» bvssol.exe
Overview
Analysis
File Details
Downloads (6)

bvssol.exe

BVS Solitaire Collection

BVS Development Corporation

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from dw.uptodown.com and multiple other hosts.

File name:

bvssol.exe

Publisher:

BVS Development Corporation (signed by BVS Development Corporation)

Product:

BVS Solitaire Collection

Description:

BVS Solitaire Collection Setup

Version:

7.8

MD5:

c0e2894b6b79ff6ee430aa61b8cb48e9

SHA-1:

816e5a7abebf8b8dbe55534761f56ac243608ef1

SHA-256:

3b4ba7ed0ec3d7b8304906db2867ee77b5ceeaa55ef0e3a8eaa726d552f274d0

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

12/27/2024 1:17:04 AM UTC (today)

File size:

8.3 MB (8,693,024 bytes)

Product version:

7.8

File type:

Executable application (Win32 EXE)

Installer:

Inno Setup

Common path:

C:\users\{user}\downloads\bvssol.exe

Digital Signature

Signed by:

BVS Development Corporation

Authority:

thawte, Inc.

Valid from:

7/6/2016 3:00:00 AM

Valid to:

8/23/2017 2:59:59 AM

Subject:

CN=BVS Development Corporation, O=BVS Development Corporation, L=Glen Allen, S=Virginia, C=US

Issuer:

CN=thawte SHA256 Code Signing CA, O="thawte, Inc.", C=US

Serial number:

5D95E75712805078FE764684CB7F0DE5

File PE Metadata

Compilation timestamp:

6/20/1992 1:22:17 AM

OS version:

1.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

196608:X+epdFu+Yiv8NmOGogBnBWGZ1bzr7VM7oh80ubqll2eYAf:X+epdA+YivcmOwhjVjhuOllxT

Entry address:

0xAA98

Entry point:

55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 2E, 86, FF, FF, E8, 35, 98, FF, FF, E8, 9C, 9B, FF, FF, E8, B7, 9F, FF, FF, E8, 56, BF, FF, FF, E8, ED, E8, FF, FF, E8, 54, EA, FF, FF, 33, C0, 55, 68, 69, B1, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 32, B1, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, D0, 40, 00, E8, 26, F5, FF, FF, E8, 11, F1, FF, FF, 80, 3D, 34, C2, 40, 00, 00, 74, 0C, E8, 23, F6, FF, FF, 33, C0, E8, 24, 93, FF, FF, 8D, 55, F0, 33, C0, E8, 66, C5, FF, FF, 8B, 55... 
[+]

Entropy:

7.9990

Packer / compiler:

Inno Setup v5.x - Installer Maker

Code size:

40.5 KB (41,472 bytes)

The file bvssol.exe has been seen being distributed by the following 6 URLs.

https://dw.uptodown.com/dwn/UYpI47a1_-BAveIGSoUBqg9E1N_dy5bH6FqGZS54BAp5nETAE1gx5Djtm8n-aSGwcKgxjXE7GX_nYsgAqc51ozgp5ifuXk19n1nOKLLMpn306h1CTpDgBieWHgJ6lP9J/R7f-PBZVm1q7EP1au2en-16lApywVD4rWYGIBn03m_qbSKdP1ntHQKRD-PkvST_0GTrEqfJ3V1q0K3YIh1CtHg0TKYyWQ_OiO5DBn3lZDAb8-sdWds1ElqzCnjjSvDMf/h5vrllB3jZrBM-5v8vTlYiPNgRdWJBC4QwQfPCEYigxAalDu59Ll9k7oixgr-ukHfMaQ137ASw3br813AVkzhkb0Ilu3-mRRaJ2Ro68caPPc9L1tuFUIEe50eUb7dx_C/.../

