node.exe

Node.js

Joyent Inc

This is a setup program which is used to install the application. The file has been seen being downloaded from taky.s3.amazonaws.com and multiple other hosts.
Publisher:
Joyent, Inc  (signed by Joyent Inc)

Product:
Node.js

Description:
Evented I/O for V8 JavaScript

Version:
0.10.29

MD5:
9985a09c2ad157acd295254e86b605ff

SHA-1:
7e1fc5162e177aa32d626635e941aa2791092035

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/24/2024 2:12:54 AM UTC  (today)

File size:
5.5 MB (5,790,432 bytes)

Product version:
0.10.29

Copyright:
Copyright Joyent, Inc. and other Node contributors. MIT license.

Original file name:
node.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Documents and Settings\{user}\My documents\downloads\inkscape\svg2gcode\node.exe

Digital Signature
Signed by:

Authority:
GlobalSign nv-sa

Valid from:
8/3/2011 9:55:33 PM

Valid to:
10/30/2014 6:35:25 PM

Subject:
CN=Joyent Inc, O=Joyent Inc, L=San Francisco, S=California, C=US

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121D00C5638BF8CEED2348CEA517065BFB2

File PE Metadata
Compilation timestamp:
6/9/2014 2:22:22 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
10.0

CTPH (ssdeep):
98304:bEjIQfbJbFhrDHodvUywMNB19qn8RMRyIrd:YDJJhIdvUWI8+RyIrd

Entry address:
0x30FF9A

Entry point:
E8, 88, CD, 00, 00, E9, 95, FE, FF, FF, 8B, FF, 55, 8B, EC, 51, 51, 8D, 45, F8, 50, FF, 15, D4, D1, 73, 00, 8B, 45, F8, 8B, 4D, FC, 6A, 00, 05, 00, 80, C1, 2A, 68, 80, 96, 98, 00, 81, D1, 21, 4E, 62, FE, 51, 50, E8, FC, CD, 00, 00, 83, FA, 07, 7C, 0E, 7F, 07, 3D, FF, 6F, 40, 93, 76, 05, 83, C8, FF, 8B, D0, 8B, 4D, 08, 85, C9, 74, 05, 89, 01, 89, 51, 04, C9, C3, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 8B, FF, 55, 8B, EC, 51, 8B, 55, 08, 57, 8B, F8, 3B, FA, 76, 6C, 8B, 4D, 0C, 8D, 04, 0A, 53, 89, 45, FC...
 
[+]

Code size:
3.2 MB (3,389,440 bytes)

10 Windows Firewall Allowed Programs
Name:
node.exe

Name:
evented i/o for v8 javascript

Name:
node

Name:
C:\Program Files\Popcorn Time\chromecast\node.exe

Name:
C:\Arquivos de programas\TorrentsTime Media Player\bin\chromecast\node.exe

Name:
C:\Program Files\TorrentsTime Media Player\bin\chromecast\node.exe


The file node.exe has been discovered within the following programs.

Common dictionary  by Jet Applications
Distributed and operated by UNLIMITED DOWNLOADS LLC., this adware will monitor and track a user's web browsing behavior in order to deliver targeted advertisements.
www.common-dictionary.com
88% remove it
Label Printing  by Digitelematica s.r.l
markin.digitelematica.org/lp
About 8% of users remove it
Savifier  by UNLIMITED DOWNLOADS, LLC
Savifier is an adware browser toolbar (supported by various types of advertising) that will inject advertisements in a number of formats within the web pages the user is visiting.
www.savifier.com
88% remove it
TorrentsTime Media Player  by Torrents Time
About 5% of users remove it
 
Powered by Should I Remove It?

The file node.exe has been seen being distributed by the following 2 URLs.

http://taky.s3.amazonaws.com/0zbmd6u3abz.exe

Scan node.exe - Powered by Reason Core Security