cometbird-3.6.16.win32.en-us.20110325162526.installer.exe

CometBird

CometNetwork

This is a self-extracting archive and installer. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.
Publisher:
CometNetwork

Product:
CometBird

Version:
4.42

MD5:
50b6abe0f36802345e0daed2333df528

SHA-1:
baf6e6041977c9874fd4aca7315de6caff8f70cb

SHA-256:
57526ff51da4341281ac0b1f07eafeab15f014313baefdf1e0e7c9dcd84be753

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/23/2024 10:30:51 AM UTC  (today)

Scan engine
Detection
Engine version

ViRobot
Trojan.Win32.Downloader.45056.QG
2011.4.7.4223

File size:
8.6 MB (9,006,386 bytes)

Product version:
4.42

Copyright:
CometNetwork

Original file name:
7zS.sfx.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\cometbird-3.6.16.win32.en-us.20110325162526.installer.exe

File PE Metadata
Compilation timestamp:
8/16/2006 12:27:50 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
196608:UrYOUw1vPCHnX8Ub6TS/EwBlYdqr3DwEzxfSKVhoS7ZrIza4HvLev:UrYOU0PTsKIEklsS3UEfSG7FrCayvLM

Entry address:
0x21D00

Entry point:
60, BE, 00, 80, 41, 00, 8D, BE, 00, 90, FE, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, EF, 75, 09, 8B, 1E, 83, EE, FC, 11, DB, 73, E4, 31, C9, 83, E8, 03, 72, 0D, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 74, 89, C5, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, 75, 20, 41, 01, DB, 75...
 
[+]

Packer / compiler:
UPX 2.90LZMA]

Code size:
40 KB (40,960 bytes)

The file cometbird-3.6.16.win32.en-us.20110325162526.installer.exe has been seen being distributed by the following 24 URLs.

http://gsf-cf.softonic.com/baf/6e6/.../file?SD_used=0&channel=WEB&fdh=no&id_file=83960&instance=softonic_en&type=PROGRAM&Expires=1458108956&Signature=EJvYcZsy0BHP~eHWvwQplrjttGE2QaPEsBdm64pxF-Rif~WN8p2QZh3zrrZcqIoTPOVL7PsvXnhK1SPIeOKUIWgxb9suQ0AwtKgA9VSsznJ-8QPqn6-mAak1NRD2rbs2b3JZPIC~GIRcvKLZjBRVV1GjbV24ZaTCeiUQogyKqtw_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=CometBird_3.6.16_en-US_setup.exe

http://gsf-cf.softonic.com/baf/6e6/.../file?SD_used=0&channel=WEB&fdh=no&id_file=83960&instance=softonic_en&type=PROGRAM&Expires=1459912073&Signature=Y~U~wWuOM7Z96Ipt-uqo3S8jD-vkA3kEl7PeaI-UrYw3qJYxeTeX3jK8puFGF6dg5iygIVfXsCG6T3ANav6GvRa~vfe81aT4Ar2VGW2gmmEz5GDkfTU2BDsLZtL7vSiyhm8kkDhNHl5Xw9CcXce5omxWMPzs-ZHX8Xqncm7cWOA_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=CometBird_3.6.16_en-US_setup.exe

http://gsf-cf.softonic.com/baf/6e6/.../file?SD_used=0&channel=WEB&fdh=no&id_file=83960&instance=softonic_en&type=PROGRAM&Expires=1479709229&Signature=NO8VUk583LUBp9gmUgqeJgK6r2bd9Nb3U-LOydEImF0bRTcKCKwY8vdpi-4g0Fjj3lS5ZDj9YN35K3NsaFbfYDfrGTCpLcjKvjvL-b6IPE6G3BqRAOiwVwgqVTtsEilNUuSUhSKnWjhZ2YAQSc-rCrW4TAhqptglsYjucR5TveY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=CometBird_3.6.16_en-US_setup.exe

http://www.bitsfarmclean.com/Tp1Kei01Ms7z3XxKQw8RZX1O0oqztwms8VJinx9gpCfDHvg2n5Z6jj5DAX3b7WyTNvfQUNMZuJgsXjS0646cv_bHjmvKfXRb4jMYhE0OHAUR6_JGRI_aj_BdyGphJQW1ewaKzJc bdOop9s2Q9CoEgzOf06UpIZRhH2bzgdMuzQznBpfnXdmBhW5eotr5 sBtybCC75 -G1AAAGRwXmuLOpGIUADABhy4BJStgw5ow8bY D4Rqv1975dAv3BY162ei1JkCG3urTxh8zf6datOJHq5SPND bGPVQT0bZZtAhqVMLzIExEzGA==

