ccsetup300.exe

CCleaner

Piriform Ltd

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. This is installed with multiple programs including CCleaner. The file has been seen being downloaded from www.farrapo.com.br and multiple other hosts.
Publisher:
Piriform Ltd  (signed and verified)

Product:
CCleaner

Description:
CCleaner Installer

Version:
2.0.0.0

MD5:
87b2147431fe94f4746bc468cc1ac5f5

SHA-1:
eb37c97341d3e5868f407c3bbc4988b7500c583f

SHA-256:
48aa590ca2a5522dc4888bdac6683877f49396992cef47c245be6700174b3cc7

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 6:29:59 PM UTC  (today)

File size:
2.7 MB (2,810,112 bytes)

Copyright:
©2005-2010 Piriform Ltd

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\ccsetup300.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
7/28/2009 1:00:00 AM

Valid to:
8/24/2011 12:59:59 AM

Subject:
CN=Piriform Ltd, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Piriform Ltd, L=London, S=London, C=GB

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2F5A8C1E932EDBFD4893916FC880DFE7

File PE Metadata
Compilation timestamp:
12/5/2009 10:50:46 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
49152:ykHx8VFyFGL+I5L2jlVjHPb8hM1kxbqPvrCCj5blD9p/+s5vTrmUlSamSFzY5M3:Px/Ga9lRvbUCPvrCCdlxJx5vTSQRH

Entry address:
0x323C

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 30, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 58, 3F, 42, 00, E8, 09, 2C, 00, 00, A3, A4, 3E, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 58, F4, 41, 00, FF, 15, 58, 71, 40, 00, 68, B8, 91, 40, 00, 68, A0, 36, 42, 00, E8, BC, 28, 00, 00, FF, 15, B0, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, AA, 28, 00, 00...
 
[+]

Entropy:
7.9916

Packer / compiler:
Nullsoft install system v2.x

Code size:
23 KB (23,552 bytes)

The file ccsetup300.exe has been discovered within the following programs.

Atheros WLAN Client  by Atheros
About 6% of users remove it
BitTorrent  by BitTorrent Inc.
BitTorrent is a desktop application that allows you to work with torrent files.BitTorrent allows you to download files available as torrents, search torrent sites for music, videos, books, software and other free or public domain material.
www.bittorrent.com
7% remove it
CCleaner  by Piriform
CCleaner developed by Piriform, is a utility program used to clean potentially unwanted files and invalid Windows Registry entries from a computer.
www.piriform.com/ccleaner
3% remove it
MFC-7840W  by Brother Industries, Ltd.
MFC-7840W driver package contains the required software for connecting the Brother monochrome laser printer to the user's PC.
www.brother.com
5% remove it
 
Powered by Should I Remove It?

The file ccsetup300.exe has been seen being distributed by the following 3 URLs.

Scan ccsetup300.exe - Powered by Reason Core Security