» google_chrome.exe
Overview
Analysis
File Details
Downloads (772)

google_chrome.exe

Internet

Silver Setup (Fried Cookie Ltd.)

The Fried Cookie installer utilizes the InstallCore download manager which may bundle additional offers for various ad-supported toolbars, extensions and utilities. The application google_chrome.exe, “Internet Setup ” by Silver Setup (Fried Cookie) has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the installCore installer. The setup program uses the InstallCore engine which may bundle additional software offers including toolbars and browser extensions. The installer is marketed through download protals and search ads as Google's Chrome web browser but will also install additional software offers which include adware, PUPs and browser toolbars.

File name:

google_chrome.exe

Publisher:

Silver Setup (Fried Cookie Ltd.) (signed and verified)

Product:

Internet

Description:

Internet Setup

Version:

1.2.3.8

MD5:

d9845fcaf84f3f870d251b5b900df337

SHA-1:

03ec2db7e9ed2c9650fa26ff5a085d8318b4edd5

SHA-256:

9924c542c759efe81a7448937d844fd071381609f99bf2caf388079479e2f0e2

Scanner detections:

1 / 68

Status:

Adware

Explanation:

Uses the InstallCore download manager to install additional potentially unwanted software which may include extensions such as DealPly and various toolbars.

Description:

This 'download manager' is also considered bundleware, a utility designed to download software (possibly legitimate or opensource) and bundle it with a number of optional offers including ad-supported utilities, toolbars, shopping comparison tools and browser extensions.

Analysis date:

11/2/2024 4:25:59 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.InstallCore.Installer.Installer (M)

16.2.4.10

File size:

963.4 KB (986,472 bytes)

Product version:

3.3

File type:

Executable application (Win32 EXE)

Bundler/Installer:

installCore (using Inno Setup)

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\google_chrome.exe

Digital Signature

Signed by:

Silver Setup (Fried Cookie Ltd.)

Authority:

GlobalSign nv-sa

Valid from:

12/16/2015 6:43:58 PM

Valid to:

7/24/2016 8:03:54 PM

Subject:

CN=Silver Setup (Fried Cookie Ltd.), O=Silver Setup (Fried Cookie Ltd.), L=Tel Aviv, C=IL

Issuer:

CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:

112140334915ED026A82D6160FD4F0BAD4D4

File PE Metadata

Compilation timestamp:

6/20/1992 3:52:17 AM

OS version:

1.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

24576:gevQdNB1+F3tA5IWFJVxYRDRGkvUM0R/JZNs3:gRPB1+dtAJYRDRrvBC/JZw

Entry address:

0xA5F8

Entry point:

55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, CE, 8A, FF, FF, E8, D5, 9C, FF, FF, E8, 64, 9F, FF, FF, E8, 07, A0, FF, FF, E8, A6, BF, FF, FF, E8, 11, E9, FF, FF, E8, 78, EA, FF, FF, 33, C0, 55, 68, C9, AC, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 92, AC, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 26, F5, FF, FF, E8, 11, F1, FF, FF, 80, 3D, 34, B2, 40, 00, 00, 74, 0C, E8, 23, F6, FF, FF, 33, C0, E8, C4, 97, FF, FF, 8D, 55, F0, 33, C0, E8, B6, C5, FF, FF, 8B, 55... 
[+]

Entropy:

7.9302

Packer / compiler:

Inno Setup v5.x - Installer Maker

Code size:

39.5 KB (40,448 bytes)

The file google_chrome.exe has been seen being distributed by the following 50 URLs.

http://www.newsignsuniverse.com/.../5nmathj8D6&downloadAs=Google Chrome.exe

http://www.repositorycurrentflash.com/c?x=cdGvMy/hX6dKPxo/9YMAOESfjRupR7m8wokCvLIChQk=&c=uUv0UQ4id0eCvUFQQzQrZPcrx0LvN1AEV/clEOnAtA6X8Yxh8tM ObRVp3w/.../rqJzTQMN lSAEXVyTuaXRMicPQn&downloadAs=Google Chrome.exe

http://www.downloadbundledownload.com/c?x=IZS //n W8uPp f5ZrGplB5O6i575Z6QZO1VUmicNMI=&c=Xw6xX2ZGTymw0gU463enFUzSG acReMJ3qClLECs0VZaB6Lxh59zSAvaOtfxAeFGiy1o2i66w T30MfQMl4iMVw vof4mS r9GT7pecw9Br0u3q7nW1ZFJ1y4LhIFqS1&downloadAs=Google Chrome.exe

http://www.vaultsapptown.com/c?x=/TZy7DjrbcAAlIkBmt529V7QlBE6P2BRYXfNfXnMwew=&c=ETMzaQK0jqhA7Co3gVp/ylaQKvAE7tDfe67Rez5jNki3jkh8x60sb/iJN5etLO 2GzdyUOxZQV7kn50wun3lnycma/zsVhl4ZcV/doStGWhFSJOV/.../RC8dEQUOF&downloadAs=Google Chrome.exe

