pebuilder3110a.exe

Bart Lagerweij

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from telechargement1.pcastuces.com and multiple other hosts.
Publisher:
Bart Lagerweij

Description:
PE Builder Setup

MD5:
f9013d809cde9c8137f604d3806bf898

SHA-1:
e3516e2155fba1d180fa6269748dd1b0a5d05285

SHA-256:
f181c43663f8844e34626d4dfc099ee10b03ab454a3d374829b03a7c466662a3

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/26/2024 10:13:07 PM UTC  (today)

File size:
3.2 MB (3,306,678 bytes)

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
English (United States)

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:edZG/qe4bH2INTlyQVPyq9pOEkHyxhRvsVb1:iZG/LQHzPyQIqPNxhRSJ

Entry address:
0x97F0

Entry point:
55, 8B, EC, 83, C4, CC, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, D6, 98, FF, FF, E8, DD, AA, FF, FF, E8, 00, CD, FF, FF, E8, 47, CD, FF, FF, E8, 3E, F3, FF, FF, E8, A5, F4, FF, FF, 33, C0, 55, 68, 9A, 9E, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 50, 9E, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, B0, 40, 00, E8, 9B, FE, FF, FF, E8, 5A, FA, FF, FF, 8D, 55, F0, 33, C0, E8, C0, D1, FF, FF, 8B, 55, F0, B8, D4, BD, 40, 00, E8, 87, 99, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, D4, BD, 40, 00, B2, 01, B8...
 
[+]

Packer / compiler:
Inno Setup v5.x - Installer Maker

Code size:
36 KB (36,864 bytes)

The file pebuilder3110a.exe has been discovered within the following program.

360Amigo is registry optimizer. 360Amigo System Speedup bundles a branded version of the Conduit Toolbar, designed to deliver search based advertising and results. During installation the user is presented in some cases with the option to install the toolbar (on by default).
www.360amigo.com
53% remove it
 
Powered by Should I Remove It?

The file pebuilder3110a.exe has been seen being distributed by the following 29 URLs.

http://telechargement1.pcastuces.com/temp6bs2/.../pebuilder3110a.exe

http://lb.cdn.m6web.fr/d/c/a/6b4f0053b15d1f87b1ab0f51cccfe9aa/57e3fcc7/soft/.../bart-s-preinstalled-environment-bartpe_bart_s_preinstalled_environment_bartpe_v3.1.10a_francais_38654.exe

http://pe-builder.software.informer.com/.../

http://lb.cdn.m6web.fr/d/c/a/cfb71b6e118a84e9dbbf1a6071ab0269/57f89c3c/soft/.../bart-s-preinstalled-environment-bartpe_bart_s_preinstalled_environment_bartpe_v3.1.10a_francais_38654.exe

http://files2.majorgeeks.com/2bb5f2f1a6b188d0717a4bc4bdee95f4/.../pebuilder3110a.exe

https://dw.uptodown.com/dwn/OebNmnyDVhNQ6Ub0KOB450it799Wt7e5hTM2gMR8PrzADz7fOwPNgE_PTqBrG8hVsmrEvuJt8RUDymwTMOmtglbG08jmg96ArwuuK03eIqb4nK1tcwBKs7czSiWiqfwl/pesggjFn1pdZsFGmnOLa2sRovd3e0t8PLqCuMv2TGJkblbzq8u_hTmQp0bE-wDzT7tUrFlc5_CzxJpkwaq8nH4YBJbLIbR7Irs29wWjAGE_LoA9HcO9NorpKRwIYo-1R/c-aZ-P9rns5LYLWcgQLiDkmTKT90wCehXSkiBoHo6GW4QIiOJjtkkSNHLqxS55sHj0wMTDFQlZRcx-OMai0PScECdMeQQjqe8y6o95CPj9ymBgVr8N4TkU4iaAT5SYs_/.../

http://cdn.portalprogramas-download.com/d/.../BartPE

http://104.156.55.153/~dwnldfrhtr/.../pebuilder3110a.exe

&onid=2094&oid=3001-2094_4-10611131&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=utilities/sys&topicbrcrm=&pid=10611130&mfgid=6288945&merid=6288945&ctype=dm&cval=NONE&devicetype=desktop&pguid=0bf698ea99576d74ca579149&viewguid=cUBJx@GsZqMxcKGaq2PAlW0oBbZHM9LM-x-O&destUrl=http://files.downloadnow.com/s/software/10/61/11/.../pebuilder3110a.exe

Scan pebuilder3110a.exe - Powered by Reason Core Security