http://dw.uptodown.com/dwn/Cc4LslEShANvt0YZ1hs757lNFuUgnUbdREsCIARX0_jFYgj8VCzd4OCGUTptmU3zJJFUGYZ8uQRz2TTlUJL-47B2HXmJzdjwlzuTXqBRLGWen41NGsiArzP93wsyrlao/7ebqfLyM3E_23YdplsyE1dvDfY2B_aXnRR-HjiZjymmgKqWDlC3G2WdTUQbNeh5tbjYfEeWO7jj-6IVOR8dA6Yn6m4aoQCMrgrMC9srr0xeB0x8QOJqtEuTIcWcpzGm5/dz2kR4Evxmeo46l-V-jQUAGxiENXQDIxsik4cwzWgEfcB6CRB2F5D70Yd4O3yUiMALTGZI036Sm976Q3g9ffmg-8hJBkllTxFyWzaaiHjZFDL7Ka2aS8WHVpSxvjCxf1/.../

http://dw.uptodown.com/dwn/Z0Yyppv1Kc6ggrr6iJ03QmfYxYC1dn5uaxovbXnovHnfl7M0eAOZdGz5WCOtqD8bwX4lqHr8sqM2zbzpl9w31JrQjqllG3DvsbG306E7B-1VXzsTxdHCF2wUV55Yl4sD/EcRudytX9WGU1ZypqZzHokLnWYdXubJi63iTcUiLdRPVA9MtRCLh5_k2IYpEhYnJSF9Yc-YRweN7yngVtloh5jnujo1cWO2QhLW9LmJVn5P8vOn7zeCAW1QC-DikedyE/-QJEd1DwnT-WH-XbhWNqwJ8vRmjYrLoEivIhVOx-invJrXQ6gnJa3xhlBhjjvqiIv2DJxUZwi02Ogrgul5j3Z7yrUEX3RlmlSTqkY6RVE7rkdelBcwcVTGWnYDfKGnn_/.../

https://www.regnow.com/softsell/visitor.cgi?affiliate=45065&action=site&vendor=1265&ref=http://www.bvssolitaire.com/.../bvssol.exe

http://dw.uptodown.com/dwn/Auochh4bfUjC__DOxSqctoIvKuna17QsQ6f6JeZlWZAXLzYSxt4atOClj9C0CkutHYkc0Uf_TfIxyFanE1Cv3qA4RnuMnQQf0liJewHjBC8BgDmnJko0BH6m65rcD8DG/6LuVYsa6Pd_k4J9M6VJC_CC0EDJ8CIN8ZpNXYaKnLPbd3xdieOhNQ1I-TLXaR2elKs5NGNrgkCqjxStzT7hhkpfeiC979ckbqbWhpJ8gwIeBEIO3UJglSiWibQz1Pk17/MXS4mzme4SKYNpVxZWb_FQZpCEYJovysH6Cs-sOBZdHLDiPrGb52TcOTjyTxyu8KhmgTuM_QUi69k-jQOc5Cxv8cPY6rp3DJlhzNsJVmsH_LpXy7ZvB-MC-xa35s8KKP/.../

http://dw11.uptodown.com/dwn/lBJwErWNbDK4iPNhy92QtXgyZ26U4wYhXAbOQoqUJBekAjPoowZ4yvnNFjmTMuq11Fr2C0RFqHP1KAOktu_gcE8A9fQQS3YM7gRDB2mWUtKZ0jbqrC5Uaj0aTS0ZDuef/hdLUcAZjJeBmM_41NIe6QSUlfjGTGGGpiYzNhIoxJvl8IW8tQa56JbS5rWwC_OfWTKCodudX_9A0zFhmxFl6QpiCt3_xIfVngQ6gaUIg4hTY8x_TqO_6deRKLYsmQgxm/IwbdI8M_9tb9ZR4d4yOmK3vBE-YxbY0blrUnxT3iAATA4f8VTnmJX5rgQ9eXJqaCa6cMSXzDLU5D9PdENVBGlD9CuUon99Wv0Gdygl5-9Pt_td2KvgpHDL-1cYc3cZLy/.../bvs-solitaire-collection-7-8.exe

Scan bvssol.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.