» kav16.0.0.614abcdde_9831.exe
Overview
Analysis
File Details
Downloads (16)

kav16.0.0.614abcdde_9831.exe

Kaspersky Anti-Virus

Kaspersky Lab

This is a setup program which is used to install the application. The file has been seen being downloaded from wgtot62.digitalriver.com and multiple other hosts.

File name:

kav16.0.0.614abcdde_9831.exe

Publisher:

Kaspersky Lab (signed and verified)

Product:

Kaspersky Anti-Virus

Description:

Kaspersky Anti-Virus [16.0.0.614.0.539.0]

Version:

16.0.0.614

MD5:

ed429795a324b2fc0cacb90d8a1c9e7e

SHA-1:

5dd98bb5d864ab5236dd7ac5185177622866365c

SHA-256:

bb33ea3a1fa2dde3aaa82a605e73d061be907cff1d9e472717144eedd018890e

Scanner detections:

0 / 68

Status:

Clean (as of last analysis)

Analysis date:

11/5/2024 11:20:41 PM UTC (a few moments ago)

File size:

1.8 MB (1,932,640 bytes)

Product version:

16.0.0.614

Trademarks:

Eingetragene Markenzeichen und Handelsmarken sind das Eigentum ihrer Besitzer

Original file name:

Setup.EXE

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\kav16.0.0.614abcdde_9831.exe

Digital Signature

Signed by:

Kaspersky Lab

Authority:

DigiCert Inc

Valid from:

10/8/2015 2:00:00 AM

Valid to:

10/24/2018 2:00:00 PM

Subject:

CN=Kaspersky Lab, O=Kaspersky Lab, L=Moscow, S=Moscow City, C=RU

Issuer:

CN=DigiCert High Assurance Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:

0F668FB0F0F002B774C7DDBD769EE5B1

File PE Metadata

Compilation timestamp:

7/8/2015 10:39:42 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

49152:nYME9HnIMxtJBDDSI9UTHzyVi3lvcrNO818+Aj:nYM0HnIMxnJhYyVIerc818+Aj

Entry address:

0x68E7

Entry point:

E8, D3, 1A, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 48, ED, 40, 00, 89, 0D, 44, ED, 40, 00, 89, 15, 40, ED, 40, 00, 89, 1D, 3C, ED, 40, 00, 89, 35, 38, ED, 40, 00, 89, 3D, 34, ED, 40, 00, 66, 8C, 15, 60, ED, 40, 00, 66, 8C, 0D, 54, ED, 40, 00, 66, 8C, 1D, 30, ED, 40, 00, 66, 8C, 05, 2C, ED, 40, 00, 66, 8C, 25, 28, ED, 40, 00, 66, 8C, 2D, 24, ED, 40, 00, 9C, 8F, 05, 58, ED, 40, 00, 8B, 45, 00, A3, 4C, ED, 40, 00, 8B, 45, 04, A3, 50, ED, 40, 00, 8D, 45, 08, A3, 5C, ED, 40... 
[+]

Code size:

39.5 KB (40,448 bytes)

The file kav16.0.0.614abcdde_9831.exe has been seen being distributed by the following 16 URLs.

http://wgtot62.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BA00B09F3C55397D089E3488831843CBEF89624540C07E1D62252058617FF7961E3E021BAB9A1A04558252811C6781F44276CB8E4B37BECD0CF0C1F38CE4F57CD0A7DE0793B014624647C638FDE4F6D4D/.../kav16.0.0.614abcdde_9831.exe

http://wgtot62.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BA00B09F3C55397D02916FD7C96043DB7D44C9D63DB3171515FDF0AD6CEC41BF27928CAACC115E1C378D86E2CB279DB8BFFF9B10E403F71EE2497D10E96EDB4850A7DE0793B014624647C638FDE4F6D4D/.../kav16.0.0.614abcdde_9831.exe

http://wgt.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BA00B09F3C55397D020B09A4EF393A15EFFCB195BCBBF224769F2640D3211C1A5BCDB0F5CA2BCEEF44FD09AE5D6821CA247A1120FF21382945FE4DF7CF04F07C70A7DE0793B014624647C638FDE4F6D4D/.../kav16.0.0.614abcdde_9831.exe

http://wgtot57.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BF855DF5DEF6EFE1B6852F1F70CEA7601FB9EF6940BBD8413043E5C644B0EFB038DCC1C56A538A7A78AE884308C654B5A08F0CC4A8F3A053C73A7E15FF1EBAA720451C577DBEF2976/.../kav16.0.0.614abcdde_9831.exe