http://www.vaultsapptown.com/c?x=k8Ll94szSReJcIWXSMJAUJzpDtSfajtUVv66G1TLHtE=&c=ECi1rXqiuyGDFFtomW9LIUNO9OwvA/.../DGACq2WGLtAAvYjsmFt71TYIkGDt1 fwsX83a56wHfCip54L7VnGyCQfHefGHV07EA&downloadAs=Google Chrome.exe

http://www.vaultsapptown.com/c?x=FUs/.../402YCKm4Pcye4oqWDkamTzAvwvAwlR&downloadAs=Google Chrome.exe

http://www.repositoryhostinggrab.com/c?x=meW SMCAeFD6H/hrq0uJ TcW1A2UZky85jIUO/eW2zc=&c=f8AKzMJ5MGDy4DtJXdLImbaVA9CJHU2SXmh67 VOf4dh57DU1u5tCpdimk5sDTGyv1/0UMJmPR6Z5GzoMBe8jlDZNrfjvnRPGzfidlGL7/.../t&downloadAs=Google Chrome.exe

http://www.repositoryheartbundle.com/c?x=/BY8 Nis RpS O5zipLqM6 A0Tu10 6nNph/Wk4Br8Y=&c=peXY8yq/.../isRhvAf48&downloadAs=Google Chrome.exe

http://www.vaultsapptown.com/c?x=T602BT23lJN63MQbwlklty/.../vVeK8lZ2BYZwCc64g1tTUcCbR O&downloadAs=Google Chrome.exe

http://www.repositoryheartbundle.com/c?x=LrU/WwLdhT/5NDpBZjeRwqK5ilYIOcxIrf3OJ4BzcFA=&c=2Hf68fdCXF65SltRXGZSoVbJSqGqA4sNeQs8w8kjV5a6Vd1xrwW/Uvv77CPrTpgoiw6rtZoorUyQjjATWChFk4Q//.../iQuwtgLIey BKiEyffJFqkXFhs3c&downloadAs=Google Chrome.exe

http://www.applicationbytecenter.com/c?x=NdH7V4Vawgt5dOnU4jaeHwO010nqL8cTqjVQgDC51s4=&c=uq/GhrgLDkqJ3Yw7BtGKQ/VYFqdYvFSNYXiiBf2sAtHuqmuJU8G6dABZApzcwNFWeRiESkdpbOrJyS/.../9fXMxT2RU5QJ7ACuTg8btyO4asPtohq&downloadAs=Google Chrome.exe

http://www.hostheadflash.com/c?x= 5SAClSNrzQ1D0y5mgQYtndfyCPekrSV0KLi uPz8dY=&c=zsbMp61lOCdAnEkdDium751MJzpJJqoqgWLvZSTZkyA80qUTzODEExOThUAx gWj6QiGvUaxxqCrjvlZ4F2SwjXsrqlIwusX/.../VzZfV0fAMC8VVmf6S &downloadAs=Google Chrome.exe

http://www.applicationbytecenter.com/c?x=hu8Txg0wR/OPEYfOQiTPGiMN1HJ7Z5uIPxJ5g0PoeAg=&c=AsfR9hKfs4CmwbQKXDHEaxRWNjQcOKBxDgXmGVeh8nK9IKSeQwtkUtODtuUHyicnog0MVVHmTDB2M x3LcjOHFpz bSyUymJl/.../ncGNf6BG&downloadAs=Google Chrome.exe

http://www.repositoryheartbundle.com/.../ch3hXgypEgIGp9aUtNICib6B 05NXgTBUrFd2vFv008MbsAabrsY9nPNttgxl 674HAfjBvNxL30xfpmEPMCGnVD2JZah&downloadAs=Google Chrome.exe

http://www.newsignsuniverse.com/c?x=eX8ZmnEwdNDVH o/3uyi2U/.../kEbj2hWZvuvd65pzdIYjqIwverUetGLzwbQKe41iPY&downloadAs=Google Chrome.exe

http://www.vaultsapptown.com/c?x=Pci3p3v3KVa1YCdH3sxZGgwdBxnxUEIe9Po83eSEnNU=&c=F7us1eP0dCqzEIAbjGE2oQFvaHlUSM7/.../54Qmh7h3qpF&downloadAs=Google Chrome.exe

http://www.applicationbytecenter.com/c?x=voYhHmg4NQFosZR7lNt/Z/Wd2rJsGQY/zp7yrYjps70=&c=tM8Pr9AYI7VdDFfjqGd3xYHmReHHsrFA6vn8x4bxJ94GQUlf/aYfIzBJhF0QEZcDDHBfGSX6oAq82aS1GOCIk4smpuEyLIikQBHt tmnR5tym72EnnmWHemvb/.../mysG&downloadAs=Google Chrome.exe

http://www.applicationbytecenter.com/.../MlC5lXpvGKdVAZGfX6iLrzq5aPjwmt0UdWGAZUKX3bbG1HFnzIYVmAWEaTgk3CG7uVL3db8HJDcGIIip4M305DMLfM3JIdCB1xAuum eiUAhR4ve4x&downloadAs=Google Chrome.exe

