home

nada_264_setpoint_logitech_64.exe

WEB_64 Setup

Logitech Inc

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. This is installed with Logitech Unifying Software 2.50. The file has been seen being downloaded from download01.logi.com and multiple other hosts.
Publisher:
Logitech Inc.  (signed by Logitech Inc)

Product:
WEB_64 Setup

Description:
Setup

Version:
6.67.83

MD5:
eabd60ce8d0234467ef9b9e09c1eb391

SHA-1:
5e16d7560dbbc93becbcabd3028664f0563adfe4

SHA-256:
11650114a18eeb4f6be75462c6d93891c31bb95d8be908503854832071b1683e

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 4:53:54 AM UTC  (today)

File size:
77.9 MB (81,633,120 bytes)

Copyright:
Copyright � 2005-2013 Logitech. All Rights Reserved

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\nada_264_setpoint_logitech_64.exe

Digital Signature
Signed by:
Logitech Inc

Authority:
DigiCert Inc

Valid from:
4/20/2015 2:00:00 AM

Valid to:
4/24/2018 2:00:00 PM

Subject:
CN=Logitech Inc, O=Logitech Inc, L=Newark, S=California, C=US, PostalCode=94560, STREET=7600 Gateway Blvd, SERIALNUMBER=C1067879, OID.1.3.6.1.4.1.311.60.2.1.2=California, OID.1.3.6.1.4.1.311.60.2.1.3=US, OID.2.5.4.15=Private Organization

Issuer:
CN=DigiCert EV Code Signing CA (SHA2), OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
045F7B840FB74D1CD3FD9920335A93A0

File PE Metadata
Compilation timestamp:
9/9/2009 3:23:14 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
1572864:wBMQZRNefuW12a6BKGszGzAQy+XlPM7dyoXMllQB+B63IkmEDkh+9fCQfW8X:wXZRNefuW2BKHS06XFM7dybQR3I6D55T

Entry address:
0x33E9

Entry point:
81, EC, D4, 02, 00, 00, 53, 55, 56, 57, 6A, 20, 33, ED, 5E, 89, 6C, 24, 18, C7, 44, 24, 10, 70, 85, 40, 00, 89, 6C, 24, 14, FF, 15, 30, 80, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 80, 40, 00, 55, FF, 15, B0, 82, 40, 00, 6A, 08, A3, 78, 06, 47, 00, E8, 67, 27, 00, 00, 55, 68, B4, 02, 00, 00, A3, 90, 05, 47, 00, 8D, 44, 24, 38, 50, 55, 68, 6C, 85, 40, 00, FF, 15, 80, 81, 40, 00, 68, 54, 85, 40, 00, 68, 80, 85, 46, 00, E8, 35, 26, 00, 00, FF, 15, B0, 80, 40, 00, 50, BF, A0, 10, 4C, 00, 57, E8, 23, 26, 00, 00...
 
[+]

Packer / compiler:
Nullsoft install system v2.x

Code size:
25 KB (25,600 bytes)

The file nada_264_setpoint_logitech_64.exe has been discovered within the following program.

Logitech Unifying Software 2.50  by Logitech Inc.
9% remove it
 
Powered by Should I Remove It?

The file nada_264_setpoint_logitech_64.exe has been seen being distributed by the following 18 URLs.

http://download01.logi.com/web/ftp/pub/techsupport/.../SetPoint6.67.83_64.exe

https://doc-0g-3c-docs.googleusercontent.com/docs/securesc/cc0g9q42nnu8sef9g1697n49ma0663n5/brphupmffq9rha6a1gi1sk7ocnsffb1o/1484510400000/09686295417159699901/.../0B0bqJMMxXaWlMVkzNW9yTVZPQk0?e=download

http://www.driverbulks.com/.../SetPoint6.67.83_64.exe

https://fichiers.touslesdrivers.com/.../SetPoint6.67.83_64.exe

https://download01.logi.com/web/ftp/pub/techsupport/.../SetPoint6.67.83_64.exe

http://www.driverscloud.com/ar/services/DownloadDriver/.../key

http://www.driverscloud.com/fr/services/DownloadDriver/.../key

http://www.driverscloud.com/es/servicios/DownloadDriver/.../key

http://www.touslesdrivers.com/php/.../redirection.php?v_code=46198

http://120.52.73.77/d23iz4esrwkib6.cloudfront.net/lu/depot/cdbu/setpoint_new/6.67/0/.../setpoint_logitech_64.exe

http://dl.cdn.chip.de/downloads/.../SetPoint6.67.83_64.exe

http://logitech-louk.navisite.net/lu/depot/cdbu/setpoint_new/6.67/0/.../setpoint_logitech_64.exe

http://lb.cdn.m6web.fr/d/c/a/da631c8b2aa084241538b443bed848aa/56d3600f/soft/.../logitech-setpoint_6-67-83_fr_404736_64.exe

http://download01.logitech.com/web/ftp/pub/techsupport/.../SetPoint6.67.83_64.exe

http://logitech-sjca.navisite.net/lu/depot/cdbu/setpoint_new/6.67/0/.../setpoint_logitech_64.exe

http://logitech-sjca.navisite.net/logitech/controldevices/setpointp/6.67.82/0/_w8/.../setpointp.exe

http://d23iz4esrwkib6.cloudfront.net/lu/depot/cdbu/setpoint_new/6.67/0/.../setpoint_logitech_64.exe

http://www.logitech.com/pub/techsupport/.../SetPoint6.67.83_64.exe

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.