https://www.google.com/url?hl=fr&q=http://wgtot62.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BA00B09F3C55397D0BDD34B5DA391162E80769E48D8E16B493335EB5893B2EE0AC9F259594C3F8C8924DAA3C6490641B69D6336C76FDCED62E1C68F703F8A366F0A7DE0793B014624647C638FDE4F6D4D/.../kav16.0.0.614abcdde_9831.exe&source=gmail&ust=1472204042761000&usg=AFQjCNGXDbhyI_EwkOezZSy4YbTjX6cK1A

http://wgtot62.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BA00B09F3C55397D06E015CE53407A416A27B8F2CED326027F56354BB145E76E0012C73B4CB2CCE882B80AB1193EB47969D6336C76FDCED627D5419723A13E81E0A7DE0793B014624647C638FDE4F6D4D/.../kav16.0.0.614abcdde_9831.exe

http://wgtot62.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BA00B09F3C55397D0744CA6BAE051B49C99EA726BCC37F86D2B9E7E7D2AE8C28ABBE0D1F2464BB1C4E601EE5470F8DF2DFFF9B10E403F71EE3AC984D3501FC2C70A7DE0793B014624647C638FDE4F6D4D/.../kav16.0.0.614abcdde_9831.exe

http://wgtot62.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BA00B09F3C55397D05A50DA7A80F10B0E82FFB348ED8DDE97A09654117E10BCD18E58FDD091B4ACD020E9C9086025AFA5FFF9B10E403F71EE45420005ECC5D0B80A7DE0793B014624647C638FDE4F6D4D/.../kav16.0.0.614abcdde_9831.exe

http://wgtot62.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BA00B09F3C55397D0C6A8F3FF78DDED9BA27B8F2CED3260275220AA85C1DC9976012C73B4CB2CCE886F252EF5D35363319D6336C76FDCED62D3E606244629561F0A7DE0793B014624647C638FDE4F6D4D/.../kav16.0.0.614abcdde_9831.exe

http://wgtot62.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BA00B09F3C55397D07F0D2AA906D7553AB1D321FB85DF19C81EE3D3550DCB7C12F7B133DB3A56736C69FEDD064D3DE40CFFF9B10E403F71EE8DE201B71D44A0FA0A7DE0793B014624647C638FDE4F6D4D/.../kav16.0.0.614abcdde_9831.exe

http://wgtot62.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BE34B30F2279ABD078D273C5554AF2095F639BFA0625AC65B614DE640131B08D3DD019A5B8DBC61AFB8960945A789CE406DA94AEC8BFFAC7C264A3054DD9624D5099767E904E89D92/.../kav16.0.0.614abcdde_9831.exe

http://wgtot62.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BA00B09F3C55397D02916FD7C96043DB73071A1500DB84680937D479ED4C9A5CF551F626C4213F64B3155F2139D2029890F0BDA6F37A190873E46A140AE0932BC0A7DE0793B014624647C638FDE4F6D4D/.../kav16.0.0.614abcdde_9831.exe

http://wgtot62.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BA00B09F3C55397D07F0D2AA906D7553ADF10726B05F78A98B54AC4569E46FE28038588AB28B37B555731A9C4AAE3669AFFF9B10E403F71EEA7B97D6DA943750E0A7DE0793B014624647C638FDE4F6D4D/.../kav16.0.0.614abcdde_9831.exe

http://wgtot62.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BA00B09F3C55397D0EC3ECDCB8551D874209292F7E34F24C5970817AAF6C0C6B8293ED132D9C8E8402CA1508E3A394E13FFF9B10E403F71EEEA18D5561234EFFC0A7DE0793B014624647C638FDE4F6D4D/.../kav16.0.0.614abcdde_9831.exe

http://wgtot62.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BA00B09F3C55397D05A50DA7A80F10B0E55101EA9D716835F0F1E81A2F9293C940FCEA12BB8B8DB5718021A1F3FFB4C9B9D6336C76FDCED626F9B79F760C6EED00A7DE0793B014624647C638FDE4F6D4D/.../kav16.0.0.614abcdde_9831.exe

http://wgtot62.digitalriver.com/wgt/9B5A4FCEF11DA80C/171F14235882A3D34841170D5B9DEF7BA00B09F3C55397D04203D7D2F3D6FB015DFAA6AB2C4A28C5DA8516F9FE5776365B3532E2A61C87EC06ED62607ADBEEB60F0BDA6F37A19087E3FD48A62F026E810A7DE0793B014624647C638FDE4F6D4D/.../kav16.0.0.614abcdde_9831.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.