facebookmessengersetup_v122050.exe

Setup

Facebook, Inc.

This is a setup and installation application. The file has been seen being downloaded from download.informer.com and multiple other hosts.
Publisher:
Facebook Inc.  (signed by Facebook, Inc.)

Product:
Setup

Version:
1.2.205.0

MD5:
85deead8f3ad064bf744afa79fcbda6a

SHA-1:
e871ee26f079ee50953a48d54ee5fb2df47c09ff

SHA-256:
af8145a8a5f8958b574faa9b43c2a5f41db5dc37c292979b80e4c31bd157c90e

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
12/24/2024 7:12:34 PM UTC  (today)

Scan engine
Detection
Engine version

Malwarebytes
Trojan.Agent
v2013.12.10.09

XVirus List
Win.Detected
2.3.31

File size:
489.5 KB (501,240 bytes)

Product version:
1.2.205.0

Copyright:
Copyright 2011 Facebook, Inc.

Original file name:
Setup

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\facebookmessengersetup_v122050.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
6/18/2012 8:00:00 PM

Valid to:
6/19/2015 7:59:59 PM

Subject:
CN="Facebook, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Facebook, Inc.", L=Menlo Park, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
27878083400DB86D07DBAB6B43FBA49C

File PE Metadata
Compilation timestamp:
7/2/2012 5:06:59 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:zqPPUO8GsWlkaEEsev50ngJOEi6U/9lAArgD+V:uG47XvbEEK

Entry address:
0x1000

Entry point:
55, 8B, EC, 83, EC, 44, 53, 56, 57, FF, 15, 04, 50, 40, 00, 8B, F0, 8A, 06, 6A, 20, 5B, 3C, 22, 74, 0F, 3A, C3, 76, 1D, 46, 38, 1E, 77, FB, EB, 16, 3C, 22, 74, 11, 46, 8A, 06, 84, C0, 75, F5, 3C, 22, 75, 07, EB, 04, 3A, C3, 77, 07, 46, 8A, 06, 84, C0, 75, F5, 83, 65, E8, 00, 8D, 45, BC, 50, FF, 15, 08, 50, 40, 00, 68, 80, 00, 00, 00, 6A, 08, 89, 1D, D4, 61, 40, 00, FF, 15, 18, 50, 40, 00, 50, FF, 15, 14, 50, 40, 00, A3, D0, 61, 40, 00, B8, 00, 60, 40, 00, BF, 14, 60, 40, 00, 8B, D8, 3B, C7, 73, 0F, 8B, 03...
 
[+]

Entropy:
7.9262

Developed / compiled with:
Microsoft Visual C++

Code size:
13.5 KB (13,824 bytes)

The file facebookmessengersetup_v122050.exe has been discovered within the following program.

Internet Download Manager  by Tonec Inc.
Internet Download Manager (also called IDM) is a shareware download manager. It is only available for the Microsoft Windows operating system.
www.internetdownloadmanager.com
30% remove it
 
Powered by Should I Remove It?

The file facebookmessengersetup_v122050.exe has been seen being distributed by the following 50 URLs.

http://download.informer.com/.../facebookmessengersetup_v1.2.205.0.exe

http://www.filehorse.com/download/file/.../

http://download1399.mediafire.com/66nzz5fxljvg/.../FacebookMessengerSetup_v1-2-205-0.exe

http://www.filehorse.com/download/file/.../

http://www.filehorse.com/download/file/.../

http://cdn.portalprogramas-download.com/d/.../facebook-messenger-windows

http://www.filepuma.com/file/1482219126c2709/facebook_messenger_2.1.4814.0/.../0/

http://www.filehorse.com/download/file/.../

http://www.filehorse.com/download/file/.../

http://www.filehorse.com/download/file/.../

http://www.filehorse.com/download/file/.../

http://www.filehorse.com/download/file/.../

http://download2165.mediafire.com/mwe0ja7xtqag/.../FacebookMessengerSetup_v1-2-205-0.exe

http://qpdownload.com/data/facebook-messenger/.../facebookmessenger_setup.exe

http://download.pcgameshardware.de/asset/binaries/2013/.../FacebookMessengerSetup.exe

http://www.filehorse.com/download/file/.../

http://www.filehorse.com/download/file/.../

http://download.informer.com/.../facebookmessengersetup_v1.2.205.0.exe

http://ftp-stahuj.centrum.cz/dl/b4a5bc82224af480e1d49e3b5779d8ea/581635fb/stahuj/download/software/secured/f/facebook-messenger/.../FacebookMessengerSetup_v1.2.205.0.exe

http://www.filehorse.com/download/file/.../

http://www.filehorse.com/download/file/.../

http://stiahnut.sk/download/instant-messengers-chat-a-irc/facebook-messenger/a7atjlhdj0tm9irnmmu3jekqf2/.../facebook-messenger_2.1.4651.0.exe

http://www.filehorse.com/download/file/.../

http://www.filehorse.com/download/file/.../

http://dpcdn-s10x.pl/.../FacebookMessengerSetup_v1.2.205.0.exe

http://www.filehorse.com/download/file/.../

http://www.filehorse.com/download/file/.../

http://dpcdn-s11.pl/.../FacebookMessengerSetup_v1.2.205.0.exe

http://download.microsoft.com/download/1/0/2/.../FileFormatConverters.exe

http://www.filehorse.com/download/file/.../

Latest 30 of 210 download URLs

Scan facebookmessengersetup_v122050.exe - Powered by Reason Core Security