» icreinstall_plants-vs-zombies-2-4.7.1.exe
Overview
Analysis
File Details
Downloads (30)
Network (3)

icreinstall_plants-vs-zombies-2-4.7.1.exe

Cabum

Destiny Dream S.A.

The installer utilizes InstallCore which may bundle about 3-4 offers for various ad-supported toolbars, extensions and utilities. The application icreinstall_plants-vs-zombies-2-4.7.1.exe, “Cabum Setup ” by Destiny Dream S.A has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the installCore installer. It is also typically executed from the user's temporary directory. The file has been seen being downloaded from www.newsendbinaries.com and multiple other hosts. While running, it connects to the Internet address os.solvefile.com on port 80 using the HTTP protocol.

File name:

Publisher:

Destiny Dream S.A. (signed and verified)

Product:

Cabum

Description:

Cabum Setup

Version:

4.0.2.2

MD5:

114681510514b2d1f7647bb91748f96d

SHA-1:

368c66318265d433f0e70c5ec77a0765d7e1ba21

SHA-256:

e7fd707f7262360bc2a9f7e94eecb457590512b407f6935d0dc11eaee16313c6

Scanner detections:

1 / 68

Status:

Adware

Explanation:

Utilizes the InstallCore download manager that may bundle various adware-type offers.

Description:

This is also known as bundleware, or downloadware, which is an downloader designed to simply deliver ad-supported offers in the setup routine of an otherwise legitimate software.

Analysis date:

11/23/2024 11:45:33 PM UTC (a few moments ago)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.installCore.DestinyD.Installer (M)

16.5.5.17

File size:

1002.2 KB (1,026,216 bytes)

Product version:

1.2.1

Wizard

File type:

Executable application (Win32 EXE)

Bundler/Installer:

installCore (using Inno Setup)

Language:

Language Neutral

Common path:

C:\users\{user}\appdata\local\temp\icreinstall_plants-vs-zombies-2-4.7.1.exe

Digital Signature

Signed by:

Destiny Dream S.A.

Authority:

GlobalSign nv-sa

Valid from:

12/17/2015 6:25:11 PM

Valid to:

10/2/2016 7:06:18 PM

Subject:

CN=Destiny Dream S.A., O=Destiny Dream S.A., L=Clarens, S=Vaud, C=CH

Issuer:

CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:

11217A75EB912AE2167326222C18D9E2357F

File PE Metadata

Compilation timestamp:

6/20/1992 3:52:17 AM

OS version:

1.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

24576:rgvb1DA3WAmtJtxuO2uc2JiDCcFHNzwguP/KrepII2J4m:r8bd9jth2uc2M+cza/KSpI9Om

Entry address:

0x9C40

Entry point:

55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 86, 94, FF, FF, E8, 8D, A6, FF, FF, E8, 1C, A9, FF, FF, E8, 53, C9, FF, FF, E8, 9A, C9, FF, FF, E8, C9, F2, FF, FF, E8, 30, F4, FF, FF, 33, C0, 55, 68, FC, A2, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, C5, A2, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 96, FE, FF, FF, E8, C9, FA, FF, FF, 8D, 55, F0, 33, C0, E8, 83, CF, FF, FF, 8B, 55, F0, B8, 24, CE, 40, 00, E8, 32, 95, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, 24, CE... 
[+]

Entropy:

7.9286

Packer / compiler:

Inno Setup v5.x - Installer Maker

Code size:

37 KB (37,888 bytes)

The file icreinstall_plants-vs-zombies-2-4.7.1.exe has been seen being distributed by the following 30 URLs.

