jre-windows-i586.exe

Java Platform SE 7 U13

Oracle America, Inc.

This is a setup program which is used to install the application. The file has been seen being downloaded from 10.10.10.10 and multiple other hosts.
Publisher:
Oracle Corporation  (signed by Oracle America, Inc.)

Product:
Java(TM) Platform SE 7 U13

Description:
Java(TM) Platform SE binary

Version:
7.0.130.20

MD5:
fd6a76916408345e57b28c6afa5b9cfc

SHA-1:
72ad271c6c7e7d1893a9661aad2854a75e87cd5f

SHA-256:
6dfcfa2f97d790fc30e4f8a23443a2e4d98c121c2569b2a0c0c04cdabefb2f26

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/22/2024 4:59:11 PM UTC  (today)

File size:
30.1 MB (31,512,992 bytes)

Product version:
7.0.130.20

Copyright:
Copyright © 2013

Original file name:
jinstall.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Documents and Settings\{user}\Local settings\temp\{random}.tmp\jre-windows-i586.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
7/6/2010 5:00:00 PM

Valid to:
7/6/2013 4:59:59 PM

Subject:
CN="Oracle America, Inc.", OU=Software Engineering, OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Oracle America, Inc.", L=Redwood Shores, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
5EF1DC1EFB1E46B5DE80EDE1762A55A7

File PE Metadata
Compilation timestamp:
1/30/2013 11:26:50 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
786432:OaEQkmgz8nvXpknzam56v8wN7/tNgkech+pFSUU9fY:8QkmgzKRknnITtNvec4F5kQ

Entry address:
0x189E0

Entry point:
E8, 9A, 73, 00, 00, E9, 89, FE, FF, FF, 6A, 0C, 68, 38, 05, 43, 00, E8, 7A, 0A, 00, 00, 6A, 0E, E8, 86, 30, 00, 00, 59, 83, 65, FC, 00, 8B, 75, 08, 8B, 4E, 04, 85, C9, 74, 2F, A1, 24, 60, 43, 00, BA, 20, 60, 43, 00, 89, 45, E4, 85, C0, 74, 11, 39, 08, 75, 2C, 8B, 48, 04, 89, 4A, 04, 50, E8, B9, B7, FF, FF, 59, FF, 76, 04, E8, B0, B7, FF, FF, 59, 83, 66, 04, 00, C7, 45, FC, FE, FF, FF, FF, E8, 0A, 00, 00, 00, E8, 69, 0A, 00, 00, C3, 8B, D0, EB, C5, 6A, 0E, E8, 52, 2F, 00, 00, 59, C3, 8B, FF, 55, 8B, EC, 8B...
 
[+]

Entropy:
7.9397  (probably packed)

Code size:
155 KB (158,720 bytes)

The file jre-windows-i586.exe has been discovered within the following programs.

360Amigo is registry optimizer. 360Amigo System Speedup bundles a branded version of the Conduit Toolbar, designed to deliver search based advertising and results. During installation the user is presented in some cases with the option to install the toolbar (on by default).
www.360amigo.com
53% remove it
CleanMem  by PcWinTech.com
www.pcwintech.com
37% remove it
Java 7 Update 45  by Oracle Corporation
Publisher's description - “The Java Runtime Environment (JRE) provides the libraries, the Java Virtual Machine, and other components to run applets and applications written in the Java programming language.”
java.com
6% remove it
 
Powered by Should I Remove It?

The file jre-windows-i586.exe has been seen being distributed by the following 18 URLs.

http://10.10.10.10:8080/java_jre.exe

http://www.sharebitstower.com/WDN80ku4RlHIDQVWrzVbS WpECk2bYRlvHLVqcwbTnXBFfCIY_UoW0C9InpsMCMI8DLroX9cDHY2wbA9vJPUARhtj5xd4AIQFi21AOiyaWiuIg8Dav 70gE_Vm0cApSsuqXJifV51r7jrHXHTrz9C3W39aZKzs0KF_kcVtnvtLyb_qYh7OXbv1JuNnN4ghmSIJfuHK79-GzsAAGR3np8d0jwSeZTnmeaRUIwuxJeBJJLYBnLj6PSIhzoya_Rbpb0P BOC3JWKjzJ5tMwOtTUI

http://ftp-stahuj.centrum.cz/dl/703c2adadda85c22e20e589b64f2e1d5/512b7dd1/stahuj/download/software/secured/j/java-2-runtime-environment/17013/.../jre-7u13-windows-i586.exe

http://www.oldapps.com/java.php?app=FD6A76916408345E57B28C6AFA5B9CFC