http://gsf-cf.softonic.com/baf/6e6/.../file?SD_used=0&channel=WEB&fdh=no&id_file=83960&instance=softonic_en&type=PROGRAM&Expires=1460623494&Signature=eHrKr9JkRysTBydCJ5rPi6VOSOVk7Kye0vJyY6XLk1sKNu8AMn3Cf1-WF8eIfHRPYjG1OFIFYiQVjsXhWpJzwZ9nSYo9MeOVzvjDvReKBRoYJY6REC~FJLpD2D1qDhH2OVz4j3SwUfXdJIqxkGlOOuIn7xsQcVdUl06R3~dID8k_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=CometBird_3.6.16_en-US_setup.exe

http://gsf-cf.softonic.com/baf/6e6/.../file?SD_used=0&channel=WEB&fdh=no&id_file=83960&instance=softonic_en&type=PROGRAM&Expires=1477603241&Signature=U~CV8BApdN6O5R3L3sFplQMxQHfsHfQCS~ycaQk9k92vcpHkatgmsUYw5mF306szpjPTj9D~IkFghBOhXoh5IRQUSSicwJMDeZBxnbGXIQ28vG~-wn3pF9hu2XGVen0XoyHBDh0ak4RCZwumBe1wHk7Epj8u3gHu5HPYIulX6Wc_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=CometBird_3.6.16_en-US_setup.exe

http://gsf-cf.softonic.com/baf/6e6/.../file?SD_used=0&channel=WEB&fdh=no&id_file=83960&instance=softonic_en&type=PROGRAM&Expires=1470589801&Signature=BxtmA4sXFTShi4jwNWubsciqOqD~ydosILg~35VOq9EjWxsiZYsLnBfTtkyVhmOnT-JN6EBRbFYAjWNWfwtdy5TxSIp9dC6teH2VsOSEmPLK2ZUaAtDUOua78HVcorRWNKwfV-i-6iK0JglqBRct6OTpVouqZ7dukBijccA4e78_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=CometBird_3.6.16_en-US_setup.exe

http://gsf-cf.softonic.com/baf/6e6/.../file?SD_used=0&channel=WEB&fdh=no&id_file=83960&instance=softonic_en&type=PROGRAM&Expires=1476943380&Signature=LVwCBNrdQq00QEngNO9WL0zy8Drg9ZOqePJestagkzhLhlwyW16akg~C~HOdy3qKmNWvvD4dY5XZUbVkzkR7cfGyxLtVMGvcJ5dOP-BhUpb7JBDFCc5cbypJy4-abfQpkgfg9qAvPAuzuaNhQnBYhP3eiS~BtcDXW1MmQgcAxuQ_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=CometBird_3.6.16_en-US_setup.exe

http://gsf-cf.softonic.com/baf/6e6/.../file?SD_used=0&channel=WEB&fdh=no&id_file=83960&instance=softonic_en&type=PROGRAM&Expires=1430341478&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&Signature=agN~gs4Ni48ylPt-qTpWoLaLrykHQUNRiiMZUgrIpGWvQsT1KJ-IqerizOikwvS2uPzrCFwKF2U5p3Oj7lfv29MEjz6sdA6HDztJ4W9I-kfAOyWph4eT24sgt7Qf4yZNpTGh44FnriIHxb2Nig27SaSCcUCWE23imkaRoEn6PLE_&filename=CometBird_3.6.16_en-US_setup.exe

http://gsf-cf.softonic.com/baf/6e6/.../file?SD_used=0&channel=WEB&fdh=no&id_file=83960&instance=softonic_en&type=PROGRAM&Expires=1462658538&Signature=af2Yy-c9FnGA0lqmLLDQYupQhwKAR75-R2Q4P8~nsGcK04excv8gDI0jWwSge30-WhuQN0q18phGxQTVdmrjBlptjAHTy2aTF1zkR~ssCStIfd1ZmprvANtaGoRkUvGo2KBE~HXmqS6B~OCPHwVkKm4dzVZjfrFpq4pHv5~7rNY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=CometBird_3.6.16_en-US_setup.exe

http://gsf-cf.softonic.com/baf/6e6/.../file?SD_used=0&channel=WEB&fdh=no&id_file=83960&instance=softonic_en&type=PROGRAM&Expires=1458862373&Signature=KeatuIvpMGfoOlhWly8xHR6v6zERseD5fEl2DYOON55YPwZxqWPYqYkzHISNTFKN5XHauNXnjJuxYsbEtc9CDSHyRsdU2petQA6HW2u8p06bSUljyRj2tRjwQc3fHJeHue36sdAVNUzA5Ntcyc39UCxCiTUryuGxD9Yre1IYcIo_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=CometBird_3.6.16_en-US_setup.exe