02.exe

Digital Signature

Signed by:

Claesson Edwards Audio LLC

Authority:

Symantec Corporation

Valid from:

2/17/2016 2:00:00 AM

Valid to:

2/17/2017 1:59:59 AM

Subject:

CN=Claesson Edwards Audio LLC, O=Claesson Edwards Audio LLC, L=Antioch, S=California, C=US

Issuer:

CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:

18CD84B75345F80E71C411E66098F7EA

File PE Metadata

Compilation timestamp:

11/13/1997 2:16:24 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

98304:4fYgUDKZBcAs7LYa1bxNdp88Pb+hYGNk74nXSvoPEcYpI3I4:4fY/DKZB78LHbxNdqYb+DS74XSvyE1qX

Entry address:

0x4E07D7

Entry point:

83, 3C, 24, FE, 8A, D2, 77, FE, 8D, 64, 24, CC, 60, 83, EC, DC, 8D, 4D, E2, E8, 0A, FD, FF, FF, 4B, F6, D5, 80, DC, E0, 66, 4B, F7, D7, 90, 75, F9, 8D, 7D, 85, 4F, 48, FF, 73, 3C, 59, 81, E9, FD, FF, FF, 7F, 73, E2, 90, 87, D6, FC, 81, D9, E6, 13, 00, 00, 86, F2, 71, D4, 09, F7, 24, 14, FF, B4, 19, E4, 13, 00, 80, 83, C4, 04, 66, 81, 44, 24, FC, B0, BA, 75, BD, F9, 8A, F3, 90, 68, BB, AC, 28, 4A, E8, 0A, FE, FF, FF, 89, 74, 24, 44, 83, E9, A2, 81, FF, A7, 3C, 3F, C5, E8, 86, FE, FF, FF, 90, F7, D1, F6, D1... 
[+]

Code size:

23.5 KB (24,064 bytes)

Remove breakaway_setup_1.40.02.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.