» googletoolbarinstaller_updater_signed.exe
Overview
Analysis
File Details
Downloads (1)

googletoolbarinstaller_updater_signed.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from cache.pack.google.com.

File name:

MD5:

9b8ea6dc9e9926e0eb81a5fb4c6785da

SHA-1:

84124ce0c70a3450601f831e9eacc5b40930a4c6

SHA-256:

f692b58a9193d455e7c6cd0989e7782aa7d5ebf1af76e8e7dbc3d452cc6bb101

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

11/23/2024 2:54:19 AM UTC (today)

File size:

457 Bytes

File type:

Executable application (Win64 EXE)

Common path:

C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\googletoolbarinstaller_updater_signed.exe

File PE Metadata

OS bitness:

Win64

CTPH (ssdeep):

12:o6+gVFWNYxusBxwEn0hr2uMHf0QhhKH8BgeZS5i73S5DKzixf2:WsFWk3ntuq0Qs8BVZS5i73S5eiU

Entry point:

3C, 48, 54, 4D, 4C, 3E, 3C, 48, 45, 41, 44, 3E, 3C, 6C, 69, 6E, 6B, 20, 72, 65, 6C, 3D, 22, 53, 54, 59, 4C, 45, 53, 48, 45, 45, 54, 22, 20, 74, 79, 70, 65, 3D, 22, 74, 65, 78, 74, 2F, 63, 73, 73, 22, 20, 68, 72, 65, 66, 3D, 22, 69, 63, 6F, 6E, 2F, 63, 6C, 61, 73, 73, 69, 63, 2F, 74, 72, 65, 65, 2E, 63, 73, 73, 22, 3E, 0A, 3C, 2F, 68, 65, 61, 64, 3E, 0A, 3C, 62, 6F, 64, 79, 20, 4C, 49, 4E, 4B, 3D, 22, 23, 66, 66, 66, 66, 66, 66, 22, 20, 56, 4C, 49, 4E, 4B, 3D, 22, 23, 66, 66, 66, 66, 66, 66, 22, 3E, 0A, 3C... 
[+]

The file googletoolbarinstaller_updater_signed.exe has been seen being distributed by the following URL.

http://cache.pack.google.com/edgedl/toolbar/t7/data/.../GoogleToolbarInstaller_updater_signed.exe

Scan googletoolbarinstaller_updater_signed.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.