lineinst.exe

LINE

LINE Corporation

This is a setup program which is used to install the application. The file has been seen being downloaded from cc.naver.jp.
Publisher:
LINE Corporation  (signed and verified)

Product:
LINE

Version:
3.9.1.188

MD5:
7a1162919aa9b4e9768cd963a468e0de

SHA-1:
3491f92580af5f4b3b4c2dca5d7db1a106891299

SHA-256:
ab0c7456dfcd2715d2f94fcfc0c3b1697e9ca121ad7e4efa31236a3c9f5de1cf

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 7:42:56 PM UTC  (today)

File size:
17.1 MB (17,952,616 bytes)

Product version:
3.9.1.188

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\lineinst.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
3/24/2014 12:00:00 AM

Valid to:
3/24/2015 11:59:59 PM

Subject:
CN=LINE Corporation, OU=IT Service Center, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=LINE Corporation, L=Shibuya, S=Tokyo, C=JP

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
41190CEFED671147E5CBE6BE923F92EC

File PE Metadata
Compilation timestamp:
6/25/2012 10:24:36 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
196608:TsyRnAU08opMz6opFcSSNSiEHpFd2ez2GuuqIzfZ+iVMaOYf+BaodMuN6tVe1JsU:TsfgJpDkSrP8Kxfn1f0keJm2PZH4a

Entry address:
0xB14B

Entry point:
E8, 7E, 2E, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 5D, E9, CE, 18, 00, 00, 8B, FF, 51, C7, 01, 64, BA, 41, 00, E8, F6, 2E, 00, 00, 59, C3, 8B, FF, 55, 8B, EC, 56, 8B, F1, E8, E3, FF, FF, FF, F6, 45, 08, 01, 74, 07, 56, E8, CC, FF, FF, FF, 59, 8B, C6, 5E, 5D, C2, 04, 00, 8B, FF, 55, 8B, EC, 8B, 45, 08, 83, C1, 09, 51, 83, C0, 09, 50, E8, 3A, 2F, 00, 00, F7, D8, 59, 1B, C0, 59, 40, 5D, C2, 04, 00, FF, 35, 88, 1B, 42, 00, E8, C0, 28, 00, 00, 59, 85, C0, 74, 02, FF, D0, 6A, 19, E8, D3, 1E, 00, 00, 6A...
 
[+]

Code size:
98.5 KB (100,864 bytes)

The file lineinst.exe has been seen being distributed by the following URL.

Scan lineinst.exe - Powered by Reason Core Security