home

kav15.0.0.463es_6313.exe

Kaspersky Anti-Virus

Kaspersky Lab

This is a setup program which is used to install the application. The file has been seen being downloaded from wgtot60.digitalriver.com and multiple other hosts.
Publisher:
Kaspersky Lab  (signed and verified)

Product:
Kaspersky Anti-Virus

Description:
Kaspersky Anti-Virus [15.0.0.463.0.5.0]

Version:
15.0.0.463

MD5:
872f3202e53bb9120819e235108a39fc

SHA-1:
04e6ee7a24a954896e58e54242f4bbc72261c983

SHA-256:
f12aeaae979a46a146f5579ab37735a1fa486eb1e222eca13f2c698b93f24cad

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 2:27:38 PM UTC  (today)

File size:
162.1 MB (170,017,888 bytes)

Product version:
15.0.0.463

Copyright:
© 2014 Kaspersky Lab ZAO. Reservados todos los derechos.

Trademarks:
Todas las marcas comerciales registradas y las marcas de servicios son propiedad de sus respectivos propietarios

Original file name:
Setup

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\programas\kav15.0.0.463es_6313.exe

Digital Signature
Signed by:
Kaspersky Lab

Authority:
DigiCert Inc

Valid from:
2/21/2013 6:00:00 PM

Valid to:
4/28/2015 7:00:00 AM

Subject:
CN=Kaspersky Lab, O=Kaspersky Lab, L=Moscow, C=RU

Issuer:
CN=DigiCert High Assurance Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0226E6BDA76DAE711E3DB2321E3B5308

File PE Metadata
Compilation timestamp:
4/20/2014 7:10:59 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
3145728:4M+AxoaXLV1Loc1GVfymOsEATGOW+Gxqg8e818voOfLE7vfDzURj/3ixNUeuzB3:T+AtXv1qfDOs1W+GF7fT2vP6jqTduz1

Entry address:
0x313D

Entry point:
E8, FD, 16, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 38, BC, 40, 00, 89, 0D, 34, BC, 40, 00, 89, 15, 30, BC, 40, 00, 89, 1D, 2C, BC, 40, 00, 89, 35, 28, BC, 40, 00, 89, 3D, 24, BC, 40, 00, 66, 8C, 15, 50, BC, 40, 00, 66, 8C, 0D, 44, BC, 40, 00, 66, 8C, 1D, 20, BC, 40, 00, 66, 8C, 05, 1C, BC, 40, 00, 66, 8C, 25, 18, BC, 40, 00, 66, 8C, 2D, 14, BC, 40, 00, 9C, 8F, 05, 48, BC, 40, 00, 8B, 45, 00, A3, 3C, BC, 40, 00, 8B, 45, 04, A3, 40, BC, 40, 00, 8D, 45, 08, A3, 4C, BC, 40...
 
[+]

Entropy:
7.9994  (probably packed)

Code size:
24.5 KB (25,088 bytes)

The file kav15.0.0.463es_6313.exe has been seen being distributed by the following 8 URLs.

http://wgtot60.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7B4F03228780E13DEB8D273C5554AF20951781C016F4C44585F7B7FA8D95131BA6D9ABECF685DFA6719AE4313B2003E7D1D52BECE1A22AA0D914F488BDE108B1278F5DC70B1E40C906/.../kav15.0.0.463ES_6313.exe

http://usa.kaspersky.com/files?file=kav&lang=la&track=pu_kav_ussp

http://wgtot60.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7B204E34DFBA1346588D273C5554AF2095C205226D785F8E2E4D8DB9FBDBA7091E1B9F651B382432B4F3CBCAF032E878BF1833DB374CA0E99914F488BDE108B1278F5DC70B1E40C906/.../kav15.0.0.463ES_6313.exe

http://wgtot62.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7B4A7ED0290B21649A8D273C5554AF209515904B29447D62B7BC333E0ED5BB77AA6FD4E64045AA4E6B59588EE7D24C5F58E55886490F26F598B60C08C6263E2CB58F5DC70B1E40C906/.../kav15.0.0.463ES_6313.exe

http://wgtot57.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7B5B04C1F7CE7408141D35A5FC433DB3CA6D644AD9E372103CF9429BB443F30B8D4D40CA350B53FD3CFE5F106FCEC92BEB4F7DF8E91F78BD3811998E376342FD745C301D4CF6797C8A/.../kav15.0.0.463ES_6313.exe

http://wgtot57.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7B5B04C1F7CE740814F1EAF45FE3A5472CF859B6C033963F79E1A25CF63F2DB60239386C27DA53C81D0931BFAC8C705D68E024FB3A56E8A59D16BCD5117FAAE9B35C301D4CF6797C8A/.../kav15.0.0.463ES_6313.exe

http://usa.kaspersky.com/files?file=kav&lang=la

http://wgtot62.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BFDA716FBE3F00D018D273C5554AF2095C5ED55B092C706A9FF9FACFEB9CEC3E318911CC15E7CD27DBC3972144383BF7167F5908E58FFFDD9878E15D3A228DA818F5DC70B1E40C906/.../kav15.0.0.463ES_6313.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.