http://www.newsendbinaries.com/c?x=br9mOkKZJFpJ/4kx37jmLjCdiB6uyJvxpc15SOF2jHY=&c=RKvj21YSsc/VrXkGEKJlKdbLFwKpObmrQv2dlRzYDQb ltq2Jfr8FWJcZP bPfGvwmvChV4Q8CtRc0Ju5vk8QukG4G9APZVEXF7xgXH8yUsC8bOwJz1BwCZiMENA58tqM FfAeCnbjONTKnWuqhjcg==&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.bestbinariesvaults.com/c?x=hQFchTPqRQFH5aXlWqBydwpZ0QEXG4H7am9JzbS8OUQ=&c=TsXboaLM65nRRssaz/8uCxjdYj/2Sal3iq L5yA 4xuC0HcDc/FCoW12G8MsQnkQVy5BxhVkZlsJqLUUL6gjjSIYghzI79u tum HXp2dGCe2YzIdLMsi2OUhZlEh7SP9OO7km8xd8C3U9CtRpKTFTp64D/ AIb5DwQQ3QNau6KHLKUoTJo7hIjw05DgfFlF&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.chucklecleandelivery.com/c?x=JHYaEmPfcR05VRJEbF6MX8pMCctPjaXL3MVvr7YwCZo=&c= vpq0LFE8njjMo QfiMLZ7SZg6RXnH 84nEebieE7zO5hpKGKDzOkrs HbwbkQrpGguog1vpk19pTZ95yg9IOL3b SoF1JYq5Q73xq6zw0cMNObF Y7Uxrl20ICCrxaegXn34zYp2hVOySY7lonPNzoaI Sc/ulWEKwLLyBXAdFXqvMsz1IrHg/7qCHIA9mc&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.softwarefuncenter.com/c?x=pXwLlTwyTVVp4yAf869jfAv/p7a1d8XJNHbA PU3mVY=&c=ZpbLVcF6iNdlcRjylhnK07KLAi4wvMVyeVd51jx5oBzL9xmF8XyNcqX5 q6OhLXSFlCHGB5cYL9saMVbDXNQaOvAt5lMtM7RJgP2icL4r7e07U ZHi7 ogoXkK 0nYfQVzqT /M9lyXvhcztk93nGdynFgIscRZMl1fW8ulYagtR8WTWgxx6GIpHp lCbRvN&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.towerbundleapplications.com/c?x=OyCrxPZ19EvF3vZTzHqaCFwU9POjH B3Ru5NlbMuJ8M=&c=KcbaDgp/pU75tG0aNs9v9cplI hOV03tblSLj6pdngeZXqkdtSv3S0JVNpAGOcQ6vsPziUglEGSMmN784nIZjGFz7tgvDY0i 2QlUwWjuC6BVUw6jxyEbWn1iX98bKZcdGCm34lzy3meURVc0fQl0oPp6iAYTxEMhdLg/vYuzsU=&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.downloadscentralcurrent.com/c?x=bBaUy/mstScn/V/CYwMZipFQXb3HH9giMP7uYiaxdUk=&c=S0ZDJkx74d0WAmt3mMWSnIMPoSVLEfd6z1Gf0Pnm3mTl5xFe0EQn/bGDvf4QaE4bMoGu4 yS Bj5TlzZu8H5f L5ZkBECgJZ0GqOVSlJQX0tr00Y23eI14B2 QXb4Y963GKP5a7uf7tg9S0lgOxakw==&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.bestbinariesvaults.com/c?x=DJs iFzQJitnfNjRWRYyI/D2W8HczlcAjc5BRFpBkAw=&c=G3EaI/zNXzduJjjEc6dLM7ltBV/g1IXbfxioFT1L1Mf2AGXSdHg3KN3Uf6LSdz2dtB tp1Kev6JjMM7b8oxbxnLDKdxQq/7A4EIi14tQT3zdqVXT4lSyb2/rjNK0TFLZBPu/t1m5TPaiBjDojuHw2aDw1Xog4gRg6pdZb9c8bf8=&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.bitscontentfun.com/c?x=ABHe6TV7 Wszxyd03yhiHzRD5InjiVMB 4FzKwgAAOQ=&c=YaDtQ7zY0W nQauETr p5QWz1NH/g0NZZoXUREiLeckyDh4jR4NJLMFn07p8zmauItxD HiKN7EkT0cTl898dVyIYhEgqbv9QkPg5B1XrDUMsnjm7I/1LoiH9lMZ9dYMS gfeeAD7NUkDSLxYxe9qA==&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.softwaredeliverytag.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