http://www.applicationbytecenter.com/c?x=tKx7kLqpnjhsjd/k83zE1bUfrmbAzxo5Mehs0nc0LtI=&c=o6bYqMr5YEOre5ls4WFHGtZs95cT27Bu FqaRt9ZgrlM4VgGmIfT8KTicxkB7pbikCWRKrb9ZMvtNwJdBF/.../&downloadAs=Google Chrome.exe

http://www.hostheadflash.com/c?x=lfL86c4LnaHcVCiokH2199XIb0DW6zwCMR2ZSrHwyVs=&c=ml5Lz8FJ39YnK0EUjPG7MS3m1F4C5nyRnHXPa2nujxCbICBOz 360yeSWJR70Z5iUyaPO7SBMEqIAkjgDuu8lt/aRgnTkYF2NO5jLqXm23s/Ipi1JDHDWxTa/.../s&downloadAs=Google Chrome.exe

http://www.hostheadflash.com/c?x=mfL5Kz JkNx05vA8YAcwZTwJ67FGYmo4KCC5jVT3F I=&c=KkaJMoG4uOWCsy9zFWKQMsZPIlOIUiqbp6hxVdeBGmvnexDqN5VkwnuLKRXqhWtNOknfnT/.../Psz&downloadAs=Google Chrome.exe

http://www.applicationbytecenter.com/c?x=It3kPYWgo6aP6 bE1bUZExNfodJi2ggw6EMV4fDMuus=&c=wsRW3dUWhzVxlahNNzDC1HyL6fwwhzNvlF0PDlPoASU6BajPQDqyA415o2kg3NHepFiMDR2eUIpU5fT4wS0k ZyUy5v0XrIQjZCpPXBET9qNQQQeOcjmtedvQMk16YL3&downloadAs=Google Chrome.exe

http://www.sharecleanbest.com/c?x=YwVqyZDpewRkpaOr5Y8K/erVyjA8En7ENJ6N8MoTKl4=&c=fCRZ714gvoLHEjNPSi8pMOsx4aB6vpgPBgEm3HqXnvxf6u2YP7lQhKtozmrZ/.../bgpExumHLcuDhlYhn3R1&downloadAs=Google Chrome.exe

http://www.applicationbytecenter.com/c?x=NQtNtqQ00UatgLKfgrCM6/8QL8CHNc/h7bx4xubXa4E=&c=K6gfTe80WSV yoUr9qYPUt/.../n3JLRPCfAMQWBml4sWXloC1d5S8 K6WKqnjw4CUFRMrMtITI&downloadAs=Google Chrome.exe

http://www.newsignsuniverse.com/c?x=lbzrt6UOn01YMvbjNNoyDjeC0It/FL5D10Mcd68X1uc=&c=KNpZSHUANMtGYirEcOpT8xyK/4Nsj7MybUwi7OXGCLTnxCdTZLQG7c bC/rjWRXBcxn7anTOdsvo4fkKbY8qPZm6qnz0rv1FIgKGj/.../3TEZgq9&downloadAs=Google Chrome.exe

http://www.repositorycurrentflash.com/c?x=gYQTYUWo7Iz7R BSz8sl1LGCB72o1HP56/6g1JqCjZU=&c=blc xffIpMYdhmSqSnvU9T7EjDEx0vD7p67toLzpd Hkd0pQNAzUDq wYaxjwxQiHORgCQM6 LL7V33Fv9VHA77xm5/eYSMiWR LIudkizlbVXrO/.../Re9&downloadAs=Google Chrome.exe

http://www.repositoryhostinggrab.com/c?x=S4QwQId/F9RARHZz2pjNdjEgIIgq9p0j2 wecAcd7t8=&c=az9wTY1BFcXevylGuTyoSrRxXjqReuGbEee5maHvwqR7c3ttegojprWQ3uV1IXj/.../APXHgSySNIHG8htW hLjJgfOEw0c7kweME8Qhetgpjgxp2Fc&downloadAs=Google Chrome.exe

http://www.newsignsuniverse.com/c?x=0oefmdb8h2SFOMimOPwvfNt1RI8cv/YhdOtjgFk3VHI=&c=6KGu22zjcMcYBQa 7xdy/.../39 4jyNW7Q2b&downloadAs=Google Chrome.exe

http://www.repositorycurrentflash.com/.../GDFgg5zjZ5DI&downloadAs=Google Chrome.exe

http://www.applicationbytecenter.com/c?x=yLL8D3lMp35sCA3dwjgQT4ombhWRaGN j9qAp0YZEe0=&c=aYjeJfayiz44NhtGAi9R1ejPEer49EksA0EYyXAkmNvYnPSVC2xV8uwiK1SCGVllzYyGzjB7cjlBTvaoMLnv1vtHpNS7pZoh3FF0i9/U1DSWpjEltVGj60ZmF/.../&downloadAs=Google Chrome.exe

Latest 30 of 772 download URLs

Remove google_chrome.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.