home

huawei_e5372bolt_unlocker_v4.exe

DTUNBOLT

UAB ”DIGITEKA”

This is a setup program which is used to install the application. The file has been seen being downloaded from files.dc-unlocker.com and multiple other hosts.
Publisher:
UAB Digiteka  (signed by UAB ”DIGITEKA”)

Product:
DTUNBOLT

Description:
Huawei E5372 Bolt 21.270.11.00.1151 Unlocker

Version:
0.0.0.4

MD5:
306cf0490184c28fa0ff98367fa43065

SHA-1:
c776f7df4c95a8645d1a58651a542874c04e8152

SHA-256:
7021426657c86b125e00ca30888f932466e16b65f909b6c9b911bc8aecd532bd

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/25/2024 4:57:57 PM UTC  (today)

Scan engine
Detection
Engine version

Comodo Security
Virus.Win32.Virut.CE
21258

File size:
20 MB (21,011,600 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Language:
Lithuanian (Lithuania)

Common path:
C:\users\{user}\downloads\programs\huawei_e5372bolt_unlocker_v4.exe

Digital Signature
Signed by:
UAB ”DIGITEKA”

Authority:
StartCom Ltd.

Valid from:
1/2/2013 1:51:01 AM

Valid to:
1/3/2016 11:41:22 AM

Subject:
E=manager@digiteka.lt, CN=UAB ”DIGITEKA”, O=UAB ”DIGITEKA”, L=Panevėžys, S=Panevezio Apskritis, C=LT, Description=BQlAnZSt091y56bp

Issuer:
CN=StartCom Class 3 Primary Intermediate Object CA, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL

Serial number:
085A

File PE Metadata
Compilation timestamp:
7/22/2014 5:31:43 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
393216:FDVS0BjkQospX5Ne1meoNwSJuklG58BPNhIiFVuqbAzn4jLv:9ZBRosEVorMkl28BFhIizNjT

Entry address:
0x1624EF4

Entry point:
9C, 51, 88, 6C, 24, 04, E8, 99, 42, 25, 01, 0E, D3, A0, 7E, F6, 70, 5E, E1, 21, 8E, 08, 87, 82, F1, 1F, B3, 64, 07, C6, 48, 9B, E8, 62, E2, 35, 44, 4C, 27, 56, 28, 2F, FF, BD, D7, 47, 89, 77, 50, 81, B9, 72, E6, D0, 3F, 8A, E2, 8B, 27, 69, C2, 05, 27, D0, 8F, 57, 3C, 5F, 2E, 7A, 45, 28, 20, 80, 63, A7, 54, EB, 2B, 41, 95, 58, E6, 8F, 7E, C5, DA, FB, 02, 50, D1, D2, 0D, C9, BD, FC, 05, E1, 60, E4, 94, E5, 40, 13, 2C, 5F, 8D, FC, A0, DA, D7, 3D, 86, 5C, 16, ED, 7B, CC, 60, 16, B8, 9E, 1A, 40, AA, 11, 85, BF...
 
[+]

Entropy:
7.8334  (probably packed)

Code size:
3.4 MB (3,532,288 bytes)

The file huawei_e5372bolt_unlocker_v4.exe has been seen being distributed by the following 7 URLs.

https://files.dc-unlocker.com/backend/r.php/.../18DF8EABBD6844B2943403B6CAF28359?_=1482191083629

https://files.dc-unlocker.com/backend/r.php/.../18DF8EABBD6844B2943403B6CAF28359?_=1482570971682

https://files.dc-unlocker.com/backend/r.php/.../53ce65b2e833b

https://files.dc-unlocker.com/backend/r.php/.../18DF8EABBD6844B2943403B6CAF28359?_=1457626475640

https://files.dc-unlocker.com/backend/r.php/.../18DF8EABBD6844B2943403B6CAF28359?_=1445887690717

https://files.dc-unlocker.com/backend/r.php/.../18DF8EABBD6844B2943403B6CAF28359?_=1464602580441

https://files.dc-unlocker.com/backend/r.php/.../18DF8EABBD6844B2943403B6CAF28359?_=1460156263502

Scan huawei_e5372bolt_unlocker_v4.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.