home

gwave525.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from goldwave.jp.brothersoft.com and multiple other hosts.
MD5:
9a7eed9f517a11282da4f536ed81192e

SHA-1:
7331e647f03a1856fe2c7faed9b4c76a0cfe3185

SHA-256:
0ae0f75a8abe58f9b5d8529c36aafa7d2f88f1960bfaadd2c4970fc1f27ac655

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/2/2024 5:36:22 PM UTC  (today)

File size:
2.5 MB (2,594,286 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\gwave525.exe

File PE Metadata
Compilation timestamp:
5/7/2008 4:10:57 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
5.0

CTPH (ssdeep):
49152:AOTPGb6jF9k0n3RS+1ko33yt/dLXr4nO7cj6AEJjNi0+Th2Fj:nGb6bbvTKcjZEJ006kFj

Entry address:
0x1108

Entry point:
EB, 10, 66, 62, 3A, 43, 2B, 2B, 48, 4F, 4F, 4B, 90, E9, 8C, 00, 42, 00, A1, 7F, 00, 42, 00, C1, E0, 02, A3, 83, 00, 42, 00, 52, 6A, 00, E8, D1, E6, 01, 00, 8B, D0, E8, D2, 2C, 01, 00, 5A, E8, B4, 1F, 01, 00, E8, CB, 2C, 01, 00, 6A, 00, E8, BC, 3B, 01, 00, 59, 68, 28, 00, 42, 00, 6A, 00, E8, AB, E6, 01, 00, A3, 87, 00, 42, 00, 6A, 00, E9, F3, C4, 01, 00, E9, EE, 3B, 01, 00, 33, C0, A0, 71, 00, 42, 00, C3, A1, 87, 00, 42, 00, C3, 60, BB, 00, 50, B0, BC, 53, 68, AD, 0B, 00, 00, C3, B9, A4, 00, 00, 00, 0B, C9...
 
[+]

Code size:
124 KB (126,976 bytes)

The file gwave525.exe has been seen being distributed by the following 4 URLs.

http://goldwave.jp.brothersoft.com/soft-7270.download

http://dnlimit2.simfile.uplusbox.co.kr/.../httpdown.cgi?orgfname=gwave525.exe&filename=SS9WRVJDUnFULVdDSHVDM0tkN3RMU1VzTVJTYUxPLmVIT0MuS2VIMEt5Xy1MQmg4

http://www.goldwave.com/.../gwave525.exe

http://www.goldwaving.com/.../gwave525.exe

Scan gwave525.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.