http://www.towerbundleapplications.com/c?x=rJwdbvfdC0gvnTooRNQpun6xeMy0WVupzIlO/PdEIYE=&c=swvDlyb6WU2pfJda1Xse918VJoPF2yRMQ3lTBfXGH5UE2469grTgAj22PBb7uPfNHahzy7dj3D0R1PgS42 SzRESw6XOXidRncZTisFztdneHhO 0gjM6iSwd1AI6wIvXCi72pHAKD3aLv8uytGd/qiC6PKgjs3wVNZQWsDD90fwaemu0RBUODHFsKCrVr23&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.bitscontentfun.com/c?x=HSKbxqymzgLucQgiDqIhuJYDRsUmDdfA0RRhyHr6uXY=&c=On7e8FZB ZB72NV8Tdx5fUWZ1MF3bkBxLAkW7P4qLJVd7zsODG skBRh0KthWiU1uDqTW3RwNUTHCCRpppoY2HvNt9Ax8jybLttrC3CMN44CNbGqczyHwq3Ti4BOsZBtcpPj sIE1TAaIOZ XBt8rA==&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.bestbinariesvaults.com/c?x=GuJYFYD8U5fUz6EfIbTGz64q1hXv2FtVNcHR/uc8j3s=&c=6jihOWRGHz0H5mbUXy8jM2iqYqCzcgJCextRwd8sWfmBHlAj0eoVNWoZ8qBusPqCems5AgosiTDU1kJewuRaiGZye/2aJjAiOnaKEfB0kCTtzfBS7TUXldmme y3h5s69PdBWiinJAGlhmXipl5fhZGA04KXsBZPWL7VTkSSG2ILUQACMgJ25ljUSEDV7TLL&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.newsendbinaries.com/c?x=IBhixiVu9jCjBYpKqHQts5TTNEPxYu/h4AKBQFA3dWc=&c=XIe80p0KVhPeLzc55hSnuAIZ0E sCQiOIE/hxl5otlfLZyQxLwmYczf0ZtaCjtwx12pQgoMzd6hNfA oHG4eJHKxiiTefrMBmMne9Y HLwCzMkJIZBJL/Ex8tc8ueMz8H1IdMqXLV2SBE9NiBwmViuHmDP4hBCp9sZKLwqGi9uk=&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.newsendbinaries.com/c?x=meyq67ySZRpm1gDgOhoBFB20iXGo 5gQ8imCuPKT6Hs=&c=9tZ4dxRP1I5AilgxXiRJw2YuLVQJqO6 O440yKldvgRa1j1U6PySWycbklyWkI6NJdrQamvOqFUW2q90phktVw4 IPej7XIh/tBPX3VUWOMs/TfBGof2dkIB8d sUDriXpr7BLob9NP37ICOzlAMnQsQtGGG/p upSL8ld3Lv7mSyrdCIPhtKWy8gg1OX3KB&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.newsendbinaries.com/c?x=qmd KMVHshI1p0VuigwZ6X4Ad/s5HsIMVRKi EEwRGM=&c=wYzNjypmvIoi6eIY5OPmYJbXKt/dGUDprKlVeFANy8lwm8PSX0EHyGX4T9kIwvoIoz7Ns/2AqghsW8TQFHiTZIAgloKu kSgGgWPxO2lE2/cqu2Hzh2U1RNGJlPoyweBCxmF8m92KhfH32JAYd7d4nLTrKLytN9I/RgHVlxpgLM=&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.softwarefuncenter.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

