» gwave570.exe
Overview
Analysis
File Details
Programs (1)
Downloads (38)

gwave570.exe

GoldWave Inc.

This is a self-extracting archive and installer. The file has been seen being downloaded from www.tamindir.com and multiple other hosts.

File name:

gwave570.exe

Publisher:

GoldWave Inc. (signed and verified)

Description:

Installer Program

Version:

1.3.0.0

MD5:

c0c74b0b0c81d0062b936117b4fcde6d

SHA-1:

17c5d4db34d1fb48f36673de899a59fd3b66ab64

SHA-256:

2fa1c21e436050fc4685cc5ee9bac14b1927173e497f7512615ccd8626c33d68

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

11/5/2024 4:49:39 AM UTC (today)

File size:

7.8 MB (8,155,792 bytes)

Product version:

1.3.0.0

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\gwave570.exe

Digital Signature

Signed by:

GoldWave Inc.

Authority:

COMODO CA Limited

Valid from:

2/11/2013 2:00:00 AM

Valid to:

2/12/2016 1:59:59 AM

Subject:

CN=GoldWave Inc., O=GoldWave Inc., STREET=PO Box 21151, STREET=2 Third St., L=Mount Pearl, S=Newfoundland, PostalCode=A1N 2A5, C=CA

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00C841B3B3082E2D32168F332C83DA49EF

File PE Metadata

Compilation timestamp:

10/24/2013 7:39:33 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

5.0

CTPH (ssdeep):

196608:0nS2ek7YARoppnm+a3p6rLEcwYTW8PCih9PHzItq/+w1sm:0SS7YAytm+Yp8LEKW8RPTh1f

Entry address:

0x1104

Entry point:

EB, 10, 66, 62, 3A, 43, 2B, 2B, 48, 4F, 4F, 4B, 90, E9, AC, C0, 42, 00, A1, 9F, C0, 42, 00, C1, E0, 02, A3, A3, C0, 42, 00, 52, 6A, 00, E8, D3, A0, 02, 00, 8B, D0, E8, 0E, D8, 01, 00, 5A, E8, 48, BE, 01, 00, E8, 07, D8, 01, 00, 6A, 00, E8, C4, EA, 01, 00, 59, 68, 48, C0, 42, 00, 6A, 00, E8, AD, A0, 02, 00, A3, A7, C0, 42, 00, 6A, 00, E9, 7B, 7B, 02, 00, E9, F6, EA, 01, 00, 33, C0, A0, 91, C0, 42, 00, C3, A1, A7, C0, 42, 00, C3, 60, BB, 00, 50, B0, BC, 53, 68, AD, 0B, 00, 00, C3, B9, A4, 00, 00, 00, 0B, C9... 
[+]

Entropy:

7.9879 (probably packed)

Code size:

172 KB (176,128 bytes)

The file gwave570.exe has been discovered within the following program.

360Amigo System Speedup Free by 360Amigo

360Amigo is registry optimizer. 360Amigo System Speedup bundles a branded version of the Conduit Toolbar, designed to deliver search based advertising and results. During installation the user is presented in some cases with the option to install the toolbar (on by default).

www.360amigo.com

53% remove it

The file gwave570.exe has been seen being distributed by the following 38 URLs.

http://www.tamindir.com/indir/MjAxNy0wMi0xOCAxNjoyNTozMQ==/goldwave/windows/.../

http://www.tamindir.com/indir/MjAxNi0xMS0yNiAxOToyOTozMg==/goldwave/windows/.../

http://www.tamindir.com/indir/MjAxNi0xMi0yMSAxNDo1OTowMw==/goldwave/windows/.../

http://www.tamindir.com/indir/MjAxNi0wMS0wNyAwOTo1NDoxNw==/goldwave/windows/.../

http://www.tamindir.com/indir/MjAxNi0xMC0yNyAwMToxNzowOA==/goldwave/windows/.../

http://c236.y8top.net/2107tmp/cf/soft/2013/10/ba/.../goldwave_570.exe

http://high.software.dn.naver.com/56736a82ccf4d7098f577a14f81bc876/.../gwave570.exe

http://113.171.224.243/.../gwave570.exe

http://www.tamindir.com/indir/MjAxNi0xMi0xMyAxNjoxODo0NQ==/goldwave/windows/.../

http://nextcom.tistory.com/.../cfile30.uf@21696D3957F88E0D23330E.exe

http://www.tamindir.com/indir/MjAxNi0wMi0xNyAyMTowMDo0OA==/goldwave/windows/.../

http://low.software.dn.naver.com/56736a82ccf4d7098f577a14f81bc876/.../gwave570.exe

http://www.tamindir.com/indir/MjAxNi0wNi0xMyAwMToyNTozNg==/goldwave/windows/.../

http://www.purefoldercity.com/c?x=B9uqjxAz TSrGkQCbdPYDYiCmgxEEm0fhaf7azMZr/Y=&c=WBedgFVcRnn IMmHCHPBb6C2HolgZ4a1hv9wHfEjPYvs7sayYeAm1PNvQkuXYGM NhFpvSHm1ilXIvztqFBuPH64JtUruAM1yaIggvwUdZ6jVmpAl2jxwjgyp2mdZrsZ&downloadAs=goldwave.exe&fallback_url=http://www.goldwaving.com/.../gwave570.exe

http://61.219.11.16/989b2565d147bc39e77de81445ac87da/softking/soft/sale/.../gwave570.exe

http://www.tamindir.com/indir/MjAxNi0xMC0wOCAxOTo0Njo0Mw==/goldwave/windows/.../

http://www.programosy.pl/.../pobierz,goldwave,2.html

http://www.tamindir.com/indir/MjAxNi0xMS0xOSAxMjo0MDo0OA==/goldwave/windows/.../

https://drive.google.com/uc?id=0B0AiuIq4xkmEeGp5aFlHMFlZenc&export=download

http://www.bestdownload.com/download.php?sfid=1648

http://goldwave.com//.../gwave570.exe

http://soft.mydiv.net/win/dlfilec2b03_271416/.../gwave570.exe

http://f30.softwaretop.net/2107tmp/cf/soft/2013/10/ba/.../goldwave_570.exe

http://61.222.3.63/66b2d4987ef635c82f088e31199dca1f/softking/soft/sale/.../gwave570.exe

http://f35.softwaretop.net/2107tmp/cf/soft/2014/3/ba/.../goldwave-digital-audio-editor_570.exe

http://cs12.superfiles.me/f/0/1457066729/44113514/0/.../GoldWave_5.70-spaces.ru.exe

http://i.download.idg.pl/fannef/6a982790d1374e4f9b5789a3da23bbb9/568ab445//vol2/w95/multimedia/.../gwave570.exe

http://www.programs.pl/pobierz,543,link.html

http://software.thaiware.com/download_url.php?id=14179

http://61.222.3.60/615b05411a2d692878ae97a67f5768e0/softking/soft/sale/.../gwave570.exe

Latest 30 of 38 download URLs

Scan gwave570.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.