jre-7u9-windows-x64.exe

Java Platform SE 7 U9

Oracle America, Inc.

This is a setup program which is used to install the application. The file has been seen being downloaded from software-files-a.cnet.com and multiple other hosts.
Publisher:
Oracle Corporation  (signed by Oracle America, Inc.)

Product:
Java(TM) Platform SE 7 U9

Description:
Java(TM) Platform SE binary

Version:
7.0.90.5

MD5:
b2400516df1fb448996012c6d6932ba3

SHA-1:
7ae6d07324439a203af612789110691f757b980e

SHA-256:
77a6d8162a046bdcf5c1c2451a6323baf8778b1425b0e612edd10ba74e7eacbf

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 3:54:17 AM UTC  (today)

File size:
31.2 MB (32,699,368 bytes)

Product version:
7.0.90.5

Copyright:
Copyright © 2012

Original file name:
jinstall.exe

File type:
Executable application (Win64 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\jre-7u9-windows-x64.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
7/6/2010 8:00:00 PM

Valid to:
7/6/2013 7:59:59 PM

Subject:
CN="Oracle America, Inc.", OU=Software Engineering, OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Oracle America, Inc.", L=Redwood Shores, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
5EF1DC1EFB1E46B5DE80EDE1762A55A7

File PE Metadata
Compilation timestamp:
9/25/2012 2:21:56 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
786432:3P68WVsbC81Bf6DyTjvuum/r3H44fzpPl0AXb1kN4dayyaQmegRy1n7:ki+8j6DyTjWuIr3Y47puAXhq4Bv5O7

Entry address:
0x1C39C

Entry point:
48, 83, EC, 28, E8, CB, 80, 00, 00, 48, 83, C4, 28, E9, 52, FE, FF, FF, CC, CC, 40, 53, 48, 83, EC, 30, 48, 8B, D9, B9, 0E, 00, 00, 00, E8, D9, 36, 00, 00, 90, 48, 8B, 43, 08, 48, 85, C0, 74, 3F, 48, 8B, 0D, AC, 3B, 02, 00, 48, 8D, 15, 9D, 3B, 02, 00, 48, 89, 4C, 24, 20, 48, 85, C9, 74, 19, 48, 39, 01, 75, 0F, 48, 8B, 41, 08, 48, 89, 42, 08, E8, 45, CF, FF, FF, EB, 05, 48, 8B, D1, EB, DD, 48, 8B, 4B, 08, E8, 35, CF, FF, FF, 48, 83, 63, 08, 00, B9, 0E, 00, 00, 00, E8, 86, 35, 00, 00, 48, 83, C4, 30, 5B, C3...
 
[+]

Entropy:
7.9489  (probably packed)

Code size:
171 KB (175,104 bytes)

The file jre-7u9-windows-x64.exe has been discovered within the following programs.

µTorrent  by BitTorrent Inc.
µTorrent is a is a free, ad-supported, lighter-weight BitTorrent client designed to consume less resources then the full BitTorrent version.
www.utorrent.com
12% remove it
BankBrowser  by DialCom24 Sp. z o.o.
BankBrowser is part of the Przelewy24 software.
www.bankbrowser.pl
About 3% of users remove it
BitTorrent  by BitTorrent Inc.
BitTorrent is a desktop application that allows you to work with torrent files.BitTorrent allows you to download files available as torrents, search torrent sites for music, videos, books, software and other free or public domain material.
www.bittorrent.com
7% remove it
QuickTime  by Apple Inc.
QuickTime is an extensible multimedia framework capable of handling various formats of digital video, picture, sound, panoramic images, and interactivity.
www.apple.com/quicktime
6% remove it
 
Powered by Should I Remove It?

The file jre-7u9-windows-x64.exe has been seen being distributed by the following 21 URLs.

http://software-files-a.cnet.com/s/software/12/77/90/.../jre-7u9-windows-x64.exe

http://azminecraft.ru/.../jre-7u9-windows-x64.exe

http://gfserver2015.ddo.jp:6900/.../jre-7u9-windows-x64.exe

q=http://javadl.sun.com/webapps/.../AutoDL?BundleId=69476&redir_token=rxH0krv_D298wZdfGBX3jBCy30R8MTQ0MTM5MDQwOEAxNDQxMzA0MDA4

q=http://javadl.sun.com/webapps/.../AutoDL?BundleId=69476