http://www.bestbinariesvaults.com/c?x=PV96ksoMYqPAOSKm4k7ppHTmpJqH00sitnP/Q9DlxVc=&c=dGsbX/MzIDLWg0ykHJE daeoB1M6MQKcpPDLOdA4Zd3FGAbWWOA3OkX0O9GuB8KiBmONGZSbzvbTFfWAIXkZOUE8x5VSEc9TsAF2UkBCqwXxzrJ LqkeA1csLDx8dNT1zuCaWx2mwalJ/YqcPcFOhamccJ1jDKMzmqTqGORUnaxq5DBvU2awFl7W8fCqOluM&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.softwaredeliverytag.com/c?x=9fUfVIm6bruU Qq0Qo UA0leFdd0utJAUVvPOwtJNoA=&c=oNtPW89K3mn3MpgUZPus crLr/p pSpL9fKsCegISS42X3ZTJog50udHtBxEPiFT9M1Tn22ln6eNAgAjonIMtGYSkfrloOblX0HDBuzbUVncGVUJg jt5H0jTk04INgVSOBum6RYofEI2g9nIdsLkCfWPgZhdDcuStjnoS5zeWxZ9JOXKTaXBRI9HwOfEVGt&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.newsendbinaries.com/c?x=sVkCOYarUY eDSz4inSkPADC2dGh2UkUt8IVS8yrHdo=&c=83x3YIqhNmADpy6T5FqrU1dbCA0Pt1g/jN7jdOhEwHOZMdwWP0 Oxplgl2zWcDS7qgGM GoSOt eakNA6dLZ5th89Ob3aeNH2Hkt8DfYhk/7dXG2PJ2TIUPG8CzvLstuy7LtZ/TjrrQTfsiKgWVK/bypby DBK2PG3wVls/JUBNpgzM7l1JO43 OcdSScfTh&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.bestbinariesvaults.com/c?x=fLTyaW0YE5MSYwQERA/hSYIHGBNB6pCIVgImZ6Fz0jg=&c=wg3BIDmsTGEgpJ1jJVUpfCY8Q22r0ukO8r8cz31p4fqxcQBSVRBjFxGdoDI23HGyJOxH1pGT60Ywmkbpn5wEd7v04f58qqQSEiNeKes1Uq75X2HsmH5F2Y14QgttMZ65EfODym3H0bFS0RIAcNeuE6UXpsDIBGFnV0ZscJdwpI0=&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.newsendbinaries.com/c?x=I8sR5vVJVzZ2Is4X553bKGnl7aNMek7TPwpksDADKeU=&c=eJ5H32knytUFkMvNWij9ztQhvKdP2FVbxoHsm0U/Hz6g/Xd9u Zcgg62HPDTdukbnasVPv7e HmfQSk3QyUIH65Z4srGHVGPe2ly31wyC ZG2YbURrVyq1zjKdGzDYzOpI3Bd5eTRVPYgJ1DVR7n3FuAPr/plJulZ8wnE9kz0 4=&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.towerbundleapplications.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

http://www.presentsendquick.com/c?x=iEkff4mZgK4Tx66QRGMUNZyJG/Kn5gk39zkkugVyhrM=&c=y/VdeoSDGoWGYyV720ofW 3OrKQ0eZsA4mH2W9TiRUZeEgfwX9iArYCarilR3pgEAnFBk9 5zpyJhckcyocmG4cOFlL740ZsGeqebCKQbAhfB6RMibWhZ57BJdp7hbKjur6vD6fjCGrQSN18BzI3uzyJHUYLhHs2OmW9itearaSpqYYrIiBa80ecEDqI1v6Y&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.newsendbinaries.com/c?x=1JUOq6h5bbXsT5TK0FrL1nknQI9OjeECaK8tsPmWPkA=&c=s54OmpMIYjLFIPYXAf8Ev1wuus/gvjfOhwZDAngx3XU7AYt0EwqRJAXn2TBqLR5KX QyOU2 5 nSkhONCb0hyVotU0IOIez/a981qFW0 yI3iUfU74inUa6pKSN0M3O/D6m6C1TDsnXecH8M3viG7qESkm/5h4FkNDQpJboT6jY=&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.bestbinariesvaults.com/c?x=ZTXTPfb3yoRQTYzrAHzH1kq nMn8f3QK4d4gi5sXkD8=&c=ar3ch7fqeZdFIH3x6RaZm2TgTG8kM7gg6H4IzFz7r/IMEb9lmHMnXY/PQX9mDYdJgulWhNQc9Bpvg00OoSlTEub9dc1fjrxymwvom4etIHD8R9RqZp h2sWBWbfCOdCzUBQTGQEX2OVxGjKAb2uefxQvDLmyiD8I Z9aWss v3zD/j59Y4dG7MeHwu5nCt5j&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.newsendbinaries.com/c?x=eYTQWnzyTY VARDchh0A/UnI8K3nr91OhsfQK4rO0hg=&c=EIx4YfLOsd0QSZ dl4qNJO5VD2X K4merVOt1kwdxBX8tWVp3tTzWWG68sGqkYJXCTM2/RNk7pZGwkNpQizkddwTQVy60TeU3pBZNk6PuI4NkGsEs8NJp7dfVETFK/P1RoFxM3m26t//ggJAdwnqs0QOb4nzgK2dMMD4B/2Bt2b8m1f1i9C tT8DRXe0YcTO&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.newsendbinaries.com/c?x=TyWvV83BDoZhrI8pRBJnYKOpO50dw23BNA7WBnYR344=&c=bphrTRuZxFTNFnQHOigy9vVqsxJwGdsXf9QSQC6wfbuLzVJtZY4cF/Ahg7QeGjvM3Da7GEYj04Tn9OKO9yuEcIY7/Gd4PnRkw35 dRVhWgOevMyBJYTLvf VfDQrw3yH wv8NgU xFHaEGAv80idQIpyw3b2maEygy k4uWcMk0LmoZgR9hTrQQlPXDUvtUK&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.bestbinariesvaults.com/c?x=QPj4SjTM4KsOiTSrSfqYJOzjornFV4vvJi8thaMtWu0=&c=ZtYMtcO3J2Qf4/R1DhRke1Kr8X1JrIf1u/f2yxXctDT4AcUTvrw/z7Dx5tTee8zwPOVbij/ewfg4mBftxUSHFZk5mUI3WWOfWCpkLZ8IYCCtSbOBibD8yPdPxavhMP9NHri/2tyw/x2D6zuXjbrd7Zp/B6/N81EVtBNbrytGfrSHc/f0gFMd2xFhN5S4ijNz&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.newsendbinaries.com/c?x=rK0wzhy1zoC9oe/yDvjR/bbTprG5TVi/fqS803Fy28Q=&c=92941JQdmw3JOfkDJIM3UEjFEphw7bWdUmRVmHYEntSuBeuNSCGT0vKTkh3PCnM4MauChzTVsRJAarMJMUuBaTQyeC1DBLWnUvkTI0DlPrYvkflnPm9bWwWoX67rboYEWWCGik0zfKm0BD0KzvzgQNCYt30cS31fLRwo tVf1vSs/Rs6Oh f6kDLzg7Ski/l&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

http://www.newsendbinaries.com/c?x=962QekoRBmt sdgu/F2dKxGuzQp12zQ5WSkrHxiJDtY=&c=2cWVQSjONKU8XjEs2DUxFodh1wSZqhzLBC05RkpBsitsrLC42bugEGZ5wgSh54G lll93q852L3AwA0XYCfuObH9 nW0A8bIvv5b pO54kSBqxTVn xoY2KB7epbXC8v6ics1X02/Xy0viy0xNvf6CqQYRtcXHy2oRIth9c5EOE=&e=0&downloadAs=plants-vs-zombies-2-4.7.1.exe&fallback_url=https://itunes.apple.com/app/.../id597986893?mt=8

Latest 30 of 30 download URLs

The executing file has been seen to make the following network communications in live environments.

TCP (HTTP):

Connects to os.solvefile.com (207.189.109.121:80)

TCP (HTTP):

Connects to cdnus.solvefile.com (207.189.109.121:80)

TCP (HTTP):

Connects to cdneu.webfilescdn.com (65.254.40.36:80)

Remove icreinstall_plants-vs-zombies-2-4.7.1.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.